103 matches found
PhpColl 2.5.1 Arbitrary File Upload
PhpCollab 2.5.1 and earlier allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in logosclients/ via clients/editclient.php. id: CVE-2017-6090 info: name: PhpColl 2.5.1 Arbitrary File Uplo...
EUVD-2008-4286
Malware in sbrugna...
EUVD-2017-7326
Malware in sbrugna...
EUVD-2008-4287
Malware in sbrugna...
EUVD-2011-3729
Malware in sbrugna...
EUVD-2017-15155
Malware in sbrugna...
EUVD-2008-4288
Malware in sbrugna...
EUVD-2006-1499
Malware in sbrugna...
CVE-2011-3772
phpCollab 2.5 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by topics/notinewtopic.php and certain other files...
VulnCheck KEV: CVE-2017-6090
Unrestricted file upload vulnerability in clients/editclient.php in PhpCollab 2.5.1 and earlier allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in logosclients/...
phpCollab Arbitrary File Upload Vulnerability
phpCollab is a set of Web-based project collaboration management software. The software features task assignments, discussions, logs and notifications. An arbitrary file upload vulnerability exists in phpCollab. An attacker can exploit the vulnerability to upload malicious php files...
PhpCollab SQL Injection Vulnerability
phpCollab is a set of Web-based project collaboration management software. The software features task assignment, discussions, logs and notifications. A SQL injection vulnerability exists in PhpCollab 2.5.1 and earlier versions. A remote attacker can exploit the vulnerability to execute arbitrary...
PhpCollab Arbitrary Code Execution Vulnerability
phpCollab is a Chinese plug-in support for project development management software . An arbitrary code execution vulnerability exists in PhpCollab. An attacker can execute arbitrary code by uploading a file with an executable extension...
phpCollab 2.5.1 - Unauthenticated File Upload Exploit
Exploit for php platform in category remote exploits This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'phpCollab 2.5.1 Unauthenticated File Upload', 'Description' = %q This module exploits a file...
phpCollab 2.5.1 Unauthenticated File Upload
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'phpCollab 2.5.1 Unauthenticated File Upload', 'Description' = %q This module exploits a file upload vulnerability in phpCollab 2.5.1 which could ...
phpCollab 2.5.1 - File Upload (Metasploit)
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'phpCollab 2.5.1 Unauthenticated File Upload', 'Description' = %q This module exploits a file upload vulnerability in phpCollab 2.5.1 which could ...
phpCollab 2.5.1 Unauthenticated File Upload
This module exploits a file upload vulnerability in phpCollab 2.5.1 which could be abused to allow unauthenticated users to execute arbitrary code under the context of the web server user. The exploit has been tested on Ubuntu 16.04.3 64-bit This module requires Metasploit:...
CVE-2017-15907
SQL injection vulnerability in phpCollab 2.5.1 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter to newsdesk/newsdesk.php...
Sql injection
SQL injection vulnerability in phpCollab 2.5.1 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter to newsdesk/newsdesk.php...
CVE-2017-15907
SQL injection vulnerability in phpCollab 2.5.1 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter to newsdesk/newsdesk.php...