17 matches found
EUVD-2007-5710
Malware in sbrugna...
EUVD-2007-5708
Malware in sbrugna...
EUVD-2007-5709
Malware in sbrugna...
Korean GHBoard FlashUpload Component download.jsp name Parameter Arbitrary File Access
No description provided by source. source: http://www.securityfocus.com/bid/26182/info GHBoard is prone to multiple vulnerabilities that let attackers upload and download arbitrary files and execute arbitrary code within the context of the webserver process...
CVE-2007-5737
Unrestricted file upload vulnerability in component/upload.jsp in Korean GHBoard allows remote attackers to upload arbitrary files via unspecified vectors, probably involving a direct request...
Design/Logic Flaw
The FlashUpload component in Korean GHBoard uses a client-side protection mechanism to prevent uploading of dangerous file extensions, which allows remote attackers to bypass restrictions and upload arbitrary files via a modified copy of component/flashupload/upload.html...
CVE-2007-5738
The FlashUpload component in Korean GHBoard uses a client-side protection mechanism to prevent uploading of dangerous file extensions, which allows remote attackers to bypass restrictions and upload arbitrary files via a modified copy of component/flashupload/upload.html...
CVE-2007-5739
Directory traversal vulnerability in component/flashupload/download.jsp in the FlashUpload component in Korean GHBoard allows remote attackers to read arbitrary files via a .. dot dot in the name parameter...
Directory traversal
Directory traversal vulnerability in component/flashupload/download.jsp in the FlashUpload component in Korean GHBoard allows remote attackers to read arbitrary files via a .. dot dot in the name parameter...
CVE-2007-5738
The FlashUpload component in Korean GHBoard uses a client-side protection mechanism to prevent uploading of dangerous file extensions, which allows remote attackers to bypass restrictions and upload arbitrary files via a modified copy of component/flashupload/upload.html...
CVE-2007-5739
Directory traversal vulnerability in component/flashupload/download.jsp in the FlashUpload component in Korean GHBoard allows remote attackers to read arbitrary files via a .. dot dot in the name parameter...
CVE-2007-5738
The CVE-2007-5738 entry concerns the FlashUpload component in Korean GHBoard. A client-side protection mechanism intended to block dangerous file extensions can be bypassed, enabling a remote attacker to upload arbitrary files through a modified copy of component/flashupload/upload.html. This is ...
Korean GHBoard FlashUpload Component - download.jsp?name Arbitrary File Access
Korean GHBoard FlashUpload Component - download.jsp?name Arbitrary File Access...
Korean GHBoard - Componentupload.jsp Arbitrary File Upload
Korean GHBoard - Componentupload.jsp Arbitrary File Upload...
Korean GHBoard Multiple Vulnerabilities by Xcross87
Software : Korean GHBoard Site : http://www.ghlab.com/ Found by : Xcross87 1. File Upload Vulnerability Xploit : victim.com/ghboard/component/upload.jsp 2. FlashUpload component File Upload and File Download Vulnerability Upload Xploit : victim.com/ghboard/component/flashupload/upload.html Not...
koreanghboard-multi.txt
Software : Korean GHBoard Site : http://www.ghlab.com/ Found by : Xcross87 1. File Upload Vulnerability Xploit : victim.com/ghboard/component/upload.jsp 2. FlashUpload component File Upload and File Download Vulnerability Upload Xploit : victim.com/ghboard/component/flashupload/upload.html Not...
Korean GHBoard FlashUpload Component - 'download.jsp?name' Arbitrary File Access
source: https://www.securityfocus.com/bid/26182/info GHBoard is prone to multiple vulnerabilities that let attackers upload and download arbitrary files and execute arbitrary code within the context of the webserver process...