Lucene search
K

5 matches found

CVE
CVE
added 2005/02/12 5:0 a.m.45 views

CVE-2004-1426

CVE-2004-1426 affects KorWeblog 1.6.2-cvs and earlier. This directory traversal vulnerability in index.php (lng parameter) allows remote reading of arbitrary files and potential PHP file execution via ".." sequences. The provided documents confirm the affected software and payload, but do not inc...

5CVSS7.3AI score0.01549EPSS
Exploits1References2Affected Software1
securityvulns
securityvulns
added 2005/01/02 12:0 a.m.56 views

KorWeblog php injection Vulnerability

KorWeblog php injection Vulnerability Release Date : 2004/12/31 KST Author : Mins mins at fsu.or.kr Product : KorWeblog http://weblog.kldp.org Vendor-Status: Vendor was contacted but I could not receive reply message. Vendor-Patches: None Impact: Attacker can execute arbitrary php code. Summary...

0.5AI score
Exploits0
securityvulns
securityvulns
added 2004/11/24 12:0 a.m.35 views

[Full-Disclosure] STG Security Advisory: [SSA-20041122-10] KorWeblog directory traversal vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 STG Security Advisory: SSA-20041122-10 KorWeblog directory traversal vulnerability Revision 1.3 Date Published: 2004-11-22 KST Last Update: 2004-11-22 Disclosed by SSR Team [email protected] Summary ======== KorWeblog is a weblog application us...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2004/11/24 12:0 a.m.9 views

KorWeblog 1.6.2 - Remote Directory Listing

KorWeblog 1.6.2 - Remote Directory Listing source: https://www.securityfocus.com/bid/11744/info A vulnerability is reported in the KorWeblog software that may allow a remote user to disclose directory listings. The problem presents itself when a malicious user crafts an URI request containing...

7.5AI score
Exploits0
Exploit DB
Exploit DB
added 2004/11/24 12:0 a.m.19 views

KorWeblog 1.6.2 - Remote Directory Listing

source: https://www.securityfocus.com/bid/11744/info A vulnerability is reported in the KorWeblog software that may allow a remote user to disclose directory listings. The problem presents itself when a malicious user crafts an URI request containing directory traversal sequences. When properly...

7.4AI score
Exploits0
Rows per page
Query Builder