14 matches found
EUVD-2007-5710
Malware in sbrugna...
EUVD-2007-5709
Malware in sbrugna...
Korean GHBoard FlashUpload Component download.jsp name Parameter Arbitrary File Access
No description provided by source. source: http://www.securityfocus.com/bid/26182/info GHBoard is prone to multiple vulnerabilities that let attackers upload and download arbitrary files and execute arbitrary code within the context of the webserver process...
Directory traversal
Directory traversal vulnerability in component/flashupload/download.jsp in the FlashUpload component in Korean GHBoard allows remote attackers to read arbitrary files via a .. dot dot in the name parameter...
CVE-2007-5739
Directory traversal vulnerability in component/flashupload/download.jsp in the FlashUpload component in Korean GHBoard allows remote attackers to read arbitrary files via a .. dot dot in the name parameter...
CVE-2007-5738
The FlashUpload component in Korean GHBoard uses a client-side protection mechanism to prevent uploading of dangerous file extensions, which allows remote attackers to bypass restrictions and upload arbitrary files via a modified copy of component/flashupload/upload.html...
CVE-2007-5739
Directory traversal vulnerability in component/flashupload/download.jsp in the FlashUpload component in Korean GHBoard allows remote attackers to read arbitrary files via a .. dot dot in the name parameter...
CVE-2007-5738
The CVE-2007-5738 entry concerns the FlashUpload component in Korean GHBoard. A client-side protection mechanism intended to block dangerous file extensions can be bypassed, enabling a remote attacker to upload arbitrary files through a modified copy of component/flashupload/upload.html. This is ...
CVE-2007-5738
The FlashUpload component in Korean GHBoard uses a client-side protection mechanism to prevent uploading of dangerous file extensions, which allows remote attackers to bypass restrictions and upload arbitrary files via a modified copy of component/flashupload/upload.html...
CVE-2007-5739
CVE-2007-5739 is a directory traversal vulnerability in the FlashUpload component’s file download.jsp (Korean GHBoard). The vulnerability allows remote attackers to read arbitrary server files by supplying a ".." sequence in the name parameter of the request. Affected software is the Korean GHBoa...
koreanghboard-multi.txt
Software : Korean GHBoard Site : http://www.ghlab.com/ Found by : Xcross87 1. File Upload Vulnerability Xploit : victim.com/ghboard/component/upload.jsp 2. FlashUpload component File Upload and File Download Vulnerability Upload Xploit : victim.com/ghboard/component/flashupload/upload.html Not...
Korean GHBoard FlashUpload Component - download.jsp?name Arbitrary File Access
Korean GHBoard FlashUpload Component - download.jsp?name Arbitrary File Access...
Korean GHBoard Multiple Vulnerabilities by Xcross87
Software : Korean GHBoard Site : http://www.ghlab.com/ Found by : Xcross87 1. File Upload Vulnerability Xploit : victim.com/ghboard/component/upload.jsp 2. FlashUpload component File Upload and File Download Vulnerability Upload Xploit : victim.com/ghboard/component/flashupload/upload.html Not...
Korean GHBoard FlashUpload Component - 'download.jsp?name' Arbitrary File Access
source: https://www.securityfocus.com/bid/26182/info GHBoard is prone to multiple vulnerabilities that let attackers upload and download arbitrary files and execute arbitrary code within the context of the webserver process...