Olate Download 3.4.2 ~ userupload.php ~ Upload Executable Files

VISIT ORIGINAL ADVISORY FOR MORE DETAILS http://myimei.com/security/2007-09-01/olate-download-342-useruploadphp-upload-executable-files.html VISIT ORIGINAL ADVISORY FOR MORE DETAILS/ ——-Summary—— Software: Olate Download Sowtware's Web Site: http://www.olate.co.uk/ Versions: 3.4.2 Class: Remote...

OlateDownload3.4.0.txt

::OlateDownload 3.4.0 Multiple Vulnerabilities :: ------------------------------------------------ Software : OlateDownload Website : www.olate.co.uk Bug Discover : Hessam-x / www.hessamx.net I. Cross Site Scripting Vulnerability ------------------------------------------------- Parameter...

CVE-2006-5144

CVE-2006-5144 is a reported XSS vulnerability in OlateDownload 3.4.0, specifically in userupload.php where arbitrary HTML/script can be injected via the description_small parameter. The vulnerability is described across multiple sources (NVD/NVD listing, CVE records) with CVSS 2.0 base score 6.8 ...

OlateDownload 3.4.0 Multiple Vulnerabilities

::OlateDownload 3.4.0 Multiple Vulnerabilities :: ------------------------------------------------ Software : OlateDownload Website : www.olate.co.uk Bug Discover : Hessam-x / www.hessamx.net I. Cross Site Scripting Vulnerability ------------------------------------------------- Parameter...