CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 2025/08/05 8:2 p.m.•7 views

CVE-2013-10067 Glossword 1.8.8 - 1.8.12 Arbitrary File Upload RCE

9.4CVSS0.52988EPSS

Vulnrichment•added 2025/08/05 8:2 p.m.•2 views

CVE-2013-10067 Glossword 1.8.8 - 1.8.12 Arbitrary File Upload RCE

9.4CVSS7.5AI score0.52988EPSS

CVE•added 2025/08/05 8:2 p.m.•13 views

CVE-2013-10067

Glossword (versions 1.8.8–1.8.12) contains an authenticated arbitrary file upload flaw in the gw_admin.php interface. Insufficient validation of file type/path allows an administrator to upload PHP payloads to gw_temp/a/, enabling remote code execution. Public advisories and a Metasploit module r...

9.4CVSS7.6AI score0.52988EPSS

Positive Technologies•added 2025/08/05 12:0 a.m.•3 views

PT-2025-31991 · Glossword · Glossword

Name of the Vulnerable Software and Affected Versions: Glossword versions 1.8.8 through 1.8.12 Description: Glossword versions 1.8.8 through 1.8.12 contain an authenticated arbitrary file upload vulnerability. When deployed as a standalone application, the administrative interface gw admin.php...

9.4CVSS7AI score0.52988EPSS

Exploits0References8

CNNVD•added 2025/08/05 12:0 a.m.•1 views

Glossword 安全漏洞

Glossword is a free dictionary application by DmitrySh Individual Developer. A security vulnerability exists in Glossword versions 1.8.8 through 1.8.12, which stems from an unvalidated uploaded file type and could lead to arbitrary file uploads and remote code execution...

9.4CVSS7.9AI score0.52988EPSS

Exploits0References7

seebug.org•added 2014/07/01 12:0 a.m.•19 views

Glossword <= 1.8.11 Arbitrary Uninstall / Install Vulnerability

No description provided by source. ----------------------------- Evil-Cod3r ------------------------------- ============================================================================== / \ | | | | / \ | | | | / \ | | | | / \ | || | / \ | | | | / \ | | IN THE NAME OF // \ || || // \ || || &n...

seebug.org•added 2014/07/01 12:0 a.m.•76 views

Glossword 1.8.8 & 1.8.12 - Arbitrary File Upload Vulnerability

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core'...

seebug.org•added 2014/07/01 12:0 a.m.•15 views

glossword 1.8.12 - Multiple Vulnerabilities

No description provided by source...

seebug.org•added 2014/07/01 12:0 a.m.•14 views

Glossword 1.8.3 - SQL Injection Vulnerability

No description provided by source. cs ============================================================== Vulnerable Software: Glossword 1.8.3 Official site: http://sourceforge.net/projects/glossword/ Download: http://sourceforge.net/projects/glossword/files/glossword/1.8.3/ Vuln: SQLi...

seebug.org•added 2014/07/01 12:0 a.m.•14 views

Glossword <= 1.8.11 (index.php x) Local File Inclusion Vulnerability

No description provided by source. |--Glossword 1.8.11 LFI |--CMS INFORMATION: | |--WEB: http://code.google.com/p/glossword/ |--DOWNLOAD: http://code.google.com/p/glossword/downloads/list |--DESCRIPTION: Glossword is a system written in PHP to create and publish online multilingual dictionary,...

Exploit DB•added 2013/02/26 12:0 a.m.•20 views

Glossword 1.8.8 < 1.8.12 - Arbitrary File Upload (Metasploit)

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 "Glossword v1.8.8 ...

7.4AI score

Packet Storm•added 2013/02/26 12:0 a.m.•17 views

Glossword 1.8.12 Arbitrary File Upload

0.1AI score

0day.today•added 2013/02/26 12:0 a.m.•29 views

Glossword v1.8.8 - 1.8.12 Arbitrary File Upload Vulnerability

Exploit for php platform in category web applications This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...

Metasploit•added 2013/02/24 3:29 p.m.•15 views

Glossword v1.8.8 - 1.8.12 Arbitrary File Upload Vulnerability

This module exploits a file upload vulnerability in Glossword versions 1.8.8 to 1.8.12 when run as a standalone application. This application has an upload feature that allows an authenticated user with administrator roles to upload arbitrary files to the 'gwtemp/a/' directory. This module requir...

7.2AI score

exploitpack•added 2013/02/05 12:0 a.m.•48 views

glossword 1.8.12 - Multiple Vulnerabilities

glossword 1.8.12 - Multiple Vulnerabilities =================================================== Vulnerable Software: Glossword 1.8.12 Tested version: Glossword 1.8.12 Download: http://sourceforge.net/projects/glossword/files/glossword/1.8.12/ Vulns: XSS && Database Backup Disclosure && CSRF &&...

0.1AI score

Exploit DB•added 2013/02/05 12:0 a.m.•42 views

glossword 1.8.12 - Multiple Vulnerabilities

=================================================== Vulnerable Software: Glossword 1.8.12 Tested version: Glossword 1.8.12 Download: http://sourceforge.net/projects/glossword/files/glossword/1.8.12/ Vulns: XSS && Database Backup Disclosure && CSRF && Shell upload. Dork: Powered by Glossword 1.8.1...

7AI score

0day.today•added 2013/02/05 12:0 a.m.•41 views

Glossword 1.8.12 XSS / CSRF / Shell Upload / Database Disclosure

Glossword version 1.8.12 suffers from database backup disclosure, cross site request forgery, cross site scripting, and remote shell upload vulnerabilities. =================================================== Vulnerable Software: Glossword 1.8.12 Tested version: Glossword 1.8.12 Download:...

7.2AI score