CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3 matches found

Exploit DB•added 2016/02/21 12:0 a.m.•34 views

PEAR LiveUser < 0.16.8 - Arbitrary File Access

PEAR LiveUser Arbitrary File Access Vendor: Markus Wolff Product: PEAR LiveUser Version: options'cookie''name'; if strlen$cookieData deleteRememberCookie; $this-stack-pushLIVEUSERERRORCOOKIE, 'error', array, 'Wrong data in cookie store in LiveUser::readRememberMeCookie'; return false; $storeid =...

6.4CVSS6.7AI score0.14177EPSS

Exploits2

exploitpack•added 2016/02/21 12:0 a.m.•25 views

PEAR LiveUser 0.16.8 - Arbitrary File Access

PEAR LiveUser 0.16.8 - Arbitrary File Access PEAR LiveUser Arbitrary File Access Vendor: Markus Wolff Product: PEAR LiveUser Version: options'cookie''name'; if strlen$cookieData deleteRememberCookie; $this-stack-pushLIVEUSERERRORCOOKIE, 'error', array, 'Wrong data in cookie store in...

6.4CVSS0.2AI score0.14177EPSS

Exploits2

CVE•added 2006/02/23 11:0 p.m.•57 views

CVE-2006-0869

The CVE-2006-0869 entry concerns PEAR LiveUser before 0.16.9. A directory traversal flaw in the remember-me cookie handling (store_id) allows remote attackers to probe file existence and potentially read or delete arbitrary files on the server. Exploit details exist for PEAR LiveUser

6.4CVSS7.1AI score0.14177EPSS

Exploits2References9Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by