250 matches found
GForge 3.x - Arbitrary Command Execution
source: https://www.securityfocus.com/bid/13716/info GForge is affected by a remote command execution vulnerability. This issue arises because the application fails to sanitize user-supplied data passed through URI parameters. An attacker can supply arbitrary shell commands through the affected...
GForge 3.x - Arbitrary Command Execution
GForge 3.x - Arbitrary Command Execution source: https://www.securityfocus.com/bid/13716/info GForge is affected by a remote command execution vulnerability. This issue arises because the application fails to sanitize user-supplied data passed through URI parameters. An attacker can supply...
CVE-2005-0299
Directory traversal vulnerability in GForge 3.3 and earlier allows remote attackers to list arbitrary directories via a .. dot dot in the 1 dir parameter to controller.php or 2 dirname parameter to controlleroo.php...
CVE-2005-0299
Directory traversal vulnerability in GForge 3.3 and earlier allows remote attackers to list arbitrary directories via a .. dot dot in the 1 dir parameter to controller.php or 2 dirname parameter to controlleroo.php...
CVE-2005-0299
Directory traversal vulnerability in GForge 3.3 and earlier allows remote attackers to list arbitrary directories via a .. dot dot in the 1 dir parameter to controller.php or 2 dirname parameter to controlleroo.php...
CVE-2005-0299
CVE-2005-0299 affects GForge 3.3 and earlier, where a directory traversal flaw in the PHP components allows remote attackers to enumerate arbitrary directories via the dir parameter to controller.php or the dir_name parameter to controlleroo.php. The vulnerability is documented across multiple so...
STG Security Advisory 2005-01-20.24
STG Security Advisory: SSA-20050120-24 GForge 3.x directory traversal vulnerability. Revision 1.0 Date Published: 2005-01-20 KST Last Update: 2005-01-20 KST Disclosed by SSR Team [email protected] Summary ======== GForge is a software to help collaborative development for software...
STG Security Advisory: [SSA-20050120-24] GForge 3.x directory traversal vulnerability
STG Security Advisory: SSA-20050120-24 GForge 3.x directory traversal vulnerability. Revision 1.0 Date Published: 2005-01-20 KST Last Update: 2005-01-20 KST Disclosed by SSR Team [email protected] Summary ======== GForge is a software to help collaborative development for software...
GForge Multiple Script Traversal Arbitrary Directory Listing
The remote host is running GForge, a CVS repository browser written in PHP. The installed version fails to properly sanitize user-supplied data to the 'dir' URI parameter in the 'controller.php' script, or the 'dirname' parameter in the 'controlleroo.php' script. An attacker could exploit this fl...
gforge -- directory traversal vulnerability
An STG Security Advisory reports: GForge CVS module made by Dragos Moinescu and another module made by Ronald Petty have a directory traversal vulnerability. ... malicious attackers can read arbitrary directory lists...