ePhone Disk 1.0.2 iOS - Multiple Vulnerabilities

ePhone Disk 1.0.2 iOS - Multiple Vulnerabilities Document Title: =============== ePhone Disk v1.0.2 iOS - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1230 Release Date: ============= 2014-03-25 Vulnerability Laboratory ID...

Easy FileManager 1.1 iOS - Multiple Vulnerabilities

Document Title: =============== Easy FileManager 1.1 iOS - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1234 Release Date: ============= 2014-03-25 Vulnerability Laboratory ID VL-ID: ==================================== 12...

UBUNTU-CVE-2013-5951

Multiple cross-site scripting XSS vulnerabilities in eXtplorer 2.1.3, when used as a component for Joomla!, allow remote attackers to inject arbitrary web script or HTML via the PATHINFO to 1 application.js.php in scripts/ or 2 admin.php, 3 copymove.php, 4 functions.php, 5 header.php, or 6...

CVE-2013-5951

Multiple cross-site scripting XSS vulnerabilities in eXtplorer 2.1.3, when used as a component for Joomla!, allow remote attackers to inject arbitrary web script or HTML via the PATHINFO to 1 application.js.php in scripts/ or 2 admin.php, 3 copymove.php, 4 functions.php, 5 header.php, or 6...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in eXtplorer 2.1.3, when used as a component for Joomla!, allow remote attackers to inject arbitrary web script or HTML via the PATHINFO to 1 application.js.php in scripts/ or 2 admin.php, 3 copymove.php, 4 functions.php, 5 header.php, or 6...

ePhone Disk v1.0.2 iOS - Multiple Web Vulnerabilities

Document Title: =============== ePhone Disk v1.0.2 iOS - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1230 Release Date: ============= 2014-03-25 Vulnerability Laboratory ID VL-ID: ==================================== 1230...

qEngine 4.1.66.0.0 - task.php Local File Inclusion

qEngine 4.1.66.0.0 - task.php Local File Inclusion source: https://www.securityfocus.com/bid/66401/info qEngine is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input before being used to include files. An attacker can exploit this issue using...

ePhone Disk v1.0.2 iOS - Multiple Web Vulnerabilities

Document Title: =============== ePhone Disk v1.0.2 iOS - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1230 Release Date: ============= 2014-03-25 Vulnerability Laboratory ID VL-ID: ==================================== 1230...

Easy FileManager 1.1 iOS - Multiple Web Vulnerabilities

Document Title: =============== Easy FileManager 1.1 iOS - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1234 Release Date: ============= 2014-03-25 Vulnerability Laboratory ID VL-ID: ==================================== 12...

Wireless Drive 1.1.0 iOS - Multiple Web Vulnerabilities

Wireless Drive 1.1.0 iOS - Multiple Web Vulnerabilities Document Title: =============== Wireless Drive v1.1.0 iOS - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1229 Release Date: ============= 2014-03-19 Vulnerability...

Lazybone Studios WiFi Music 1.0 iOS - Multiple Vulnerabilities

Document Title: =============== Lazybone Studios WiFi Music 1.0 iOS - Multiple Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1233 Release Date: ============= 2014-03-20 Vulnerability Laboratory ID VL-ID:...

Lazybone Studios WiFi Music 1.0 iOS - Multiple Vulnerabilities

Document Title: =============== Lazybone Studios WiFi Music 1.0 iOS - Multiple Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1233 Release Date: ============= 2014-03-20 Vulnerability Laboratory ID VL-ID:...

Wireless Drive 1.1.0 LFI / Command Injection

Document Title: =============== Wireless Drive v1.1.0 iOS - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1229 Release Date: ============= 2014-03-19 Vulnerability Laboratory ID VL-ID: ====================================...

BigACE 2.7.5 - LANGUAGE Directory Traversal

BigACE 2.7.5 - LANGUAGE Directory Traversal source: https://www.securityfocus.com/bid/66350/info BIGACE Web CMS is prone to an SQL-injection vulnerability and a local file-include vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker can exploit these...

BigACE 2.7.5 - 'LANGUAGE' Directory Traversal

source: https://www.securityfocus.com/bid/66350/info BIGACE Web CMS is prone to an SQL-injection vulnerability and a local file-include vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker can exploit these vulnerabilities to compromise the application, access o...

Wireless Drive v1.1.0 iOS - Multiple Web Vulnerabilities

Document Title: =============== Wireless Drive v1.1.0 iOS - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1229 Release Date: ============= 2014-03-18 Vulnerability Laboratory ID VL-ID: ====================================...

PHP file include vulnerability analysis-vulnerability warning-the black bar safety net

One, What is”remote file inclusion vulnerability”for? The answer is: the server through the php properties of a function to contain any files, since you want to include this file source filter is not strict, so can go to that contains a malicious file and we can construct the malicious file to...

McAfee ePolicy Orchestrator information leakage

Information leakage via XML include...

Application there is a file include vulnerability Unix systems-vulnerability warning-the black bar safety net

Found time: Vulnerability type: a file that contains Belongs the establishment of the station program: other Belongs to the server type: General Belongs to the programming language: other Description: The target Unix system, the application may exist in the file containing the vulnerability. 1. T...

Oracle Demantra 12.2.1 - Arbitrary File Disclosure

Oracle Demantra 12.2.1 - Arbitrary File Disclosure Details: The Team discovered a Local File Include LFI vulnerability. A file inclusion vulnerability occurs when a file from the target system is injected into a page on the attacked server page. The vulnerable page is: /demantra/GraphServlet...