17 matches found
CVE-2021-37445
In NCH Quorum v2.03 and earlier, an authenticated user can use directory traversal via logprop?file=/.. for file reading...
CVE-2021-37447
In NCH Quorum v2.03 and earlier, an authenticated user can use directory traversal via documentdelete?file=/.. for file deletion...
Directory traversal
In NCH Quorum v2.03 and earlier, an authenticated user can use directory traversal via documentdelete?file=/.. for file deletion...
Directory traversal
In NCH Quorum v2.03 and earlier, an authenticated user can use directory traversal via documentprop?file=/.. for file reading...
CVE-2021-37464
In NCH Quorum v2.03 and earlier, XSS exists via Conference Description stored...
CVE-2021-37466
In NCH Quorum v2.03 and earlier, XSS exists via /conference?id= reflected...
Design/Logic Flaw
In NCH Quorum v2.03 and earlier, XSS exists via Conference Description stored...
Design/Logic Flaw
In NCH Quorum v2.03 and earlier, XSS exists via /uploaddoc?id= reflected...
CVE-2021-37445
This entry describes a directory traversal vulnerability in NCH Quorum v2.03 and earlier. An authenticated user can read files by abusing logprop?file=/.., enabling traversal to access local files. The affected product is NCH Quorum (teleconference server software); the vulnerability is triggered...
CVE-2021-37446
In NCH Quorum v2.03 and earlier, an authenticated user can use directory traversal via documentprop?file=/.. for file reading...
CVE-2021-37465
In NCH Quorum v2.03 and earlier, XSS exists via /uploaddoc?id= reflected...
CVE-2021-37467
In NCH Quorum v2.03 and earlier, XSS exists via /conferencebrowseuploadfile?confid= reflected...
htmlArea 2.03 Database Disclosure
======================================================================================== | Title : htmlArea v2.03 DB Download Vulnerability | | Author : indoushka | | email : [email protected] | | Home : Souk Naamane - 04325 - Oum El Bouaghi - Algeria -00213771818860 | | Web Site :...
htmlArea v2.03 DB Download Vulnerability
Exploit for unknown platform in category web applications ======================================== htmlArea v2.03 DB Download Vulnerability ======================================== ======================================================================================== | Title : htmlArea v2.03 DB...
htmlArea 2.03 - Database Disclosure
======================================================================================== | Title : htmlArea v2.03 DB Download Vulnerability | | Author : indoushka | | email : [email protected] | | Home : Souk Naamane - 04325 - Oum El Bouaghi - Algeria -00213771818860 | | Web Site :...
pNews 2.03 - 'newsid' SQL Injection
. . | / | | \ \ | / / |\ \ \ |/ // / /\ \ / |/ \ / // | / | | / \ /|\ / / / / \ / \ / / / \ | | /\ /\ / \ | \ // est.2007 / / forum.darkc0de.com --d3hydr8 -rsauron-baltazar -sinner01 -C1c4Tr1Z - beenu ---QKrun1x-P47tr1ck - FeDeReR -MAGE -JeTFyrE and all darkc0de members ---...
pnews203-sql.txt
. . | / | | \ \ | / / |\ \ \ |/ // / /\ \ / |/ \ / // | / | | / \ /|\ / / / / \ / \ / / / \ | | /\ /\ / \ | \ // est.2007 / / forum.darkc0de.com --d3hydr8 -rsauron-baltazar -sinner01 -C1c4Tr1Z - beenu ---QKrun1x-P47tr1ck - FeDeReR -MAGE -JeTFyrE and all darkc0de members ---...