2 matches found
UsualToolcms my***.php file has an arbitrary file deletion vulnerability
UsualToolCMS UTCMS is an enterprise web content management system CMS based on PHP and MySQL. An arbitrary file deletion vulnerability exists in the UsualToolcms my.php file. An attacker can exploit the vulnerability to delete arbitrary files...
CVE-2009-2141
Multiple cross-site scripting XSS vulnerabilities in TBDev.NET 01-01-08 allow remote attackers to inject arbitrary web script or HTML via 1 the returnto parameter to makepoll.php, 2 the returnto parameter in a delete action to polls.php, or the 3 Info or 4 Avatar field to my.php...