CVE-2024-58313 xbtitFM 4.1.18 Insecure File Upload in file_hosting Feature

xbtitFM 4.1.18 contains an insecure file upload vulnerability that allows authenticated attackers with administrative privileges to upload and execute arbitrary PHP code through the filehosting feature. Attackers can bypass file type restrictions by modifying the Content-Type header to image/gif,...

CVE-2024-58313 xbtitFM 4.1.18 Insecure File Upload in file_hosting Feature

xbtitFM 4.1.18 contains an insecure file upload vulnerability that allows authenticated attackers with administrative privileges to upload and execute arbitrary PHP code through the filehosting feature. Attackers can bypass file type restrictions by modifying the Content-Type header to image/gif,...

PT-2025-50764

Name of the Vulnerable Software and Affected Versions xbtitFM version 4.1.18 Description The software contains an insecure file upload issue. Authenticated attackers with administrative privileges can upload and execute arbitrary PHP code through the file hosting feature. File type restrictions c...

Wallos < 1.11.2 - File Upload RCE

Exploit Title: Wallos - File Upload RCE Authenticated Date: 2024-03-04 Exploit Author: [email protected] Vendor Homepage: https://github.com/ellite/Wallos Software Link: https://github.com/ellite/Wallos Version: 1.11.2 Tested on: Debian 12 Wallos allows you to upload an image/logo when you create...

K&S Shopsysteme Arbitrary Remote File Upload Vulnerability

No description provided by source. Script Name: Shopsysteme new version oscommerce Download: http://www.shopsystem-forum.de/productinfo.php?cPath=22&productsid=43 299 euro : Author: mNt File Upload Bug Google Dork: intext:Powered by K&S Media Concept - Shopsysteme Powered by K&S Media Concept -...

Aj Classifieds - Personals 3.0 - Remote Shell Upload Vulnerability

No description provided by source. AJClassifieds Personals RFu script down: http://www.ajclassifieds.net/demo/ajclassifiedsme/ClassifiedsRealestate/ ---------------------------------------------------------- Discovered By: ZoRLu msn: [email protected] Date: 16.01.09 Home: z0rlu.blogspot.com /...

SourceBans 1.4.8 Local File Inclusion / SQL Injection

Exploit Title: SourceBans In memory of crashfr who will NEVER die. Merci pour tout mec! ;-... R.I.P. ./EOF...

Wordpress Image Manager Plugins Shell Upload Vulnerability

Exploit for unknown platform in category web applications ========================================================== Wordpress Image Manager Plugins Shell Upload Vulnerability ========================================================== Exploit Title: Wordpress Image Manager Plugins Shell Upload...

Alstrasoft Article Manager Pro - Arbitrary File Upload

Alstrasoft Article Manager Pro - Arbitrary File Upload AlstraSoft Article Manager Pro Remote Shell Upload Vulnerability ---------------------------------------------------------- Author: ZoRLu Date: 02.06.2009 Home: yildirimordulari.com / z0rlu.blogspot.com msn: [email protected] N0T: KPSS ana...

AlstraSoft Article Manager Pro Remote Shell Upload Vulnerability

No description provided by source. AlstraSoft Article Manager Pro Remote Shell Upload Vulnerability ---------------------------------------------------------- Author: ZoRLu Date: 02.06.2009 Home: yildirimordulari.com / z0rlu.blogspot.com msn: [email protected] N0T: KPSS ananI ... N0T: if you...

Alstrasoft Article Manager Pro - Arbitrary File Upload

AlstraSoft Article Manager Pro Remote Shell Upload Vulnerability ---------------------------------------------------------- Author: ZoRLu Date: 02.06.2009 Home: yildirimordulari.com / z0rlu.blogspot.com msn: [email protected] N0T: KPSS ananI ... N0T: if you wanna learn hack you must be registe...

FunkyASP AD System 1.1 Remote Shell Upload Vulnerability

No description provided by source. FunkyASP AD System v1.1 Remote Shell Upload script: http://www.funkyasp.co.uk/cats.asp?id=1&currency=GBP ---------------------------------------------------------- Discovered By: ZoRLu Date: 04.04.2009 Home: yildirimordulari.com / experl.com / z0rlu.blogspot.com...

FunkyASP AD System 1.1 - Arbitrary File Upload

FunkyASP AD System 1.1 - Arbitrary File Upload FunkyASP AD System v1.1 Remote Shell Upload script: http://www.funkyasp.co.uk/cats.asp?id=1&currency=GBP ---------------------------------------------------------- Discovered By: ZoRLu Date: 04.04.2009 Home: yildirimordulari.com / experl.com /...

SAS Hotel Management System Remote Shell Upload Vulnerability

No description provided by source. SAS Hotel Management System Remote Shell Upload Demo: http://www.aebest.com/home/home.asp ---------------------------------------------------------- home: yildirimordulari.com if you wanna help you must register to my site and ı will do help to you xD home:...

SAS Hotel Management System Shell Upload

SAS Hotel Management System Remote Shell Upload Demo: http://www.aebest.com/home/home.asp ---------------------------------------------------------- home: yildirimordulari.com if you wanna help you must register to my site and ı will do help to you xD home: yildirimordulari.com eger yardim...

SAS Hotel Management System - Arbitrary File Upload

SAS Hotel Management System - Arbitrary File Upload SAS Hotel Management System Remote Shell Upload Demo: http://www.aebest.com/home/home.asp ---------------------------------------------------------- home: yildirimordulari.com if you wanna help you must register to my site and ı will do help to...

AJ Classifieds - Real Estate Shell Upload

AJClassifieds Realestate RFu script down: http://www.ajclassifieds.net/demo/ajclassifiedsme/ClassifiedsRealestate/ ---------------------------------------------------------- Discovered By: ZoRLu msn: [email protected] Date: 16.01.09 Home: z0rlu.blogspot.com / www.experl.com N0T: YALNIZLIK,...

Aj Classifieds - For Sale v3 Remote Shell Upload Vulnerability

No description provided by source. AJClassifieds Merchandise RFu script down: http://www.ajclassifieds.net/demo/ajclassifiedsme/ClassifiedsMerchandise/ ---------------------------------------------------------- Discovered By: ZoRLu msn: [email protected] Date: 16.01.09 Home: z0rlu.blogspot.com...

Aj Classifieds Real Estate 3.0 - Arbitrary File Upload

AJClassifieds Realestate RFu script down: http://www.ajclassifieds.net/demo/ajclassifiedsme/ClassifiedsRealestate/ ---------------------------------------------------------- Discovered By: ZoRLu msn: [email protected] Date: 16.01.09 Home: z0rlu.blogspot.com / www.experl.com N0T: YALNIZLIK,...

Aj Classifieds - Real Estate v3 Remote Shell Upload Vulnerability

No description provided by source. AJClassifieds Realestate RFu script down: http://www.ajclassifieds.net/demo/ajclassifiedsme/ClassifiedsRealestate/ ---------------------------------------------------------- Discovered By: ZoRLu msn: [email protected] Date: 16.01.09 Home: z0rlu.blogspot.com /...