Arbitrary file Upload in extension "Yet Another Gallery" (yag)

The extension contains the 3rd party component “Uploadify”, which includes a demo script for uploading files with the file extensions “jpg”, “jpeg”, “gif” and “png” to the server. Also, a demo script is present, which allows to check for the existence of a given filename...

CVE-2019-9951

Western Digital My Cloud, My Cloud Mirror Gen2, My Cloud EX2 Ultra, My Cloud EX2100, My Cloud EX4100, My Cloud DL2100, My Cloud DL4100, My Cloud PR2100 and My Cloud PR4100 firmware before 2.31.174 is affected by an unauthenticated file upload vulnerability. The page...

EasyCMS Cross-Site Scripting Vulnerability (CNVD-2018-19558)

EasyCMS is a scalable lightweight open source content management system CMS written in PHP. A cross-site scripting vulnerability exists in the App/Modules/Admin/Tpl/default/Public/dwz/uploadify/scripts/uploadify.swf file in EasyCMS version 1.5. The vulnerability can be exploited by remote attacke...

Movable Type plugin MTAppjQuery vulnerable to PHP code execution

Overview MTAppjQuery provided by bit part LLC is a plugin for Movable Type. An older version PHP library Uploadify is incorporated in MTAppjQuery v1.8.1 and earlier versions and the older versions of Uploadify contains unrestricted upload of arbitrary file CWE-434, which may lead to arbitrary PHP...

CVE-2018-9173

Cross-site scripting XSS vulnerability in admin/template/js/uploadify/uploadify.swf in GetSimple CMS 3.3.13 allows remote attackers to inject arbitrary web script or HTML, as demonstrated by the movieName parameter...

CVE-2018-9173

Cross-site scripting XSS vulnerability in admin/template/js/uploadify/uploadify.swf in GetSimple CMS 3.3.13 allows remote attackers to inject arbitrary web script or HTML, as demonstrated by the movieName parameter...

GetSimple CMS Cross-Site Scripting Vulnerability

Cagintranet Networks GetSimple CMS is an XML-based content management system CMS from Cagintranet Networks, USA. The system includes a theme selector and editor, component editor, image and file managers, and more. A cross-site scripting vulnerability exists in the...

TPshop 前台无限制Getshell #2

0x01 说明 TPshop开源商城系统 Thinkphp shop的简称 ，是深圳搜豹网络有限公司开发的一套多商家模式的商城系统。适合企业及个人快速构建个性化网上商城。包含PC+IOS客户端+Adroid客户端+微商城，系统PC+后台是基于ThinkPHP5 MVC构架开发的跨平台开源软件，设计得非常灵活，具有模块化架构体系和丰富的功能，易于与第三方应用系统无缝集成，在设计上，包含相当全面，以模块化架构体系，让应用组合变得相当灵活，功能也相当丰富。 下载地址：http://www.tp-shop.cn/Index/Index/download.html 目录大概结构 ├─index.p...

Wordpress Theagency Themes File Upload Vulnerability

Exploit for php platform in category web applications Exploit Title : Wordpress Themes Theagency File Upload Vulnerability Author : Berandal Google Dork: inurl:/wp-content/themes/theagency Tested on: Win 7, Linux Blog : http://www.maxteroit.com/ Video Proof :...

File upload vulnerability in Panmicro E-office inc/jquery/uploadify/uploadify.php

Panmicro E-office is an OA product launched by Panmicro for small and medium-sized organizations. A file upload vulnerability exists in Panmicro E-office inc/jquery/uploadify/uploadify.php, which can be exploited by attackers to upload arbitrary files and gain control of the server...

File upload vulnerability in Panavision E-office /general/weibo/javascript/uploadify/uploadify.php

Panmicro E-office is an OA product launched by Panmicro for small and medium-sized organizations. A file upload vulnerability exists in Panmicro E-office /general/weibo/javascript/uploadify/uploadify.php, which can be exploited by attackers to upload arbitrary files and gain control of the server...

Hangzhou Boce Network Technology Co., Ltd. station-building system / bocadmin/j/uploadify.php there are arbitrary file upload vulnerability

BOC is a system of Hangzhou Bocai Network Technology Co., Ltd. that provides professional website construction services. The website building system /bocadmin/j/uploadify.php of Hangzhou Bocai Network Technology Co., Ltd. has an arbitrary file upload vulnerability, which allows an attacker to...

WordPress PHP Event Calendar 1.5 Arbitrary File Upload

Exploit Title: Wordpress PHP Event Calendar Plugin - Arbitrary File Upload Google Dork: inurl:/plugins/php-event-calendar/ Date: 02.04.2015 Exploit Author: CrashBandicot @DosPerl Source Plugin: https://wordpress.org/plugins/php-event-calendar/ Vendor HomePage: http://phpeventcalendar.com/ Version...

Uploadify 3.1 Cross Site Scripting

Affected software: Type of vulnerability: URL: http://www.uploadify.com/ Discovered by: Provensec Website: http://www.provensec.com version 3.1 Proof of concept uploadify.swf?movieName=%22catcheif!window.xwindow.x=1;confirm%27XSS%27//&.swf demo...

Get Simple CMS 3.3.3 Information Disclosure / XSS

GetSimpleCMS3.3.3 multi Vulnerability ====================================== Author : indoushka Vondor : http://get-simple.info/ Dork: © 2009-2014 GetSimple CMS – Version 3.3.3 ================================================== info : http://127.0.0.1/GetSimpleCMS3/backups/users/admin.xml.bak...

Uploadify Integration 0.9.6 - Multiple Cross Site Scripting Vulnerabilities

The uploadify-integration WordPress plugin was affected by a Multiple Cross Site Scripting Vulnerabilities security vulnerability...

WordPress Uploadify Plugin 1.0 - Arbitrary File Upload

Because of this vulnerability, attackers can upload a php code for example and run it in the context of the webserver process. Solution Update the plugin...

WEBMIS CMS Shell Upload

Exploit Title : WEBMIS CMS Shell Upload vulnerability Author : Jagriti Sahu Vendor : http://www.ksphp.com Download Link : https://github.com/ksphp/webmis version affected : all Date : 14/07/2014 Discovered at : IndiShell Lab Love to : Surbhi, Mradula and Harry //////////////////////// /// Overvie...

jQuery uploadify 2.1.0 - Remote File Upload

No description provided by source. Exploit Title: jQuery uploadify v2.1.0 Remote File Upload Date: 21/01/2010 Author: k4cp3r/Ablus Version: v2.1.0 uploadify.swf Actionscript: function setAllowedTypes:void allowedTypes = ; if param.fileDesc && param.fileExt var fileDescs:Array =...

Uploadify Sample Collection Shell Upload Vulnerability

No description provided by source...