An unspecified vulnerability exists in rConfig (CNVD-2021-102377)

rConfig is an open source network configuration management utility. rConfig 3.9.6 and earlier versions have a security vulnerability in the /updater.php component that can be exploited by attackers to execute arbitrary code via a specially crafted ZIP file...

CVE-2020-27464

An insecure update feature in the /updater.php component of rConfig 3.9.6 and below allows attackers to execute arbitrary code via a crafted ZIP file...

CVE-2007-6475

Multiple directory traversal vulnerabilities in GF-3XPLORER 2.4 allow remote attackers to include and execute arbitrary local files via a .. dot dot in the langsel parameter to 1 updater.php and 2 thumber.php...

Directory traversal

Multiple directory traversal vulnerabilities in GF-3XPLORER 2.4 allow remote attackers to include and execute arbitrary local files via a .. dot dot in the langsel parameter to 1 updater.php and 2 thumber.php...

gf-3xplorer 2.4 - Cross-Site Scripting / Local File Inclusion

--------------------------------------------------------------- / | |\ \ / | / |/ | | |/ \ | | | |||| /| / / --------------------------------------------------------------- Http://www.inj3ct-it.org Staffatinj3ct-itdotorg --------------------------------------------------------------- Local File...