CVE-2007-5156

Incomplete blacklist vulnerability in editor/filemanager/upload/php/upload.php in FCKeditor, as used in SiteX CMS 0.7.3.beta, La-Nai CMS, Syntax CMS, Cardinal Cms, and probably other products, allows remote attackers to upload and execute arbitrary PHP code via a file whose name contains ".php."...

phpWebSite: Arbitrary PHP execution and path disclosure

Background phpWebSite provides a complete web site content management system. Description NST discovered that, when submitting an announcement, uploaded files aren't correctly checked for malicious code. They also found out that phpWebSite is vulnerable to a path disclosure. Impact A remote...

CitrusDB 0.3.6 - 'importcc.php' Arbitrary Database Injection

source: https://www.securityfocus.com/bid/12557/info CitrusDB is reportedly affected by an access validation vulnerability during the upload of CSV files. Exploitation of this issue could result in path disclosure or SQL injection. The issue exists because the application fails to verify user...

SmarterMail Attachment Upload XSS

Binary data 2579.prm...

CVE-2004-2560

DokuWiki before 2004-10-19, when used on a web server that permits execution based on file extension, allows remote attackers to execute arbitrary code by uploading a file with an appropriate extension such as ".php" or ".cgi"...

[SA13657] e107 Image Manager File Upload Vulnerability

TITLE: e107 Image Manager File Upload Vulnerability SECUNIA ADVISORY ID: SA13657 VERIFY ADVISORY: http://secunia.com/advisories/13657/ CRITICAL: Highly critical IMPACT: System access WHERE: From remote SOFTWARE: e107 0.x http://secunia.com/product/1927/ DESCRIPTION: sysbug has reported a...

best software SalesLogix 2000.0 - Multiple Vulnerabilities

best software SalesLogix 2000.0 - Multiple Vulnerabilities source: https://www.securityfocus.com/bid/11450/info Best Software SalesLogix is affected by multiple vulnerabilities. These issues are due to design errors that reveal sensitive information, access control validation issues that allow...

Gallery save_photos.php Arbitrary Command Execution

The version of Gallery hosted on the remote web server is affected by an arbitrary command execution vulnerability. This could allow an attacker to execute arbitrary commands on the remote host by uploading a file containing arbitrary PHP code. When the temp directory is web accessible, the...

CVE-2003-0950

PeopleSoft PeopleTools 8.1x, 8.2x, and 8.4x allows remote attackers to execute arbitrary commands by uploading a file to the IClient Servlet, guessing the insufficiently random system time name of the directory used to store the file, and directly requesting that file...

PHP-Nuke v 6.7 + Windows = File Upload

Informations : °°°°°°°°°°°°° Language : PHP Version : 6.7 Website : http://www.phpnuke.org Problem : File Upload PHP Code/Location : °°°°°°°°°°°°°°°°°°° modules/WebMail/mailattach.php :...

CVE-2003-0482

TUTOS 1.1 allows remote attackers to execute arbitrary code by uploading the code using filenew.php, then directly accessing the uploaded code via a request to the repository containing the code...

[UNIX] Sourceforge Jacobuddy Cross Site Scripting (XSS) and Upload Exploit

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion In the US? Contact Beyond Security at our new California office housewarming rates on automated network vulnerability scanning. We also...

Vulnerability in Upload Lite 3.22 that could allow somebody to upload/execute code on a remote host.

There is a vulnerability in Upload Lite 3.22 that could allow somebody to upload/execute code on a remote host. The exploit was tested on Windows and as far as I know it will only work on windows.. It will not work on nix because of file permissions. Upload Lite 3.22 from PerlScriptsJavaScripts.c...

Oracle9i Application Server Format String Vulnerability (#NISR16022003d)

NGSSoftware Insight Security Research Advisory Name: Oracle9i Application Server Format String Vulnerability Systems Affected: All platforms; Oracle9i Application Server Release 9.0.2 Severity: Critical Risk Category: Format String Vulnerability Vendor URL: http://www.oracle.com Author: David...

twlc advisory: all versions of php nuke are vulnerable...

twlc security divison 24/09/2001 Php nuke BUGGED. Found by: LucisFero and supergate ./twlc Summary This time the bug is really dangerous...it allows you to 'cp' any file on the box... or even upload files... Systems Affected all the versions ARE vulnerable except '5.0 RC1' i wonder why a released...

CVE-2001-1130

Sdbsearch.cgi in SuSE Linux 6.0-7.2 could allow remote attackers to execute arbitrary commands by uploading a keylist.txt file that contains filenames with shell metacharacters, then causing the file to be searched using a .. in the HTTP referer from the HTTPREFERER variable to point to the...

Очередная дырка в WebSite Pro

CGI-директории по умолчанию открыты на запись. В состав сервера входит программа, позволяющая загружать файлы на сервер. Кроме того, при определенном запросе сервер показывает путь к локальным файлам, что суммарно позволяет загрузить и выполнить любой файл на сервере...

Microsoft IIS repost.asp File Upload

The script '/scripts/repost.asp' is installed on the remote IIS web server and allows an attacker to upload arbitrary files to the '/Users' directory if it has not been configured properly. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. Script audit and contributions from Carmichael Securit...

website.pro.txt

Date: Tue, 16 Feb 1999 17:45:09 -0600 From: Christian Antkow To: [email protected] Subject: Website Pro v2.0 NT Configuration Issues As some of you might be aware, our website www.idsoftware.com was hacked this morning using the "out-of-the-box" features of Website Pro 2.0. The perpetrator use...