14 matches found
EUVD-2007-5710
Malware in sbrugna...
EUVD-2007-5709
Malware in sbrugna...
Korean GHBoard FlashUpload Component download.jsp name Parameter Arbitrary File Access
No description provided by source. source: http://www.securityfocus.com/bid/26182/info GHBoard is prone to multiple vulnerabilities that let attackers upload and download arbitrary files and execute arbitrary code within the context of the webserver process...
CVE-2007-5739
Directory traversal vulnerability in component/flashupload/download.jsp in the FlashUpload component in Korean GHBoard allows remote attackers to read arbitrary files via a .. dot dot in the name parameter...
Directory traversal
Directory traversal vulnerability in component/flashupload/download.jsp in the FlashUpload component in Korean GHBoard allows remote attackers to read arbitrary files via a .. dot dot in the name parameter...
CVE-2007-5738
The FlashUpload component in Korean GHBoard uses a client-side protection mechanism to prevent uploading of dangerous file extensions, which allows remote attackers to bypass restrictions and upload arbitrary files via a modified copy of component/flashupload/upload.html...
CVE-2007-5739
CVE-2007-5739 is a directory traversal vulnerability in the FlashUpload component’s file download.jsp (Korean GHBoard). The vulnerability allows remote attackers to read arbitrary server files by supplying a ".." sequence in the name parameter of the request. Affected software is the Korean GHBoa...
CVE-2007-5738
The CVE-2007-5738 entry concerns the FlashUpload component in Korean GHBoard. A client-side protection mechanism intended to block dangerous file extensions can be bypassed, enabling a remote attacker to upload arbitrary files through a modified copy of component/flashupload/upload.html. This is ...
CVE-2007-5739
Directory traversal vulnerability in component/flashupload/download.jsp in the FlashUpload component in Korean GHBoard allows remote attackers to read arbitrary files via a .. dot dot in the name parameter...
CVE-2007-5738
The FlashUpload component in Korean GHBoard uses a client-side protection mechanism to prevent uploading of dangerous file extensions, which allows remote attackers to bypass restrictions and upload arbitrary files via a modified copy of component/flashupload/upload.html...
koreanghboard-multi.txt
Software : Korean GHBoard Site : http://www.ghlab.com/ Found by : Xcross87 1. File Upload Vulnerability Xploit : victim.com/ghboard/component/upload.jsp 2. FlashUpload component File Upload and File Download Vulnerability Upload Xploit : victim.com/ghboard/component/flashupload/upload.html Not...
Korean GHBoard FlashUpload Component - 'download.jsp?name' Arbitrary File Access
source: https://www.securityfocus.com/bid/26182/info GHBoard is prone to multiple vulnerabilities that let attackers upload and download arbitrary files and execute arbitrary code within the context of the webserver process...
Korean GHBoard FlashUpload Component - download.jsp?name Arbitrary File Access
Korean GHBoard FlashUpload Component - download.jsp?name Arbitrary File Access...
Korean GHBoard Multiple Vulnerabilities by Xcross87
Software : Korean GHBoard Site : http://www.ghlab.com/ Found by : Xcross87 1. File Upload Vulnerability Xploit : victim.com/ghboard/component/upload.jsp 2. FlashUpload component File Upload and File Download Vulnerability Upload Xploit : victim.com/ghboard/component/flashupload/upload.html Not...