32 matches found
EUVD-2019-20004
phpFileManager 1.7.8 contains a local file inclusion vulnerability that allows unauthenticated attackers to read arbitrary files by manipulating the action, fmcurrentdir, and filename parameters. Attackers can send GET requests to index.php with crafted parameter values to access sensitive files...
CVE-2019-25632
phpFileManager 1.7.8 contains a local file inclusion vulnerability that allows unauthenticated attackers to read arbitrary files by manipulating the action, fmcurrentdir, and filename parameters. Attackers can send GET requests to index.php with crafted parameter values to access sensitive files...
PHP File Manager 访问控制错误漏洞
PHP File Manager is a complete file system management tool developed by Dulldusk’s developers. Version 1.7.8 of PHP File Manager contains an access control vulnerability, which stems from local file inclusion. This vulnerability could allow unauthenticated attackers to read arbitrary files by...
EUVD-2008-3490
Malware in sbrugna...
EUVD-2024-46846
Malicious code in bioql PyPI...
FileRise
FileRise !GitHub starshttps://img.shields.io/github/stars...
CVE-2024-5673
Vulnerability in Dulldusk's PHP File Manager affecting version 1.7.8. This vulnerability consists of an XSS through the fmcurrentdir parameter of index.php. An attacker could send a specially crafted JavaScript payload to an authenticated user and partially hijack their browser session...
CVE-2024-5673 Cross-Site Scripting in PHP File Manager by Dulldusk
Vulnerability in Dulldusk's PHP File Manager affecting version 1.7.8. This vulnerability consists of an XSS through the fmcurrentdir parameter of index.php. An attacker could send a specially crafted JavaScript payload to an authenticated user and partially hijack their browser session...
CVE-2024-5673 Cross-Site Scripting in PHP File Manager by Dulldusk
Vulnerability in Dulldusk's PHP File Manager affecting version 1.7.8. This vulnerability consists of an XSS through the fmcurrentdir parameter of index.php. An attacker could send a specially crafted JavaScript payload to an authenticated user and partially hijack their browser session...
PHP File Manager security vulnerability
PHP File Manager is a complete file system management tool from the individual developers at Dulldusk. A security vulnerability exists in PHP File Manager version 1.7.8, which stems from the presence of a cross-site scripting XSS vulnerability that allows an attacker to hijack a browser session b...
eXtplorer 跨站脚本漏洞
eXtplorer is a PHP-based file manager. A cross-site scripting vulnerability exists in versions prior to eXtplorer 2.1.13, which stems from a problem with some unknown functionality that can lead to cross-site scripting...
CVE-2017-8297
A path traversal vulnerability exists in simple-file-manager before 2017-04-26, affecting index.php the sole "Simple PHP File Manager" component...
PHP File Manager 0.9.8 Authentication Bypass / Code Execution
PHP File Manager 0.9.8 http://phpfm.sourceforge.net/ is vulnerable to authentication bypass due to insecure implementation of register globals emulation. An attacker is able to override the blockKeys array and thus build a valid session and access all the protected functionality including executi...
Revived Wire Media PHP File Manager Username Backdoor
An attacker might use a backdoor which exists in PHP File Manager's user database. A successful exploitation might allow the attacker to create an administrator user on vulnerable installations or to run arbitrary code...
PHP File Manager Backdoor Vulnerability
PHP File Manager consists of a default backdoor user. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
EUVD-2015-1559
Multiple cross-site scripting XSS vulnerabilities in Gecko CMS 2.2 and 2.3 allow remote attackers to inject arbitrary web script or HTML via the 1 horder, 2 jakcatid, 3 jakcontent, 4 jakcss, 5 jakdeletelog, 6 jakemail, 7 jakextfile, 8 jakfile, 9 jakhookshow, 10 jakimg, 11 jakjavascript, 12...
Libra PHP File Manager <= 1.18 Insecure Cookie Handling Vulnerability
No description provided by source. + Libra PHP File Manager Insecure Cookie Handling Vulnerability + Discovered By Stack + Greetz : All my freind --- exploit: javascript:document.cookie = user=1; path=/; document.cookie = pass=1; path=/; milw0rm.com 2008-09-26...
Tastydir <= 1.2 (1216) Multiple Vulnerabilities
No description provided by source. Exploit Title: Tastydir = 1216 folder creation vuln Date: Oct 17 2010 Author: R Software Link: http://codecanyon.net/item/tastydir-an-ajax-file-manager-and-dir-listing/117167 Version: 1216 Tested on: Ubuntu 10.10 Information: Tastydir is a cross-platform PHP fil...
RogioBiz PHP File Manager 1.2 Administrative Bypass
bypass admin exploit Author: ItSecTeam download from:http://www.scriptingblog.com/download/RogioBizPHPfilemanagerV1.2.zip script:RogioBizPHPfilemanagerV1.2 dork:inurl:"/rbfminc/" ----------------------------------------- use:run this xpl and after runing eror Incorect username or password! now...
RogioBiz PHP file manager V1.2 bypass admin exploit
Exploit for unknown platform in category web applications =================================================== RogioBiz PHP filemanager V1.2 bypass admin exploit =================================================== bypass admin exploit Author: ItSecTeam download...