18 matches found
CVE-2005-1904
SQL injection vulnerability in login.asp in JiRo's Upload System JUS 1 allows remote attackers to execute arbitrary SQL commands via the password parameter...
EUVD-2005-1906
Malware in sbrugna...
EUVD-2018-6855
Malware in sbrugna...
EUVD-2024-30751
Malicious code in bioql PyPI...
Exploit for Deserialization of Untrusted Data in Spip
SPIP CVE-2023-27372 Unauthenticated RCE Exploit Web Shell Upl...
CVE-2023-3486 PaperCut NG Unauthenticated File Upload
An authentication bypass exists in PaperCut NG versions 22.0.12 and prior that could allow a remote, unauthenticated attacker to upload arbitrary files to the PaperCut NG host’s file storage. This could exhaust system resources and prevent the service from operating as expected...
CVE-2022-41267
SAP Business Objects Platform - versions 420, and 430, allows an attacker with normal BI user privileges to upload/replace any file on Business Objects server at the operating system level, enabling the attacker to take full control of the system causing a high impact on confidentiality, integrit...
CVE-2018-14972
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/down.php has XSS...
CVE-2018-14972
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/down.php has XSS...
JiRo's Upload System 1.0 Login.ASP SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/13833/info JiRo's Upload System is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitati...
4 5 ways to get Webshell method-vulnerability warning-the black bar safety net
To GoogLe,search some keywords,edit. asp? Korean broiler chickens is more,the majority of MSSQL database! 2, To Google ,site:cq. cn inurl:asp 3, The use of mining chicken and an ASP Trojan. The file name is login. asp The path set is/manage/ The key word is went. asp 'Or'='or'to login 4, Keywords...
fus-rfi.txt
============================ HItamputih Crew ==================== hitamputih Advisory Discovered By : IbnuSina & jipank ----------------------------------------------------------- Software: File Upload System V1.0 Script Demo: http://demo.free-php-scripts.net/FileUpload Method: file inclusion...
CVE-2006-5763
This CVE covers PHP remote file inclusion in Free File Hosting 1.1 (and possibly earlier) where enabling register_globals allows an attacker to pass a URL in the AD_BODY_TEMP parameter to login.php, register.php, or send.php to execute arbitrary PHP code. The issue also notes that Vector 1 affect...
CVE-2005-1904
SQL injection vulnerability in login.asp in JiRo's Upload System JUS 1 allows remote attackers to execute arbitrary SQL commands via the password parameter...
CVE-2005-1904
SQL injection vulnerability in login.asp in JiRo's Upload System JUS 1 allows remote attackers to execute arbitrary SQL commands via the password parameter...
CVE-2005-1904
CVE-2005-1904 affects JiRo's Upload System (JUS) version 1, where login.asp is vulnerable to SQL injection via the password parameter, enabling remote attackers to execute arbitrary SQL commands. Root cause is unsafe handling/concatenation of the password input in the login logic, leading to comm...
PT-2005-2861 · Jiro · Jiro'S Upload System
Name of the Vulnerable Software and Affected Versions: JiRo's Upload System JUS version 1 Description: A SQL injection issue allows remote attackers to execute arbitrary SQL commands via the password parameter in the login.asp file. Recommendations: For JiRo's Upload System JUS version 1, avoid...
[SA15564] JiRo's Upload System "password" SQL Injection Vulnerability
---------------------------------------------------------------------- Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secuniavacancies/...