283 matches found
Joomla! com_cckjseblod configuration file download vulnerability
Joomla! is an open source content management system CMS. A file download vulnerability exists in the Joomla! comcckjseblod configuration. An attacker can exploit this vulnerability to obtain sensitive system information...
Authentication flaw
Pulse Connect Secure PCS 8.2 before 8.2r1, 8.1 before 8.1r2, 8.0 before 8.0r10, and 7.4 before 7.4r13.4 allow remote attackers to read sensitive system authentication files in an unspecified directory via unknown vectors...
WordPress Plugin Candidate Application Form 1.0 - Arbitrary File Download
WordPress Plugin Candidate Application Form 1.0 - Arbitrary File Download Title: Remote file download vulnerability in candidate-application-form v1.0 wordpress plugin Author: Larry W. Cashdollar, @larry0 Date: 2015-07-12 Download Site: https://wordpress.org/plugins/candidate-application-form...
WordPress WPTF Image Gallery 1.03 File Download Vulnerability
WordPress WPTF Image Gallery plugin version 1.03 suffers from an arbitrary remote file download vulnerability. Title: Remote file download vulnerability in wptf-image-gallery v1.03 Author: Larry W. Cashdollar, @larry0 Date: 2015-07-17 Download Site: https://wordpress.org/plugins/wptf-image-galler...
WordPress Candidate Application Form 1.0 File Download
Title: Remote file download vulnerability in candidate-application-form v1.0 wordpress plugin Author: Larry W. Cashdollar, @larry0 Date: 2015-07-12 Download Site: https://wordpress.org/plugins/candidate-application-form Vendor: https://profiles.wordpress.org/flaxlandsconsulting/ Vendor Notified:...
wptf-image-gallery 1.0.3 - Remote File Download
Plugin is still affected and has been closed. The ./wptf-image-gallery/lib-mbox/ajaxload.php code doesn't sanitize user input or check that a user is authorized to download files. This allows an unauthenticated user to download sensitive system files: 1 PoC $ curl...
WordPress WP-SwimTeam 1.44.10777 Arbitrary File Download
Title: Remote file download vulnerability in Wordpress Plugin wp-swimteam v1.44.10777 Author: Larry W. Cashdollar, @larry0 Date: 2015-07-02 Download Site: https://wordpress.org/plugins/wp-swimteam Vendor: Mike Walsh www.MichaelWalsh.org Vendor Notified: 2015-07-02, fixed in v1.45beta3 Vendor...
WordPress Plugin Swim Team 1.44.10777 - Arbitrary File Download
Title: Remote file download vulnerability in Wordpress Plugin wp-swimteam v1.44.10777 Author: Larry W. Cashdollar, @larry0 Date: 2015-07-02 Download Site: https://wordpress.org/plugins/wp-swimteam Vendor: Mike Walsh www.MichaelWalsh.org Vendor Notified: 2015-07-02, fixed in v1.45beta3 Vendor...
Swim Team <= v1.44.10777 - Local File Inclusion
The code in ./wp-swimteam/include/user/download.php doesn't sanitize user input from downloading sensitive system files. PoC $ curl "http://www.vapidlabs.com/wp-content/plugins/wp-swimteam/include/user/download.php?file=/etc/passwd=/etc/passwd=text/html=1=/usr/share/wordpress"...
Cisco Jabber Guest Server HTML5 Information Disclosure Vulnerability
A vulnerability in the underlying application programming interface API of the Cisco Jabber Guest Server could allow an unauthenticated, remote attacker to access sensitive system information from the affected system. The vulnerability is due to insufficient validation of specific values passed v...
Fool's Workshop Owl's Workshop 1.0 glossaries/index.php file Parameter Arbitrary File Access
No description provided by source. source: http://www.securityfocus.com/bid/9689/info Owl's Workshop is reported prone to multiple remote file-disclosure vulnerabilities because the application fails to validate user-supplied input passed via a URI parameter. Upon successful exploitation of these...
Fool's Workshop Owl's Workshop 1.0 readings/index.php Arbitrary File Access
No description provided by source. source: http://www.securityfocus.com/bid/9689/info Owl's Workshop is reported prone to multiple remote file-disclosure vulnerabilities because the application fails to validate user-supplied input passed via a URI parameter. Upon successful exploitation of these...
Fool's Workshop Owl's Workshop 1.0 resultsignore.php Arbitrary File Access
No description provided by source. source: http://www.securityfocus.com/bid/9689/info Owl's Workshop is reported prone to multiple remote file-disclosure vulnerabilities because the application fails to validate user-supplied input passed via a URI parameter. Upon successful exploitation of these...
MTools 3.9.x MFormat Privilege Escalation Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/9746/info It has been reported that mformat is prone to a privilege escalation vulnerability when installed as a setUID application. This issue is due to a design error allowing a user to create any arbitrary files as the...
xinkaa web station 1.0.3 - Directory Traversal vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/12606/info A vulnerability has been identified in the handling of certain types of requests by Xinkaa WEB Station. Because of this, it is possible for an attacker to gain access to potentially sensitive system files. Read...
QuickFront 1.0 File Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/7308/info A vulnerability has been reported for QuickFront that will result in the disclosure of sensitive system resources to remote attackers. QuickFront does not properly sanitize user-supplied input. Specifically,...
ION Script 1.4 - Remote File Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/6091/info A vulnerability has been discovered in ION Script. By sending a malicious HTTP request to a webserver running the vulnerable ION Script package, it is possible for a remote attacker to disclose arbitrary webserv...
whitsoft slimserve ftpd 1.0/2.0 - Directory Traversal vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2452/info SlimServ FTPd is a free ftp server distributed and maintained by WhitSoft Development. SlimServe FTPd is designed to offer ftp services to the Microsoft Windows platform. A problem with the SlimSoft FTP daemon...
Ikonboard 2.1.7 b Remote File Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2471/info Ikonboard is a perl-based discussion forum script from ikonboard.com. Versions of Ikonboard are vulnerable to remote disclosure of arbitrary files. By adding a null byte to the name of a requested file, the...
Qualiteam X-Cart 3.x Multiple Remote Information Disclosure Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/9563/info X-Cart has been reported to be prone to an issue that may allow remote attackers to view any web server readable files on the affected system. The issue is caused by a failure of the application to sanitize valu...