WordPress Force Images Download 1.8 CSRF / SSRF

Exploit Author : Etharus Vulnerability : Cross Site Request Forgery to Server Side Request Forgery Impact : internal ip disclosure , file extension bypass, internal port scan. Product Vendor : Nazakat Ali Version Tested : 1.8 Date : 14/07/2023 Fofa Dork :...

HTB22927: CSRF (Cross-Site Request Forgery) in Webjaxe

Vulnerability ID: HTB22927 Reference: http://www.htbridge.ch/advisory/csrfcrosssiterequestforgeryinwebjaxe.html Product: Webjaxe Vendor: Webjaxe http://media4.obspm.fr/outils/webjaxe/en/ Vulnerable Version: 1.02 Vendor Notification: 29 March 2011 Vulnerability Type: CSRF Cross-Site Request Forger...

FCKEditor Core 2.x 2.4.3 - FileManager upload.php Arbitrary File Upload

FCKEditor Core 2.x 2.4.3 - FileManager upload.php Arbitrary File Upload Exploit Title: FCKeditor 2.0-2.4.3 arbitrary file upload Author: grabz Software Link: http://sourceforge.net/projects/fckeditor/ Version: FCKeditor 2.x = 2.4.3 Tested on: 2.0, 2.2, 2.3.2, 2.4.0, 2.4.3 for version 2.0 - 2.2: i...