Lucene search
+L

265 matches found

prion
prion
added 2019/03/21 4:1 p.m.9 views

Directory traversal

PHP Scripts Mall Rental Bike Script 2.0.3 has directory traversal via a direct request for a listing of an uploads directory...

4CVSS6.6AI score0.01366EPSS
Exploits1References1Affected Software1
prion
prion
added 2019/03/21 4:1 p.m.12 views

Directory traversal

PHP Scripts Mall Property Rental Software 2.1.4 has directory traversal via a direct request for a listing of an uploads directory such as the wp-content/uploads/2016/08 directory...

4CVSS6.6AI score0.01366EPSS
Exploits1References1Affected Software1
prion
prion
added 2019/03/21 4:1 p.m.9 views

Directory traversal

PHP Scripts Mall Opensource Classified Ads Script 3.2.2 has directory traversal via a direct request for a listing of an uploads directory...

4CVSS6.6AI score0.01366EPSS
Exploits1References1Affected Software1
osv
osv
added 2019/03/21 4:0 p.m.6 views

CVE-2018-20646

PHP Scripts Mall Basic B2B Script 2.0.9 has has directory traversal via a direct request for a listing of an image directory such as an uploads/ directory...

6.5CVSS5.8AI score0.01637EPSS
Exploits1References1
osv
osv
added 2019/03/21 4:0 p.m.4 views

CVE-2018-20626

PHP Scripts Mall Consumer Reviews Script 4.0.3 has directory traversal via a direct request for a listing of an uploads directory such as the wp-content/uploads/2018/12 directory...

6.5CVSS5.8AI score0.01637EPSS
Exploits1References1
nvd
nvd
added 2019/03/21 4:0 p.m.17 views

CVE-2018-20629

PHP Scripts Mall Charity Donation Script readymadeb2bscript has directory traversal via a direct request for a listing of an uploads directory such as the wp-content/uploads/2018/12 directory...

5.3CVSS5.4AI score0.01853EPSS
Exploits1References1
prion
prion
added 2019/03/21 4:0 p.m.20 views

Directory traversal

PHP Scripts Mall Basic B2B Script 2.0.9 has has directory traversal via a direct request for a listing of an image directory such as an uploads/ directory...

4CVSS6.6AI score0.01637EPSS
Exploits1References1Affected Software1
prion
prion
added 2019/03/21 4:0 p.m.13 views

Directory traversal

PHP Scripts Mall Advance Crowdfunding Script 2.0.3 has directory traversal via a direct request for a listing of an uploads directory such as the wp-content/uploads/2018/12 directory...

5CVSS5.4AI score0.01853EPSS
Exploits1References1Affected Software1
prion
prion
added 2019/03/21 4:0 p.m.18 views

Directory traversal

PHP Scripts Mall Charity Foundation Script 1 through 3 allows directory traversal via a direct request for a listing of an uploads directory such as the wp-content/uploads/2018/12 directory...

5CVSS7.6AI score0.0218EPSS
Exploits1References1
cvelist
cvelist
added 2019/03/20 7:48 p.m.14 views

CVE-2019-7434

PHP Scripts Mall Rental Bike Script 2.0.3 has directory traversal via a direct request for a listing of an uploads directory...

6.6AI score0.01366EPSS
Exploits1References1
cvelist
cvelist
added 2019/03/20 7:29 p.m.12 views

CVE-2019-7429

PHP Scripts Mall Property Rental Software 2.1.4 has directory traversal via a direct request for a listing of an uploads directory such as the wp-content/uploads/2016/08 directory...

6.6AI score0.01366EPSS
Exploits1References1
cvelist
cvelist
added 2019/03/20 7:21 p.m.22 views

CVE-2018-20646

PHP Scripts Mall Basic B2B Script 2.0.9 has has directory traversal via a direct request for a listing of an image directory such as an uploads/ directory...

6.6AI score0.01637EPSS
Exploits1References1
cvelist
cvelist
added 2019/03/20 4:35 p.m.19 views

CVE-2018-20629

PHP Scripts Mall Charity Donation Script readymadeb2bscript has directory traversal via a direct request for a listing of an uploads directory such as the wp-content/uploads/2018/12 directory...

5.4AI score0.01853EPSS
Exploits1References1
cvelist
cvelist
added 2019/03/20 3:55 p.m.22 views

CVE-2018-20626

PHP Scripts Mall Consumer Reviews Script 4.0.3 has directory traversal via a direct request for a listing of an uploads directory such as the wp-content/uploads/2018/12 directory...

6.6AI score0.01637EPSS
Exploits1References1
osv
osv
added 2019/02/19 2:29 a.m.5 views

CVE-2019-8933

In DedeCMS 5.7SP2, attackers can upload a .php file to the uploads/ directory without being blocked by the Web Application Firewall, and then execute this file, via this sequence of steps: visiting the management page, clicking on the template, clicking on Default Template Management, clicking on...

8.8CVSS7.4AI score0.03433EPSS
Exploits1References1
prion
prion
added 2018/08/02 1:29 a.m.19 views

Cross site scripting

uploads/.htaccess in Subrion CMS 4.2.1 allows XSS because it does not block .html file uploads but does block, for example, .htm file uploads...

4.3CVSS5.9AI score0.03666EPSS
Exploits6References3Affected Software1
attackerkb
attackerkb
added 2018/04/10 6:29 p.m.4 views

CVE-2018-9038

Monstra CMS 3.0.4 allows remote attackers to delete files via an admin/index.php?id=filesmanager&deletedir=./&path=uploads/ request...

6.5CVSS5.6AI score0.09813EPSS
Exploits3References3
attackerkb
attackerkb
added 2018/04/04 7:29 p.m.5 views

CVE-2018-8719

An issue was discovered in the WP Security Audit Log plugin 3.1.1 for WordPress. Access to wp-content/uploads/wp-security-audit-log/ files is not restricted. For example, these files are indexed by Google and allows for attackers to possibly find sensitive information...

5.3CVSS5.6AI score0.16898EPSS
Exploits6References3
osv
osv
added 2018/04/04 7:29 p.m.3 views

CVE-2018-8719

An issue was discovered in the WP Security Audit Log plugin 3.1.1 for WordPress. Access to wp-content/uploads/wp-security-audit-log/ files is not restricted. For example, these files are indexed by Google and allows for attackers to possibly find sensitive information...

5.3CVSS5.8AI score0.16898EPSS
Exploits6References1
cnvd
cnvd
added 2018/03/26 12:0 a.m.5 views

Directory override delete vulnerability in Monstra CMS backend filesmanager.admin.php file

Monstra CMS is a lightweight PHP-based content management system CMS developed by Ukrainian software developer Sergey Romanenko. The system is easy to install and use, scalable and so on. A directory override vulnerability exists in the filesmanager.admin.php file in the backend of Monstra CMS. A...

6.9AI score
Exploits0
Rows per page
Query Builder