Flux Player v3.1.0 iOS - File Include & Arbitrary File Upload

Document Title: =============== Flux Player v3.1.0 iOS - File Include & Arbitrary File Upload References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1013 Release Date: ============= 2013-07-15 Vulnerability Laboratory ID VL-ID:...

File Lite 3.3 & 3.5 PRO iOS - Multiple Web Vulnerabilities

====== File Lite 3.3 & 3.5 PRO iOS - Multiple Web Vulnerabilities Date: ===== 2013-05-04 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=939 VL-ID: ===== 939 Common Vulnerability Scoring System: ==================================== 5.9 Introduction: ============= You ha...

Flux Player v3.1.0 iOS - File Include & Arbitrary File Upload

Document Title: =============== Flux Player v3.1.0 iOS - File Include & Arbitrary File Upload References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1013 Release Date: ============= 2013-07-15 Vulnerability Laboratory ID VL-ID:...

WiFly 1.0 Pro iOS - Multiple Web Vulnerabilities

Document Title: =============== WiFly 1.0 Pro iOS - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1011 Release Date: ============= 2013-07-14 Vulnerability Laboratory ID VL-ID: ==================================== 1011 Comm...

WiFly 1.0 Pro iOS - Multiple Web Vulnerabilities

Document Title: =============== WiFly 1.0 Pro iOS - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1011 Release Date: ============= 2013-07-14 Vulnerability Laboratory ID VL-ID: ==================================== 1011 Comm...

Air Drive Plus - Multiple Input Validation Vulnerabilities

Air Drive Plus - Multiple Input Validation Vulnerabilities source: https://www.securityfocus.com/bid/61081/info Air Drive Plus is prone to multiple input validation vulnerabilities including a local file-include vulnerability, an arbitrary file-upload vulnerability, and an HTML-injection...

Air Drive Plus - Multiple Input Validation Vulnerabilities

source: https://www.securityfocus.com/bid/61081/info Air Drive Plus is prone to multiple input validation vulnerabilities including a local file-include vulnerability, an arbitrary file-upload vulnerability, and an HTML-injection vulnerability. An attacker can exploit these issues to upload...

Air Drive Plus v2.4 iOS - Arbitrary File Upload Vulnerability

Document Title: =============== Air Drive Plus v2.4 iOS - Arbitrary File Upload Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1000 Release Date: ============= 2013-07-08 Vulnerability Laboratory ID VL-ID:...

iGet Sharp v1.1.2 iOS - Multiple Web Vulnerabilities

Document Title: =============== iGet Sharp v1.1.2 iOS - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=991 Release Date: ============= 2013-06-29 Vulnerability Laboratory ID VL-ID: ==================================== 991...

Mobile USB Drive HD 1.2 - Arbitrary File Upload Vulnerability

Document Title: =============== Mobile USB Drive HD 1.2 - Arbitrary File Upload Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=989 Release Date: ============= 2013-06-26 Vulnerability Laboratory ID VL-ID: ==================================...

eFile Wifi Transfer Manager 1.0 iOS - Multiple Vulnerabilities

Document Title: =============== eFile Wifi Transfer Manager 1.0 iOS - Multiple Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=982 Release Date: ============= 2013-06-23 Vulnerability Laboratory ID VL-ID:...

ShopEx最新版多处SQL注射

简要描述： 不知道我有不有搞错，但已经尽量下载了最新版了。。。 在很多地方测试都存在。。。 ShopEx最新版多处SQL注射 详细说明： 我很怀疑自己是不是搞错呢。。。 注射1： http://127.0.0.1:5656/shopex/api.php POST act=searchsubregions&apiversion=1.0&returndata=string&pregionid=22 and select 1 fromselect count,concat0x7c,select Select version from informationschema.tables limit...

GLPI <= 0.83.7 LFI Vulnerability - Active Check

GLPI is prone to a local file include LFI vulnerability because it fails to adequately validate user-supplied input. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

DEBIAN-CVE-2013-2004

The 1 GetDatabase and 2 XimParseStringFile functions in X.org libX11 1.5.99.901 1.6 RC1 and earlier do not restrict the recursion depth when processing directives to include files, which allows X servers to cause a denial of service stack consumption via a crafted file...

CVE-2013-3575

hpdiags/frontend2/help/pageview.php in HP Insight Diagnostics 9.4.0.4710 does not properly restrict PHP include or require statements, which allows remote attackers to include arbitrary hpdiags/frontend2/help/ .html files via the path parameter...

KLA10188 Multiple vulnerabilities in HP Insight Diagnostics

Multiple critical vulnerabilities have been found in HP Insight Diagnostics. Malicious users can exploit these vulnerabilities to inject code or write local files. Below is a complete list of vulnerabilities 1. Improper PHP include restrictions can be exploited via a path parameter; 2. A path...

PHPCMS V9 arbitrary file include vulnerability-vulnerability warning-the black bar safety net

Brief description: Somewhere considered not rigorous, it is possible to cause the file containing the vulnerability. Use Conditions: registerglobal=ON Detailed description: Vulnerability file:/plugin.php Vulnerability code: 2 2 row Trigger conditions: registerglobal=ON Code fragment: 1 5 to 2 2...

ssi

This plugin finds server side include SSI vulnerabilities. Plugin type Audit Options This plugin doesnt have any user configured options. Source For more information about this plugin and the associated tests, theres always the source code to understand exactly whats under the hood: Plugin source...

Novell ZENworks Mobile Management Local File Include Vulnerability

Novell ZENworks Mobile Management is prone to a local file include vulnerability because it fails to adequately validate user-supplied input. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right...

Max Forum - Multiple Vulnerabilities

Max Forum - Multiple Vulnerabilities source: https://www.securityfocus.com/bid/60455/info Max Forum is prone to multiple input-validation vulnerabilities including a PHP code-execution vulnerability, a local file-include vulnerability and an information-disclosure because it fails to properly...