CVE-2019-11879

The WEBrick gem 1.4.2 for Ruby allows directory traversal if the attacker once had local access to create a symlink to a location outside of the web root directory. NOTE: The vendor states that this is analogous to Options FollowSymlinks in the Apache HTTP Server, and therefore it is "not a probl...

Directory traversal

DISPUTED The WEBrick gem 1.4.2 for Ruby allows directory traversal if the attacker once had local access to create a symlink to a location outside of the web root directory. NOTE: The vendor states that this is analogous to Options FollowSymlinks in the Apache HTTP Server, and therefore it is "no...

Node.js third-party modules: [min-http-server] List any file in the folder by using path traversal.

I would like to report Path Traversal in min-http-server. It allows to list any file in another folder of web root. Module module name: min-http-server version: 1.0.6 npm page: https://www.npmjs.com/package/min-http-server Module Description 'min-http-server' is a zero-configuration, lightweight...

Horde Form Shell Upload

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Horde Form File Upload Vulnerability', 'Description' = %q Horde Groupware Webmail contains a flaw that allows an authenticated remote attacker to...

Directory Traversal

harp is vulnerable to directory traversal. The attack exists due to the ignorance of the harp server rules for the file path starting with underscore, allowing an unauthorized listing of the files in another folder of web root...

Information Disclosure

harp is vulnerable to information disclosure. A remote attacker is able to retrieve files within the web root that are marked as ignored using a URL encoded underscore character %5f, e.g %5fsecret.txt...

SQL Injection

dolibarr/dolibarr is vulnerable to SQL injection. A lack of validation on the desiredstock parameter in product/card.php allows a remote authenticated attacker to execute arbitrary SQL commands via an error-based SQL injection vulnerability. This vulnerability could potentially allow for remote...

simplehttpserver path traversal vulnerability (CNVD-2018-25186)

simplehttpserver is a Python based HTTP server for testing, development and debugging of projects. A path traversal vulnerability exists in simplehttpserver 0.2.1 and earlier versions. An attacker can use this vulnerability to list arbitrary files in other folders in the web root directory...

CVE-2018-16478

A Path Traversal in simplehttpserver versions =0.2.1 allows to list any file in another folder of web root...

Path traversal

A Path Traversal in simplehttpserver versions =0.2.1 allows to list any file in another folder of web root...

CVE-2018-16478

A Path Traversal in simplehttpserver versions =0.2.1 allows to list any file in another folder of web root...

CVE-2018-16478

A Path Traversal in simplehttpserver versions =0.2.1 allows to list any file in another folder of web root...

Directory Traversal

jqueryFileTree is vulnerable to directory traversal. A lack of validation on the dir parameter allows a remote attacker to submit a / character to retrieve the contents of a specified directory outside of the web root....

D-Link Central WiFi Manager Arbitrary Code Execution Vulnerability (CNVD-2018-20466)

D-Link Central WiFi Manager is a WiFi management system from AUO D-Link. A security vulnerability exists in versions prior to D-Link Central WiFi Manager 1.03r0100-Beta1. The vulnerability can be exploited by remote attackers to execute arbitrary PHP code by uploading an arbitrary file in the web...

CVE-2018-17440

An issue was discovered on D-Link Central WiFi Manager before v 1.03r0100-Beta1. They expose an FTP server that serves by default on port 9000 and has hardcoded credentials admin, admin. Taking advantage of this, a remote unauthenticated attacker could execute arbitrary PHP code by uploading any...

Dialogic PowerMedia XMS File Unrestricted Upload Vulnerability

Dialogic PowerMedia XMS is a suite of software multimedia servers for real-time communications from Dialogic, Inc. that provide real-time multimedia communication solutions for IMS, MRF, enterprise and WebRTC applications. A security vulnerability exists in the management console of Dialogic...

Dialogic PowerMedia XMS Information Disclosure Vulnerability

Dialogic PowerMedia XMS is a highly scalable, software-only media server that supports standards-based, real-time multimedia communication solutions for mobile and broadband environments. An information disclosure vulnerability exists in the management console of Dialogic PowerMedia XMS 3.5 and...

CVE-2018-11638

Unrestricted Upload of a File with a Dangerous Type in the administrative console in Dialogic PowerMedia XMS through 3.5 allows remote authenticated users to upload malicious code to the web root to gain code execution...

Information disclosure

Information leakage vulnerability in the administrative console in Dialogic PowerMedia XMS through 3.5 allows remote attackers to read arbitrary files from the /var/ directory because a symlink exists under the web root...

Unrestricted file upload

Unrestricted Upload of a File with a Dangerous Type in the administrative console in Dialogic PowerMedia XMS through 3.5 allows remote authenticated users to upload malicious code to the web root to gain code execution...