CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

0day.today•added 2016/06/17 12:0 a.m.•32 views

phpATM 1.32 - Multiple Vulnerabilities

Exploit for php platform in category web applications !-- Exploit Title : "phpATM = 1.32 Multiple CSRF Vulnerabilities & Full Path Disclosure Vulnerability" Date : 17/06/2016 Author : Paolo Massenio - pmassenioATgmail Vendor : phpATM - http://phpatm.org/ Version : = 1.32 Tested on : Windows 10 wi...

exploitpack•added 2016/06/17 12:0 a.m.•18 views

phpATM 1.32 - Multiple Vulnerabilities

phpATM 1.32 - Multiple Vulnerabilities !-- Exploit Title : "phpATM = 1.32 Multiple CSRF Vulnerabilities & Full Path Disclosure Vulnerability" Date : 17/06/2016 Author : Paolo Massenio - pmassenioATgmail Vendor : phpATM - http://phpatm.org/ Version : = 1.32 Tested on : Windows 10 with XAMPP 1 CSRF...

0.1AI score

Exploit DB•added 2016/06/17 12:0 a.m.•32 views

phpATM 1.32 (Windows) - Arbitrary File Upload / Remote Command Execution

?php / Exploit Title : "phpATM = 1.32 Remote Command Execution Shell Upload on Windows Servers" Date : 17/06/2016 Author : Paolo Massenio - pmassenioATgmail Vendor : phpATM - http://phpatm.org/ Version : = 1.32 Tested on : Windows 10 with XAMPP PoF "phpATM is the acronym for PHP Advanced Transfer...

0day.today•added 2016/06/17 12:0 a.m.•30 views

phpATM 1.32 - Arbitrary File Upload / Remote Command Execution (Windows Servers)

Exploit for php platform in category web applications ?php / Exploit Title : "phpATM = 1.32 Remote Command Execution Shell Upload on Windows Servers" Date : 17/06/2016 Author : Paolo Massenio - pmassenioATgmail Vendor : phpATM - http://phpatm.org/ Version : = 1.32 Tested on : Windows 10 with XAMP...

Packet Storm•added 2016/06/17 12:0 a.m.•20 views

phpATM 1.32 Remote Command Execution / Shell Upload

0.5AI score

Packet Storm•added 2016/06/17 12:0 a.m.•41 views

phpATM 1.32 Cross Site Request Forgery / Path Disclosure

!-- Exploit Title : "phpATM = 1.32 Multiple CSRF Vulnerabilities & Full Path Disclosure Vulnerability" Date : 17/06/2016 Author : Paolo Massenio - pmassenioATgmail Vendor : phpATM - http://phpatm.org/ Version : = 1.32 Tested on : Windows 10 with XAMPP 1 CSRF in configure.php phpATM lets the...

Exploit DB•added 2016/06/17 12:0 a.m.•28 views

phpATM 1.32 - Multiple Vulnerabilities

seebug.org•added 2014/07/01 12:0 a.m.•17 views

phpAtm <= 1.21 (include_location) Remote File Include Vulnerabilities

No description provided by source. phpAtm = v1.21 includelocation Remote File Inclusion Exploit Level : Dangerous Download : http://phpatm.free.fr/ Version : v1.21 Found By: KinSize MHG Security Team Code : include$includelocation.'include/conf.php'; exploit:...

Packet Storm•added 2007/05/16 12:0 a.m.•20 views

phpatm-rfi.txt

download page in : http://phpatm.free.fr/ bug in : phpatm injection attack : index.php?action=downloadfile&filename=index.php&directory=../& Dork in google : "powered by php advanced transfer manager" example :...

NVD•added 2007/05/14 11:19 p.m.•8 views

CVE-2007-2659

Directory traversal vulnerability in index.php in PHP Advanced Transfer Manager phpATM 1.30 allows remote attackers to read arbitrary files and obtain script source code via a .. dot dot in the directory parameter in a downloadfile action...

5CVSS6.9AI score0.04969EPSS

Exploits0References5

CVE•added 2007/05/14 11:0 p.m.•34 views

CVE-2007-2659

CVE-2007-2659 describes a directory traversal vulnerability in PHP Advanced Transfer Manager (phpATM) v1.30. The flaw is in the index.php file, in the downloadfile action, where an attacker can manipulate the directory parameter using ".." to access arbitrary files, potentially exposing script so...

5CVSS6.9AI score0.04969EPSS

Exploits0References5Affected Software1

seebug.org•added 2007/05/13 12:0 a.m.•15 views

phpAtm 1.30 (downloadfile) Remote File Disclosure Vulnerability

No description provided by source. download page in : http://phpatm.free.fr/ bug in : phpatm injection attack : index.php?action=downloadfile&filename=index.php&directory=../& Dork in google : "powered by php advanced transfer manager" example :...

0day.today•added 2007/05/13 12:0 a.m.•79 views

phpAtm 1.30 (downloadfile) Remote File Disclosure Vulnerability

Exploit for unknown platform in category web applications =============================================================== phpAtm 1.30 downloadfile Remote File Disclosure Vulnerability =============================================================== download page in : http://phpatm.free.fr/ bug in ...

exploitpack•added 2007/05/13 12:0 a.m.•23 views

phpAtm 1.30 - downloadfile Remote File Disclosure

phpAtm 1.30 - downloadfile Remote File Disclosure download page in : http://phpatm.free.fr/ bug in : phpatm injection attack : index.php?action=downloadfile&filename=index.php&directory=../& Dork in google : "powered by php advanced transfer manager" example :...

0.1AI score

Exploit DB•added 2007/05/13 12:0 a.m.•32 views

phpAtm 1.30 - 'downloadfile' Remote File Disclosure