300 matches found
CVE-2016-3168
The System module in Drupal 6.x before 6.38 and 7.x before 7.43 might allow remote attackers to hijack the authentication of site administrators for requests that download and run files with arbitrary JSON-encoded content, aka a "reflected file download vulnerability."...
CVE-2016-3168
Removed by vendor...
CVE-2016-3168
The CVE-2016-3168 issue affects Drupal: System module in Drupal 6.x prior to 6.38 and 7.x prior to 7.43 is vulnerable to a reflected file download that can allow remote attackers to hijack the authentication of site administrators when downloading and executing files containing arbitrary JSON-enc...
CVE-2016-3168
The System module in Drupal 6.x before 6.38 and 7.x before 7.43 might allow remote attackers to hijack the authentication of site administrators for requests that download and run files with arbitrary JSON-encoded content, aka a "reflected file download vulnerability."...
Drupal Core Reflected File Download Vulnerability
Drupal is a free and open source content management system developed in PHP. A reflected file download vulnerability exists in Drupal Core. Allows an attacker to trick users into downloading and running arbitrary JSON file encoded content...
Drupal 7.x < 7.43 Multiple Vulnerabilities
The version of Drupal running on the remote web server is 7.x prior to 7.43. It is, therefore, affected by the following vulnerabilities : - A flaw exists in the File module that allows an attacker to view, delete, or substitute a link to a file that has not yet been submitted or processed by a...
FreeBSD : drupal -- multiple vulnerabilities (59a0af97-dbd4-11e5-8fa8-14dae9d210b8)
Drupal Security Team reports : - File upload access bypass and denial of service File module - Drupal 7 and 8 - Moderately Critical - Brute force amplification attacks via XML-RPC XML-RPC server - Drupal 6 and 7 - Moderately Critical - Open redirect via path manipulation Base system - Drupal 6, 7...
Drupal Core - Critical - Multiple Vulnerabilities - SA-CORE-2016-001
File upload access bypass and denial of service File module - Drupal 7 and 8 - Moderately Critical A vulnerability exists in the File module that allows a malicious user to view, delete or substitute a link to a file that the victim has uploaded to a form while the form has not yet been submitted...
drupal -- multiple vulnerabilities
Drupal Security Team reports: File upload access bypass and denial of service File module - Drupal 7 and 8 - Moderately Critical Brute force amplification attacks via XML-RPC XML-RPC server - Drupal 6 and 7 - Moderately Critical Open redirect via path manipulation Base system - Drupal 6, 7 and 8 ...
Reflected file download vulnerability
More info at https://www.drupal.org/SA-CORE-2016-001...
Google Finance was traced to reflected File Download(RFD)vulnerabilities-vulnerability warning-the black bar safety net
! A Portuguese network security expert David Sopas found the impact of Google Finance a reflected File DownloadRFDvulnerabilities. I'm in audits of other clients time to discover this vulnerability, through RFD, you need to establish a page to force the download. This Google JSON file of the...
Ubiquiti Inc.: Reflected File Download in community.ubnt.com/restapi/
Hello, https://community.ubnt.com/restapi/vc/authentication/sessions/Ubiquitiupdate.cmd?restapi.responseformat=json&callback=%22||calc|| The above URL is vulnerable to RFD. Here is the proof of concept: Browser Chrome: Embedded the above URL in html 5 anchor tags with download attribute: Download...
Mageia: Security Advisory (MGASA-2015-0426)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Updated springframework packages fix security vulnerability
Under some situations, the Spring Framework is vulnerable to a Reflected File Download RFD attack. The attack involves a malicious user crafting a URL with a batch script extension that results in the response being downloaded rather than rendered and also includes some input reflected in the...
MGASA-2015-0426 Updated springframework packages fix security vulnerability
Under some situations, the Spring Framework is vulnerable to a Reflected File Download RFD attack. The attack involves a malicious user crafting a URL with a batch script extension that results in the response being downloaded rather than rendered and also includes some input reflected in the...
PT-2017-6830 · Spring +1 · Spring Framework +1
Name of the Vulnerable Software and Affected Versions: Spring Framework versions 3.2.0 through 3.2.14 Spring Framework versions 4.0.0 through 4.1.7 Spring Framework versions 4.2.0 through 4.2.1 Description: The issue allows a malicious user to craft a URL that results in a response being download...
eBay Fixes Reflected File Download Flaw
For many years, eBay has been one of the bigger targets for phishers and many other kinds of attackers and they have been honing their tactics and improving them along the way. Much of their effectiveness depends on convincing users that they’re on the real eBay site and the site recently fixed a...
HackerOne: Reflected File Download attack allows attacker to 'upload' executables to hackerone.com domain
Hi hackerone team, I'm a friend of Peiying and am looking for a position at hackerone. While playing around with your product, I found a serious vulnerability in your application: it allows attackers to craft executables on the hackerone.com domain rather than the sandboxed one on S3. 1. attacker...
AOL Search Reflected File Download
Oren Hafif reported a new kind of attack called Reflected File Download https://www.blackhat.com/eu-14/briefings.htmlreflected-file-download-a-new-web-attack-vector in Black Hat Europe 2014 conference. More details about the attack you can found in his public presentation:...
HackerOne: Reflected File Download
Info: Reflected File Download is a new web attack vector. It allows an attacker to craft a malicious file and present it to a victim, but there is no file present at the server. It was recently published at the BlackHat Eupore 2014 by Oren Hafif. Link to his presentation is given at the end...