16 matches found
EUVD-2017-16470
Malware in sbrugna...
EUVD-2017-5657
Malware in sbrugna...
EUVD-2017-16471
Malware in sbrugna...
Helpdezk 1.1.1 - Arbitrary File Upload
Exploit Title: Helpdezk 1.1.1 - Arbitrary File Upload Dork: N/A Date: 2018-11-13 Exploit Author: Ihsan Sencan Vendor Homepage: http://www.helpdezk.org/ Software Link: https://netcologne.dl.sourceforge.net/project/helpdezk/helpdezk-1.1.1.zip Version: 1.1.1 Category: Webapps Tested on:...
Helpdezk 1.1.1 Shell Upload
Exploit Title: Helpdezk 1.1.1 - Arbitrary File Upload Dork: N/A Date: 2018-11-13 Exploit Author: Ihsan Sencan Vendor Homepage: http://www.helpdezk.org/ Software Link: https://netcologne.dl.sourceforge.net/project/helpdezk/helpdezk-1.1.1.zip Version: 1.1.1 Category: Webapps Tested on:...
Helpdezk 1.1.1 - Arbitrary File Upload
Helpdezk 1.1.1 - Arbitrary File Upload Exploit Title: Helpdezk 1.1.1 - Arbitrary File Upload Dork: N/A Date: 2018-11-13 Exploit Author: Ihsan Sencan Vendor Homepage: http://www.helpdezk.org/ Software Link: https://netcologne.dl.sourceforge.net/project/helpdezk/helpdezk-1.1.1.zip Version: 1.1.1...
CVE-2017-14146
HelpDEZk 1.1.1 allows remote authenticated users to execute arbitrary PHP code by uploading a .php attachment and then requesting it in the helpdezk\app\uploads\helpdezk\attachments\ directory...
CVE-2017-14145
HelpDEZk 1.1.1 has SQL Injection in app\modules\admin\controllers\loginController.php via the admin/login/getWarningInfo/id/ PATHINFO, related to the selectWarning function...
CVE-2017-14146
CVE-2017-14146 affects HelpDEZk 1.1.1 and enables remote authenticated users to execute arbitrary PHP code by uploading a .php attachment and then requesting it from the helpdezk\app\uploads\helpdezk\attachments\ directory. The available sources confirm this file-upload vulnerability and PHP code...
CVE-2017-7446
HelpDEZk 1.1.1 has CSRF in admin/home/person/ with an impact of obtaining admin privileges...
Cross site request forgery (csrf)
HelpDEZk 1.1.1 has CSRF in admin/home/person/ with an impact of obtaining admin privileges...
CVE-2017-7447
HelpDEZk 1.1.1 has CSRF in admin/home/logos/ with an impact of remote execution of arbitrary PHP code...
CVE-2017-7446
HelpDEZk 1.1.1 has CSRF in admin/home/person/ with an impact of obtaining admin privileges...
CVE-2017-7446
HelpDEZk 1.1.1 has CSRF in admin/home/person/ with an impact of obtaining admin privileges...
CVE-2017-7447
HelpDEZk 1.1.1 has CSRF in admin/home/logos/ with an impact of remote execution of arbitrary PHP code...
HelpDEZK 1.1.1 - Cross-Site Request Forgery Code Execution
HelpDEZK 1.1.1 - Cross-Site Request Forgery Code Execution Exploit Title: Multiple CSRF Remote Code Execution Vulnerability on HelpDEZK 1.1.1 Date: 05-April-2017 Exploit Author: @runggareksya, @yokoacc, @AdyWikradinata, @dickysofficial, @dvnrcy Vendor Homepage: http://www.helpdezk.org/ Software...