CVE-2012-10052

EGallery version 1.2 contains an unauthenticated arbitrary file upload vulnerability in the uploadify.php script. The application fails to validate file types or enforce authentication, allowing remote attackers to upload malicious PHP files directly into the web-accessible egallery/ directory...

CVE-2012-10027

WP-Property plugin for WordPress through version 1.35.0 contains an unauthenticated file upload vulnerability in the third-party uploadify.php script. A remote attacker can upload arbitrary PHP files to a temporary directory without authentication, leading to remote code execution...

WordPress plugin FoxyPress 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A code issue...

CVE-2019-10276

Western Bridge Cobub Razor 0.8.0 has a file upload vulnerability via the web/assets/swf/uploadify.php URI, as demonstrated by a .php file with the image/jpeg content type...

CVE-2023-2648 Weaver E-Office uploadify.php unrestricted upload

A vulnerability was found in Weaver E-Office 9.5. It has been classified as critical. This affects an unknown part of the file /inc/jquery/uploadify/uploadify.php. The manipulation of the argument Filedata leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit h...

CVE-2019-10276

CVE-2019-10276 affects Western Bridge Cobub Razor 0.8.0. The vulnerability is a file upload issue reachable via the URI web/assets/swf/uploadify.php; demonstration involves uploading a PHP file served with the image/jpeg content type. The connected records confirm the affected product and the upl...

CVE-2019-10276

Western Bridge Cobub Razor 0.8.0 has a file upload vulnerability via the web/assets/swf/uploadify.php URI, as demonstrated by a .php file with the image/jpeg content type...

CVE-2018-19421

In GetSimpleCMS 3.3.15, admin/upload.php blocks .html uploads but Internet Explorer render HTML elements in a .eml file, because of admin/upload-uploadify.php, and validatesafefile in admin/inc/securityfunctions.php...

CVE-2018-19421

In GetSimpleCMS 3.3.15, admin/upload.php blocks .html uploads but Internet Explorer render HTML elements in a .eml file, because of admin/upload-uploadify.php, and validatesafefile in admin/inc/securityfunctions.php...

Design/Logic Flaw

In GetSimpleCMS 3.3.15, admin/upload.php blocks .html uploads but Internet Explorer render HTML elements in a .eml file, because of admin/upload-uploadify.php, and validatesafefile in admin/inc/securityfunctions.php...

WordPress PHP Event Calendar Plugin <= 1.5 - Arbitrary File Upload

This plugin is prone to an arbitrary file upload vulnerability via "uploadify.php" file. Solution Update the plugin...

sitestar v2.7 /uploadify.php 文件上传漏洞

No description provided by source...

WordPress plugin Foxypress uploadify.php Arbitrary Code Execution

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3...

ClanSuite 2.9 - Arbitrary File Upload Vulnerability

No description provided by source. Exploit Title: ClanSuite 2.9 Arbitrary File Upload Date: 29/05/2012 Exploit Author: Adrien Thierry Vendor Homepage: http://clansuite.com/ Software Link : https://github.com/jakoch/Clansuite or : http://svn.gna.org/svn/clansuite/trunk/ Version: 2.9 and Trunk...

Wordpress Theme Photocrati-theme-v4.07 Shell Upload Vulnerability

Exploit for php platform in category web applications Title : Wordpress Theme Photocrati-theme-v4.07 Shell Upload Vulnerability Author : Aloulou Date : 13/05/2014 Facebook : http://www.facebook.com/Aloulou.TN Email: email protected Vendor : www.photocrati.com Google Dork...

MODx Evogallery模块'uploadify.php'任意文件上传漏洞

Bugtraq ID:65646 MODx是一个开源的PHP应用框架,可以帮助使用者控制自己的网上内容。 MODx Evogallery模块'uploadify.php'不正确过滤用户提交的输入，允许远程攻击者利用漏洞提交恶意文件，并以WEB权限执行。 0 MODx Evogallery 用户可参考厂商的GIT库以获得补丁修复此漏洞： https://github.com/Mark-H/EvoGallery ?php $uploadfile="file.php"; $ch =...

WordPress Kidoo Shell Upload

"@$uploadfile"; curlsetopt$ch, CURLOPTRETURNTRANSFER, 1; $postResult = curlexec$ch; curlclose$ch; print "$postResult"; ?...

MetInfo 5.1.3 /admin/include/uploadify.php 文件上传漏洞

No description provided by source...

Wordpress theme sandbox Arbitrary File Upload Vulnerability (msf)

Exploit for php platform in category remote exploits -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= /' \ /'\ /\ \ /'\ /, \ /\/\ \ \ \ \ ,/\ /\ \ //\ \ /' \ /\ //\ Exploit database separated by exploit // type local, remote, DoS, etc. + Site : 1337day.com + Support...

Wordpress theme sandbox Arbitrary File Upload Vulnerability

Exploit for php platform in category web applications 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 +...