42 matches found
EUVD-2007-2735
Malware in sbrugna...
CVE-2013-10067
Glossword versions 1.8.8 through 1.8.12 contain an authenticated arbitrary file upload vulnerability. When deployed as a standalone application, the administrative interface gwadmin.php allows users with administrator privileges to upload files to the gwtemp/a/ directory. Due to insufficient...
CVE-2013-10067
Glossword versions 1.8.8 through 1.8.12 contain an authenticated arbitrary file upload vulnerability. When deployed as a standalone application, the administrative interface gwadmin.php allows users with administrator privileges to upload files to the gwtemp/a/ directory. Due to insufficient...
CVE-2013-10067 Glossword 1.8.8 - 1.8.12 Arbitrary File Upload RCE
Glossword versions 1.8.8 through 1.8.12 contain an authenticated arbitrary file upload vulnerability. When deployed as a standalone application, the administrative interface gwadmin.php allows users with administrator privileges to upload files to the gwtemp/a/ directory. Due to insufficient...
CVE-2013-10067 Glossword 1.8.8 - 1.8.12 Arbitrary File Upload RCE
Glossword versions 1.8.8 through 1.8.12 contain an authenticated arbitrary file upload vulnerability. When deployed as a standalone application, the administrative interface gwadmin.php allows users with administrator privileges to upload files to the gwtemp/a/ directory. Due to insufficient...
CVE-2013-10067
Glossword (versions 1.8.8–1.8.12) contains an authenticated arbitrary file upload flaw in the gw_admin.php interface. Insufficient validation of file type/path allows an administrator to upload PHP payloads to gw_temp/a/, enabling remote code execution. Public advisories and a Metasploit module r...
Glossword 安全漏洞
Glossword is a free dictionary application by DmitrySh Individual Developer. A security vulnerability exists in Glossword versions 1.8.8 through 1.8.12, which stems from an unvalidated uploaded file type and could lead to arbitrary file uploads and remote code execution...
PT-2025-31991 · Glossword · Glossword
Name of the Vulnerable Software and Affected Versions: Glossword versions 1.8.8 through 1.8.12 Description: Glossword versions 1.8.8 through 1.8.12 contain an authenticated arbitrary file upload vulnerability. When deployed as a standalone application, the administrative interface gw admin.php...
Glossword 1.8.3 - SQL Injection Vulnerability
No description provided by source. cs ============================================================== Vulnerable Software: Glossword 1.8.3 Official site: http://sourceforge.net/projects/glossword/ Download: http://sourceforge.net/projects/glossword/files/glossword/1.8.3/ Vuln: SQLi...
glossword 1.8.12 - Multiple Vulnerabilities
No description provided by source...
Glossword <= 1.8.11 Arbitrary Uninstall / Install Vulnerability
No description provided by source. ----------------------------- Evil-Cod3r ------------------------------- ============================================================================== / \ | | | | / \ | | | | / \ | | | | / \ | || | / \ | | | | / \ | | IN THE NAME OF // \ || || // \ || || &n...
Glossword <= 1.8.11 (index.php x) Local File Inclusion Vulnerability
No description provided by source. |--Glossword 1.8.11 LFI |--CMS INFORMATION: | |--WEB: http://code.google.com/p/glossword/ |--DOWNLOAD: http://code.google.com/p/glossword/downloads/list |--DESCRIPTION: Glossword is a system written in PHP to create and publish online multilingual dictionary,...
Glossword 1.8.8 & 1.8.12 - Arbitrary File Upload Vulnerability
No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core'...
Glossword 1.8.12 Arbitrary File Upload
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 "Glossword v1.8.8 ...
Glossword v1.8.8 - 1.8.12 Arbitrary File Upload Vulnerability
Exploit for php platform in category web applications This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...
Glossword 1.8.8 < 1.8.12 - Arbitrary File Upload (Metasploit)
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 "Glossword v1.8.8 ...
Glossword v1.8.8 - 1.8.12 Arbitrary File Upload Vulnerability
This module exploits a file upload vulnerability in Glossword versions 1.8.8 to 1.8.12 when run as a standalone application. This application has an upload feature that allows an authenticated user with administrator roles to upload arbitrary files to the 'gwtemp/a/' directory. This module requir...
Glossword 1.8.3 - SQL Injection
Glossword 1.8.3 - SQL Injection cs ============================================================== Vulnerable Software: Glossword 1.8.3 Official site: http://sourceforge.net/projects/glossword/ Download: http://sourceforge.net/projects/glossword/files/glossword/1.8.3/ Vuln: SQLi...
glossword 1.8.12 - Multiple Vulnerabilities
glossword 1.8.12 - Multiple Vulnerabilities =================================================== Vulnerable Software: Glossword 1.8.12 Tested version: Glossword 1.8.12 Download: http://sourceforge.net/projects/glossword/files/glossword/1.8.12/ Vulns: XSS && Database Backup Disclosure && CSRF &&...
Glossword 1.8.12 XSS / CSRF / Shell Upload / Database Disclosure
Glossword version 1.8.12 suffers from database backup disclosure, cross site request forgery, cross site scripting, and remote shell upload vulnerabilities. =================================================== Vulnerable Software: Glossword 1.8.12 Tested version: Glossword 1.8.12 Download:...