730 matches found
TYPO3 Security Bulletin
A bug has been discovered in MOC filemanager v. 0.7.1 and earlier: An offender may gain illegal read access to files on the server. Component Type: Third Party Extension. This extension is third party code that has not been submitted to the TYPO3 extension review process yet. The extension is not...
CVE-2005-1659
Cross-site scripting XSS vulnerability in filemanager.cpp in MyServer 0.8 allows remote attackers to inject arbitrary Javascript via a URL with a "..." triple dot followed by an onmouseover event...
CVE-2004-2047
Directory traversal vulnerability in EasyWeb FileManager 1.0 RC-1 for PostNuke allows remote attackers to retrieve arbitrary files via a .. dot dot in the pathext parameter...
CVE-2004-2047
The CVE-2004-2047 vulnerability affects EasyWeb FileManager 1.0 RC-1 for PostNuke. A directory traversal flaw in the pathext parameter allows an attacker to read arbitrary files on the server, as demonstrated by examples like ../../file. The issue is documented across multiple sources (NVD/Nessus...
ew_file_manager.txt
CIRT-200404: EasyWeb EW FileManager Directory Traversal Remote File Retrieval - 07/23/2004 Product: EasyWeb FileManager Module Description: EasyWeb FileManager Module for PostNuke is vulnerable to a directory traversal problem which allows retrieval of arbitrary files from the remote system...
EasyWeb FileManager pathtext Traversal Arbitrary File/Directory Access
The remote host is running a version of the EasyWeb FileManager module that is vulnerable to a directory traversal attack. An attacker may use this flaw to read arbitrary files on the remote server by sending malformed requests like :...
EasyWeb FileManager Directory Traversal
Product: EasyWeb FileManager Module - http://home.postnuke.ru/index.php Description: EasyWeb FileManager Module for PostNuke is vulnerable to a directory traversal problem which allows retrieval of arbitrary files from the remote system. Systems Affected: EasyWeb FileManager 1.0 RC-1 Technical...
CVE-2004-2047
Directory traversal vulnerability in EasyWeb FileManager 1.0 RC-1 for PostNuke allows remote attackers to retrieve arbitrary files via a .. dot dot in the pathext parameter...
EasyWeb 1.0 FileManager Module - Directory Traversal
source: https://www.securityfocus.com/bid/10792/info EasyWeb is prone to a directory traversal vulnerability. This issue presents itself due to insufficient sanitization of user-supplied data. The issue occurs if a remote attacker sends a request to the 'ewfilemanager' script for a file containin...
WebJeff FileManager 1.6 - File Disclosure
WebJeff FileManager 1.6 - File Disclosure source: https://www.securityfocus.com/bid/7995/info A vulnerability has been reported for Filemanager that may result in the disclosure of arbitrary files. The vulnerability exists due to insufficient sanitization of user-supplied values for URI parameter...