18 matches found
EUVD-2009-1321
Malware in sbrugna...
EUVD-2009-1492
Malware in sbrugna...
HTTP Commander v3.1.9 - CS Exception Vulnerability
Document Title: =============== HTTP Commander v3.1.9 - CS Exception Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1329 Release Date: ============= 2014-10-01 Vulnerability Laboratory ID VL-ID: ==================================== 1329...
[SECURITY] [DSA 2882-1] extplorer security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2882-1 [email protected] http://www.debian.org/security/ Giuseppe Iuculano March 20, 2014 http://www.debian.org/security/faq -...
DSA-2882-1 extplorer - security update
Bulletin has no description...
Debian: Security Advisory (DSA-2882-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2009-1495
Web File Explorer 3.1 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for data/db.mdb...
Improper access control
Web File Explorer 3.1 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for data/db.mdb...
CVE-2009-1495
Web File Explorer 3.1 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for data/db.mdb...
CVE-2009-1495
CVE-2009-1495 affects Web File Explorer 3.1. The vulnerability is due to improper access control that stores sensitive information under the web root, allowing remote attackers to download the database (data/db.mdb) via a direct request. Documented impact is exposure of the database file; no reme...
CVE-2009-1323
SQL injection vulnerability in body.asp in Web File Explorer 3.1 allows remote attackers to execute arbitrary SQL commands via the id parameter...
Sql injection
SQL injection vulnerability in body.asp in Web File Explorer 3.1 allows remote attackers to execute arbitrary SQL commands via the id parameter...
CVE-2009-1323
CVE-2009-1323 describes an SQL injection in Web File Explorer 3.1, where body.asp fails to sanitize the id parameter, allowing remote attackers to inject and execute arbitrary SQL commands. This is triggered via the id parameter in the request, enabling potential data disclosure or modification o...
CVE-2009-1323
SQL injection vulnerability in body.asp in Web File Explorer 3.1 allows remote attackers to execute arbitrary SQL commands via the id parameter...
CVE-2009-1314
body.asp in Web File Explorer 3.1 allows remote attackers to create arbitrary files and execute arbitrary code via the savefile action with a file parameter containing a filename that has an executable extension...
Code injection
body.asp in Web File Explorer 3.1 allows remote attackers to create arbitrary files and execute arbitrary code via the savefile action with a file parameter containing a filename that has an executable extension...
CVE-2009-1314
body.asp in Web File Explorer 3.1 allows remote attackers to create arbitrary files and execute arbitrary code via the savefile action with a file parameter containing a filename that has an executable extension...
CVE-2009-1314
The CVE-2009-1314 entry concerns body.asp in Web File Explorer 3.1, where the savefile action accepts a file parameter containing an executable extension, enabling remote attackers to create arbitrary files and execute arbitrary code. Affected component: Web File Explorer 3.1’s web interface (bod...