19 matches found
EUVD-2006-3129
Malware in sbrugna...
EUVD-2008-2107
Malware in sbrugna...
EUVD-2006-3402
Malware in sbrugna...
EUVD-2006-3401
Malware in sbrugna...
Unrestricted file upload
Unrestricted file upload vulnerability in qtofm.php in QTOFileManager 1.0 allows remote attackers to execute arbitrary PHP code by uploading a file with an executable extension, then accessing it via a direct request...
CVE-2008-2110
Unrestricted file upload vulnerability in qtofm.php in QTOFileManager 1.0 allows remote attackers to execute arbitrary PHP code by uploading a file with an executable extension, then accessing it via a direct request...
CVE-2008-2110
Unrestricted file upload vulnerability in qtofm.php in QTOFileManager 1.0 allows remote attackers to execute arbitrary PHP code by uploading a file with an executable extension, then accessing it via a direct request...
CVE-2008-2110
CVE-2008-2110 affects QTOFileManager 1.0, through the qtofm.php uploader. The vulnerability permits unrestricted file uploads, allowing remote attackers to execute arbitrary PHP code by uploading a file with an executable extension and then accessing it via a direct request. Exploitation status i...
QTOFileManager V 1.0<== Remote File Upload Vulnerability
================================================= Discovered By: CrAzY CrAcKeR Email: Cr4zY.CrAcKeRathotmaildotcom Script : Sava's Simple Upload Version: Final Download :http://www.qto.com/fm/QTOFileManager1.0.zip ================================================ Search: inurl:qtofm.php...
QTOFileManager.txt
-------------------------- Cross Site Scripting XSS -------------------------- http://target.xx/qtofm.php?delete=%3Cscript%3Ealert%22Ellipsis%20Security%20Test%22%3C/script%3E&u=username&pathext=1...
CVE-2006-3406
Directory traversal vulnerability in qtofm.php in QTOFileManager 1.0 allows remote attackers to modify arbitrary files via a .. dot dot sequence in the edit parameter...
CVE-2006-3406
The CVE-2006-3406 entry refers to a directory traversal vulnerability in QTOFileManager 1.0, specifically in the qtofm.php edit parameter. The underlying issue allows a remote attacker to modify arbitrary files by supplying a .. (dot dot) sequence, impacting potentially confidentiality and integr...
CVE-2006-3406
Directory traversal vulnerability in qtofm.php in QTOFileManager 1.0 allows remote attackers to modify arbitrary files via a .. dot dot sequence in the edit parameter...
CVE-2006-3405
CVE-2006-3405 is a cross-site scripting (XSS) vulnerability in QTOFileManager 1.0 , exploitable via the qtofm.php parameters: (1) delete, (2) pathext, and (3) edit. The NVD entry notes a base score of 5.8 (MEDIUM) with network attack vector, requiring no authentication and partial impact on confi...
QTOFileManager 1.0
-------------------------- Cross Site Scripting XSS -------------------------- http://target.xx/qtofm.php?delete=3Cscript3Ealert22Ellipsis20Security20Test223C/script3E&u=username&pathext=1...
CVE-2006-3132
Cross-site scripting XSS vulnerability in qtofm.php4 in QTOFileManager 1.0 allows remote attackers to inject arbitrary web script or HTML via the msg parameter, as originally reported for index.php...
CVE-2006-3132
CVE-2006-3132 is an XSS vulnerability in QTOFileManager 1.0, specifically in the qtofm.php4 script, exploitable by injecting scripts via the msg parameter. The NVD entry lists impact to confidentiality and integrity (PARTIAL) with network attack vector and no authentication required. The connecte...
CVE-2006-3132
Cross-site scripting XSS vulnerability in qtofm.php4 in QTOFileManager 1.0 allows remote attackers to inject arbitrary web script or HTML via the msg parameter, as originally reported for index.php...
qtofilemanager xss attack !
+vendor : http://www.qto.com +poral : qto file manager +version : All version ! Exploit: +http://www.xxx.xom/qto/index.php?msg=xss...