4 matches found
CVE-2016-4887
CVE-2016-4887 is a CSRF vulnerability affecting baserCMS and its Uploader plugin. Restated details from multiple sources show that when the Uploader plugin is enabled and an administrative user visits a malicious URL, the attacker could cause unintended administrative operations (e.g., file delet...
Mybb Plugin uploader任意文件上传漏洞
Bugtraq ID:66109 Mybb Plugin uploader是一款MyBB文件上传插件。 Mybb Plugin uploader不正确文件上传实现,允许攻击者利用漏洞上传任意php文件并执行。 0 Mybb Plugin uploader 1.1.2 目前没有详细解决方案提供: http://mods.mybb.com/download/plugin-uploader Exploit : http://localhost/mybb/admin/index.php?module=config-plugins&action=pluginuploader Info : Put...
MyBB Uploader 1.1.2 Shell Upload
IIIIIIII RRRRRRRRRRRR HHHHHHHH HHHHHHHH IIII RRRR RRRR HHHH HHHH IIII RRRR RRRR HHHH HHHH IIII RRRR RRRR HHHH HHHH IIII RRRR RRRR HHHH HHHH IIII RRRRRRRRRR HHHHHHHHHHHHHHHH IIII RRRR RRRR HHHH HHHH IIII RRRR RRRR HHHH HHHH IIII RRRR RRRR HHHH HHHH IIII RRRR RRRR HHHH HHHH IIIIIIII RRRRRRRR RRRRRR...
WordPress Plugin Uploader - Arbitrary File Upload
WordPress Plugin Uploader - Arbitrary File Upload source: https://www.securityfocus.com/bid/57112/info The Uploader plugin for WordPress is prone to an arbitrary file-upload vulnerability because it fails to adequately validate files before uploading them. An attacker may leverage this issue to...