15 matches found
EUVD-2006-6766
Malware in sbrugna...
EUVD-2006-6870
Malware in sbrugna...
CVE-2006-6887
Unrestricted file upload vulnerability in logahead UNU 1.0 allows remote attackers to upload and execute arbitrary PHP code via unspecified vectors related to plugins/widged/widged.php aka the WidgEd plugin, a different vulnerability than CVE-2006-6783. NOTE: The provenance of this information is...
logahead UNU edition 1.0 - Remote Upload File / Code Execution Vuln
No description provided by source. -=--------------------ADVISORY-------------------=- logahead UNU edition 1.0 Author: CorryL [email protected] -=-----------------------------------------------=- -=+ Application: logahead UNU edition -=+ Version: 1.0 -=+ Vendor's URL: http://typo.i24.cc/logahea...
CVE-2006-6887
Unrestricted file upload vulnerability in logahead UNU 1.0 allows remote attackers to upload and execute arbitrary PHP code via unspecified vectors related to plugins/widged/widged.php aka the WidgEd plugin, a different vulnerability than CVE-2006-6783. NOTE: The provenance of this information is...
CVE-2006-6887
The CVE-2006-6887 entry describes an unrestricted file upload vulnerability in logahead UNU 1.0 (before 2006-12-26) allowing remote attackers to upload and execute arbitrary PHP code via unspecified vectors related to plugins/widged/_widged.php (WidgEd plugin). The root cause is suggested as a po...
Logahead UNU版本_widged.php远程文件上传及代码执行漏洞
Logahead是一款开源的blog软件,具有tagging、拖放等功能。 Logahead在处理用户请求时存在输入验证漏洞,远程攻击者可能利用此漏洞在服务器上以Web进程权限执行任意命令。 Logahead的extras/plugins/widged/widged.php脚本中存在认证绕过漏洞,允许未经认证的攻击者向服务器上传文件。此外,该脚本还没有验证上传文件的扩展名,允许攻击者上传有任意扩展名(如.php)的文件并在服务器上执行任意PHP代码。 Logahead Logahead UNU edition 1.0...
CVE-2006-6783
logahead UNU 1.0 before 20061226 allows remote attackers to upload arbitrary files via unspecified vectors related to plugins/widged/widged.php aka the WidgEd plugin, possibly because of an authentication bypass. NOTE: some of these details are obtained from third party information...
CVE-2006-6783
CVE-2006-6783 pertains to logahead UNU 1.0 prior to 20061226. Affected component: plugins/widged/_widged.php (WidgEd plugin). Root cause indicated as an unrestricted file upload vulnerability that may be tied to an authentication bypass, enabling remote attackers to upload arbitrary files. This c...
CVE-2006-6783
logahead UNU 1.0 before 20061226 allows remote attackers to upload arbitrary files via unspecified vectors related to plugins/widged/widged.php aka the WidgEd plugin, possibly because of an authentication bypass. NOTE: some of these details are obtained from third party information...
logahead UNU edition 1.0 Remote Upload File / Code Execution Vuln
No description provided by source. -=--------------------ADVISORY-------------------=- logahead UNU edition 1.0 Author: CorryL [email protected] -=-----------------------------------------------=- -=+ Application: logahead UNU edition -=+ Version: 1.0 -=+ Vendor's URL: http://typo.i24.cc/logahea...
[Full-disclosure] logahead UNU edition 1.0 Remote upload file & code execution
-=--------------------ADVISORY-------------------=- logahead UNU edition 1.0 Author: CorryL [email protected] -=-----------------------------------------------=- -=+ Application: logahead UNU edition -=+ Version: 1.0 -=+ Vendor's URL: http://typo.i24.cc/logahead/ -=+ Platform: WindowsLinuxUnix -...
logahead UNU edition 1.0 - Arbitrary File Upload Code Execution
logahead UNU edition 1.0 - Arbitrary File Upload Code Execution -=--------------------ADVISORY-------------------=- logahead UNU edition 1.0 Author: CorryL [email protected] -=-----------------------------------------------=- -=+ Application: logahead UNU edition -=+ Version: 1.0 -=+ Vendor's UR...
logahead UNU edition 1.0 Remote Upload File / Code Execution Vuln
Exploit for unknown platform in category web applications...
logahead UNU edition 1.0 - Arbitrary File Upload / Code Execution
-=--------------------ADVISORY-------------------=- logahead UNU edition 1.0 Author: CorryL [email protected] -=-----------------------------------------------=- -=+ Application: logahead UNU edition -=+ Version: 1.0 -=+ Vendor's URL: http://typo.i24.cc/logahead/ -=+ Platform: Windows\Linux\Unix...