3 matches found
apiconnect-cli-plugins Command Injection Vulnerability
apiconnect-cli-plugins is a development kit plugin for IBM API Connect. An injection vulnerability exists in apiconnect-cli-plugins version 6.0.1 and earlier. An attacker can exploit this vulnerability to execute arbitrary commands with the help of the 'pluginUri' parameter...
Command Injection
Overview apiconnect-cli-plugins is a Plugin for IBM API Connect Developer Toolkit. Affected versions of this package are vulnerable to Command Injection. The argument pluginUri can be controlled by users without any sanitization. PoC var root = require"apiconnect-cli-plugins"; var payload = "&...
WordPress Plugin Download Manager 0.2 - Arbitrary File Upload
WordPress Plugin Download Manager 0.2 - Arbitrary File Upload WORDPRESS PLUGIN DOWNLOAD MANAGER 0.2 REMOTE FILE UPLOAD SaO BiyoSecurityTeam || www.biyosecurity.com Plugin URI: http://giulioganci.netsons.org/downloads-manager Local File milw0rm.com 2008-07-24...