phpThumb 1.7.9 Information Disclosure

Exploit Title: phpThumb 'phpThumbDebug' Information Disclosure Google Dork: inurl:phpThumb.php Date: 06/05/2011 Author: mook Software Link: http://phpthumb.sourceforge.net/download Version: 1.7.9 Tested on: linux Vulnerability: Information disclosure which includes absolute system paths, os...

phpThumb - phpThumbDebug Information Disclosure

phpThumb - phpThumbDebug Information Disclosure Exploit Title: phpThumb 'phpThumbDebug' Information Disclosure Google Dork: inurl:phpThumb.php Date: 06/05/2011 Author: mook Software Link: http://phpthumb.sourceforge.net/download Version: 1.7.9 Tested on: linux Vulnerability: Information disclosur...

Joomla! FLEXIcontent组件不安全权限和命令注入漏洞

Joomla!是一款开放源码的内容管理系统（CMS）。 Joomla! FLEXIcontent组件的实现上存在安全漏洞，远程攻击者可能利用此漏洞上操作某些数据并泄露敏感信息，从而控制受影响系统。 1）此漏洞源于"cache"目录的组件设置不安全权限。通过修改、创建或删除此目录中的文件利用此漏洞。 2）此漏洞位于phpThumb的附带版本中。 flexicontent 1.x 厂商补丁： flexicontent ------------ 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： http://www.flexicontent.org/home/...

phpThumb 'fltr[]' Parameter Command Injection Vulnerability

The host is running phpThumb and is prone to command injection vulnerability. OpenVAS Vulnerability Test $Id: gbphpthumbcmdinjvuln.nasl 5373 2017-02-20 16:27:48Z teissa $ phpThumb 'fltr' Parameter Command Injection Vulnerability Authors: Sooraj KS Updated from version check to active exploit by...

phpThumb < 1.7.9 Command Injection Vulnerability

phpThumb is prone to a command injection vulnerability. Copyright C 2010 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you c...

phpThumb Command-Injection Vulnerability

It has recently come to our attention that phpThumb all versions contains an unpatched vulnerability. The application is prone to a command-injection vulnerability because it fails to adequately sanitize user-supplied input to the ’fltr’ parameter in the ’phpThumb.php’ script. Attackers can explo...

Plogger - Remote File Disclosure

Plogger - Remote File Disclosure Plogger Remote File Disclosure Vulnerability http://www.plogger.org/ dork : Powered by Plogger! author: Mr.tro0oqy yemeni hacker email : [email protected] exp : Line 117: if $fpsource = @fopen$GET'src','rb'...

Plogger - Remote File Disclosure

Plogger Remote File Disclosure Vulnerability http://www.plogger.org/ dork : Powered by Plogger! author: Mr.tro0oqy yemeni hacker email : [email protected] exp : Line 117: if $fpsource = @fopen$GET'src','rb'...

phpThumb Detection (HTTP)

HTTP based detection of phpThumb. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.801232";...

CVE-2010-1598

phpThumb.php in phpThumb 1.7.9 and possibly other versions, when ImageMagick is installed, allows remote attackers to execute arbitrary commands via the fltr parameter, as discovered in the wild in April 2010. NOTE: the provenance of this information is unknown; the details are obtained solely fr...

Joomla! Component com_portfolio - Local File Disclosure

Joomla compnent comportfolio Local File Disclosure author : Mr.tro0oqy from comunity college : email : [email protected] greetz:alzomer , Mr.ksoory , R3d-D3vil from palstine .. dork :inurl:index.php?option=comportfolio exp:...

magazin-disclose.txt

\|/// \ - - // @ @ ----oOOo---oOOo--------------------------------------------------- Y! Underground Group [email protected] Dj7xpl.2600.ir ----ooooO-----Ooooo-------------------------------------------------- \ / \ / --------------------------------------------------------------------- ! Portal...

Directory traversal

Directory traversal vulnerability in phpThumb.php in PinkCrow Designs Gallery or maGAZIn 2.0 allows remote attackers to read arbitrary files via a .. dot dot in the src parameter...

CVE-2005-1898

The passthrough functionality in phpThumb.php in phpThumb before 1.5.4 allows remote attackers to read files that are not images...

CVE-2005-1898

The CVE-2005-1898 issue affects phpThumb() in phpThumb prior to 1.5.4. The passthrough functionality can allow remote attackers to read files that are not images, enabling unintended disclosure of server-side files. Root cause is the passthrough handling not restricting file types. Impact is pote...

CVE-2005-1898

The passthrough functionality in phpThumb.php in phpThumb before 1.5.4 allows remote attackers to read files that are not images...

[SA15534] phpThumb&#40;&#41; &quot;src&quot; Exposure of Sensitive Information

---------------------------------------------------------------------- Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secuniavacancies/...