13 matches found
EUVD-2007-6336
Malware in sbrugna...
PictPress <= 0.91 - Remote File Disclosure
The pictpress WordPress plugin was affected by a Remote File Disclosure security vulnerability...
Wordpress Plugin PictPress <= 0.91 Remote File Disclosure Vulnerability
No description provided by source. Wordpress Plugin PictPress = release0.91 Remote File Disclosure Vulnerability D.Script : http://downloads.wordpress.org/plugin/pictpress.release-0.91.zip Vuln Code : In Line 5,6,7,8 : $path = $GET'path'; $size = $GET'size'; $base = dirnameFILE . /..; $cache =...
Directory traversal
Multiple directory traversal vulnerabilities in resize.php in the PictPress 0.91 and earlier plugin for WordPress allow remote attackers to read arbitrary files via a .. dot dot in the 1 size or 2 path parameter...
CVE-2007-6369
Multiple directory traversal vulnerabilities in resize.php in the PictPress 0.91 and earlier plugin for WordPress allow remote attackers to read arbitrary files via a .. dot dot in the 1 size or 2 path parameter...
CVE-2007-6369
Multiple directory traversal vulnerabilities in resize.php in the PictPress 0.91 and earlier plugin for WordPress allow remote attackers to read arbitrary files via a .. dot dot in the 1 size or 2 path parameter...
CVE-2007-6369
The CVE-2007-6369 entry concerns the WordPress PictPress plugin (versions up to 0.91). The vulnerability is a directory traversal in resize.php, where the attack succeeds by providing a dot-dot in the size or path parameter, allowing an attacker to read arbitrary server files. Impacts are file di...
WordPress PictPress Plugin <= 0.91 - Multiple Directory Traversal
Because of these vulnerabilities in resize.php, the attackers can read arbitrary files in the "size" or "path" parameter. Solution Update the plugin...
wppict-disclose.txt
Wordpress Plugin PictPress = release0.91 Remote File Disclosure Vulnerability D.Script : http://downloads.wordpress.org/plugin/pictpress.release-0.91.zip Vuln Code : In Line 5,6,7,8 : $path = $GET'path'; $size = $GET'size'; $base = dirnameFILE . "/.."; $cache = "$base/cache/$size/$path"; In Line ...
Wordpress Plugin PictPress <= 0.91 Remote File Disclosure Vulnerability
No description provided by source. Wordpress Plugin PictPress = release0.91 Remote File Disclosure Vulnerability D.Script : http://downloads.wordpress.org/plugin/pictpress.release-0.91.zip Vuln Code : In Line 5,6,7,8 : $path = $GET'path'; $size = $GET'size'; $base = dirnameFILE . "/.."; $cache =...
WordPress Plugin PictPress 0.91 - Remote File Disclosure
WordPress Plugin PictPress 0.91 - Remote File Disclosure Wordpress Plugin PictPress = release0.91 Remote File Disclosure Vulnerability D.Script : http://downloads.wordpress.org/plugin/pictpress.release-0.91.zip Vuln Code : In Line 5,6,7,8 : $path = $GET'path'; $size = $GET'size'; $base =...
WordPress Plugin PictPress 0.91 - Remote File Disclosure
Wordpress Plugin PictPress = release0.91 Remote File Disclosure Vulnerability D.Script : http://downloads.wordpress.org/plugin/pictpress.release-0.91.zip Vuln Code : In Line 5,6,7,8 : $path = $GET'path'; $size = $GET'size'; $base = dirnameFILE . "/.."; $cache = "$base/cache/$size/$path"; In Line ...
Wordpress Plugin PictPress <= 0.91 Remote File Disclosure Vulnerability
Exploit for unknown platform in category web applications ======================================================================= Wordpress Plugin PictPress = 0.91 Remote File Disclosure Vulnerability ======================================================================= Wordpress Plugin PictPre...