4 matches found
EUVD-2013-4167
Malware in sbrugna...
Code injection
Ajaxeplorer before 5.0.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the 1 archivename parameter to the Power FS module plugins/action.powerfs/class.PowerFSController.php, a 2 file name to the getTrustSizeOnFileSystem function in the File System Standard modu...
CVE-2013-4267
Ajaxeplorer before 5.0.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the 1 archivename parameter to the Power FS module plugins/action.powerfs/class.PowerFSController.php, a 2 file name to the getTrustSizeOnFileSystem function in the File System Standard modu...
AjaXplorer < 5.0.1 Multiple Command Execution Vulnerabilities
The version of AjaXplorer hosted on the remote web server is earlier than 5.0.1. It is, therefore, affected by multiple command execution vulnerabilities in the following plugins: - File System Standard Plugin access.fs - Power FS Plugin action.powerfs - Subversion Repository Plugin meta.svn The...