CVE-2006-6994

Unrestricted file upload vulnerability in add.asp in OzzyWork Gallery, possibly 2.0 and earlier, allows remote attackers to upload and execute arbitrary ASP files by removing the client-side security checks...

CVE-2006-6994

Unrestricted file upload vulnerability in OzzyWork Gallery’s add.asp (version 2.0 and earlier) allows remote attackers to upload and execute arbitrary ASP files by bypassing client-side security checks. Affected component: OzzyWork Gallery add.asp; root cause: lack of proper server-side validatio...

PT-2007-1273 · Ozzywork · Ozzywork Gallery

Name of the Vulnerable Software and Affected Versions: OzzyWork Gallery versions 2.0 and earlier Description: The issue concerns an unrestricted file upload vulnerability. This allows remote attackers to upload and execute arbitrary ASP files by bypassing client-side security checks...

# MHG Security Team --- OzzyWork Gallery Upload Vulnerabilities

Milli-Harekat Advisory www.milli-harekat.org OzzyWork Gallery Upload Vulnerabilities Risk : High Class: Remote Script : OzzyWork Gallery All Version Credits : Dj ReMix Thanks : y Korsan , ESKOBAR , Poizonb0x , TRIP OzzyWork Gallery pictures upload page : www.victim.com/Ozzywork Path /add.asp...

# MHG Security Team --- OzzyWork Gallery SQL Injection

Milli-Harekat Advisory www.milli-harekat.org OzzyWork Galeri Admin SQL Injection Risk : High Script : OzzyWork Gallery All Version Credits : Dj ReMix Thanks : y Korsan , ESKOBAR , Poizonb0x , TRIP OzzyWork Gallery Admin Page's www.victim.com/Ozzywork Path /admindefault.asp Login and password : 'o...