10 matches found
CVE-2022-23383
YzmCMS v6.3 is affected by broken access control. Without login, unauthorized access to the user's personal home page can be realized. It is necessary to judge the user's login status before accessing the personal home page, but the vulnerability can access other users' home pages through the non...
Redmine cross-site scripting vulnerability (CNVD-2017-31961)
Redmine is a set of open source Web-based project management and defect tracking tools . The tool provides project management , issue tracking and role-based access control and other features . A cross-site scripting vulnerability exists in the Textile and Markdown text formatting and project hom...
Mambo User Home Pages Component <= 0.5 - Remote Include Vulnerability
No description provided by source. Kurdish Security Freedom For Ocalan Contact : irc.gigachat.net kurdhack & www.PatrioticHackers.com Rish : High Class : Remote Script : User Home Pges Site : www.ravensportal.co.uk Thanx : kurdishsniper,netqurd,flot,azad,darki,B3g0k,jubni,milex,fearless,kha,kca a...
User Home Pages UHP_CONFIG.PHP远程文件包含漏洞
User Home Pages是一款基于PHP的个人主页管理程序。 User Home Pages不正确过滤用户提交的URI数据,远程攻击者可以利用漏洞以WEB进程权限执行任意命令。 问题是'uhpconfig.php'脚本对用户提交的"mosConfigabsolutepath"参数缺少过滤,提交恶意的远程服务器作为包含对象,可导致以WEB进程权限执行任意PHP代码。 User Home Pages User Home Pages 0.5 http://mamboxchange.com/projects/uhp/...
Mambo User Home Pages Component <= 0.5 Remote Include Vulnerability
Exploit for unknown platform in category web applications =================================================================== Mambo User Home Pages Component Kurdish Security Freedom For Ocalan Rish : High Class : Remote Script : User Home Pges Site : www.ravensportal.co.uk Thanx :...
Mambo Component User Home Pages 0.5 - Remote File Inclusion
Mambo Component User Home Pages 0.5 - Remote File Inclusion Kurdish Security Freedom For Ocalan Contact : irc.gigachat.net kurdhack & www.PatrioticHackers.com Rish : High Class : Remote Script : User Home Pges Site : www.ravensportal.co.uk Thanx :...
Mambo User Home Pages Component <= 0.5 Remote Include Vulnerability
No description provided by source. Kurdish Security Freedom For Ocalan Contact : irc.gigachat.net kurdhack & www.PatrioticHackers.com Rish : High Class : Remote Script : User Home Pges Site : www.ravensportal.co.uk Thanx : kurdishsniper,netqurd,flot,azad,darki,B3g0k,jubni,milex,fearless,kha,kca a...
Mambo Component User Home Pages 0.5 - Remote File Inclusion
Kurdish Security Freedom For Ocalan Contact : irc.gigachat.net kurdhack & www.PatrioticHackers.com Rish : High Class : Remote Script : User Home Pges Site : www.ravensportal.co.uk Thanx : kurdishsniper,netqurd,flot,azad,darki,B3g0k,jubni,milex,fearless,kha,kca and other my friends Code : global...
CVE-2002-1427
The printhtmltofile function in edit.cgi for Easy Homepage Creator 1.0 does not check user credentials, which allows remote attackers to modify home pages of other users...
CVE-2002-1427
The printhtmltofile function in edit.cgi for Easy Homepage Creator 1.0 does not check user credentials, which allows remote attackers to modify home pages of other users...