15 matches found
EUVD-2006-6766
Malware in sbrugna...
EUVD-2006-6870
Malware in sbrugna...
CVE-2006-6887
Unrestricted file upload vulnerability in logahead UNU 1.0 allows remote attackers to upload and execute arbitrary PHP code via unspecified vectors related to plugins/widged/widged.php aka the WidgEd plugin, a different vulnerability than CVE-2006-6783. NOTE: The provenance of this information is...
logahead UNU edition 1.0 - Remote Upload File / Code Execution Vuln
No description provided by source. -=--------------------ADVISORY-------------------=- logahead UNU edition 1.0 Author: CorryL [email protected] -=-----------------------------------------------=- -=+ Application: logahead UNU edition -=+ Version: 1.0 -=+ Vendor's URL: http://typo.i24.cc/logahea...
CVE-2006-6887
Unrestricted file upload vulnerability in logahead UNU 1.0 allows remote attackers to upload and execute arbitrary PHP code via unspecified vectors related to plugins/widged/widged.php aka the WidgEd plugin, a different vulnerability than CVE-2006-6783. NOTE: The provenance of this information is...
CVE-2006-6887
The CVE-2006-6887 entry describes an unrestricted file upload vulnerability in logahead UNU 1.0 (before 2006-12-26) allowing remote attackers to upload and execute arbitrary PHP code via unspecified vectors related to plugins/widged/_widged.php (WidgEd plugin). The root cause is suggested as a po...
Logahead UNU版本_widged.php远程文件上传及代码执行漏洞
Logahead是一款开源的blog软件,具有tagging、拖放等功能。 Logahead在处理用户请求时存在输入验证漏洞,远程攻击者可能利用此漏洞在服务器上以Web进程权限执行任意命令。 Logahead的extras/plugins/widged/widged.php脚本中存在认证绕过漏洞,允许未经认证的攻击者向服务器上传文件。此外,该脚本还没有验证上传文件的扩展名,允许攻击者上传有任意扩展名(如.php)的文件并在服务器上执行任意PHP代码。 Logahead Logahead UNU edition 1.0...
CVE-2006-6783
logahead UNU 1.0 before 20061226 allows remote attackers to upload arbitrary files via unspecified vectors related to plugins/widged/widged.php aka the WidgEd plugin, possibly because of an authentication bypass. NOTE: some of these details are obtained from third party information...
CVE-2006-6783
logahead UNU 1.0 before 20061226 allows remote attackers to upload arbitrary files via unspecified vectors related to plugins/widged/widged.php aka the WidgEd plugin, possibly because of an authentication bypass. NOTE: some of these details are obtained from third party information...
CVE-2006-6783
CVE-2006-6783 pertains to logahead UNU 1.0 prior to 20061226. Affected component: plugins/widged/_widged.php (WidgEd plugin). Root cause indicated as an unrestricted file upload vulnerability that may be tied to an authentication bypass, enabling remote attackers to upload arbitrary files. This c...
logahead UNU edition 1.0 Remote Upload File / Code Execution Vuln
No description provided by source. -=--------------------ADVISORY-------------------=- logahead UNU edition 1.0 Author: CorryL [email protected] -=-----------------------------------------------=- -=+ Application: logahead UNU edition -=+ Version: 1.0 -=+ Vendor's URL: http://typo.i24.cc/logahea...
[Full-disclosure] logahead UNU edition 1.0 Remote upload file & code execution
-=--------------------ADVISORY-------------------=- logahead UNU edition 1.0 Author: CorryL [email protected] -=-----------------------------------------------=- -=+ Application: logahead UNU edition -=+ Version: 1.0 -=+ Vendor's URL: http://typo.i24.cc/logahead/ -=+ Platform: WindowsLinuxUnix -...
logahead UNU edition 1.0 - Arbitrary File Upload Code Execution
logahead UNU edition 1.0 - Arbitrary File Upload Code Execution -=--------------------ADVISORY-------------------=- logahead UNU edition 1.0 Author: CorryL [email protected] -=-----------------------------------------------=- -=+ Application: logahead UNU edition -=+ Version: 1.0 -=+ Vendor's UR...
logahead UNU edition 1.0 Remote Upload File / Code Execution Vuln
Exploit for unknown platform in category web applications...
logahead UNU edition 1.0 - Arbitrary File Upload / Code Execution
-=--------------------ADVISORY-------------------=- logahead UNU edition 1.0 Author: CorryL [email protected] -=-----------------------------------------------=- -=+ Application: logahead UNU edition -=+ Version: 1.0 -=+ Vendor's URL: http://typo.i24.cc/logahead/ -=+ Platform: Windows\Linux\Unix...