Server: Bypass of file blacklist on Microsoft Windows Platform

A blacklist bypass vulnerability including UTF-8 encoding in file paths in the mentioned ownCloud Server versions, when running on a Microsoft Windows Platform, allows authenticated remote attackers to bypass the file blacklist and upload files such as the .htaccess files. An attacker could...

Honeywell XL Web Controller Directory Traversal Vulnerability

Honeywell XL Web Controller is a web-based SCADA system. A security vulnerability exists in Honeywell XL Web Controller, which can be exploited by an attacker to access the Web Root directory of an affected system via a directory traversal vulnerability within the FTP server...

CVE-2014-6316

core/stringapi.php in MantisBT before 1.2.18 does not properly categorize URLs when running under the web root, which allows remote attackers to conduct open redirect and phishing attacks via a crafted URL in the return parameter to loginpage.php...

Directory traversal

Directory traversal vulnerability in the agentUpload servlet in ZOHO ManageEngine EventLog Analyzer 9.0 build 9002 and 8.2 build 8020 allows remote attackers to execute arbitrary code by uploading a ZIP file which contains an executable file with .. dot dot sequences in its name, then accessing t...

CVE-2014-8329

Schrack Technik microControl with firmware before 1.7.0 937 stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain access data for the ftp and telnet services via a direct request for ZTPUsrDtls.txt...

Improper access control

Schrack Technik microControl with firmware before 1.7.0 937 stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain access data for the ftp and telnet services via a direct request for ZTPUsrDtls.txt...

CVE-2014-8329

Schrack Technik microControl with firmware before 1.7.0 937 stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain access data for the ftp and telnet services via a direct request for ZTPUsrDtls.txt...

ManageEngine Desktop Central StatusUpdate Arbitrary File Upload

This module exploits an arbitrary file upload vulnerability in ManageEngine DesktopCentral v7 to v9 build 90054 including the MSP versions. A malicious user can upload a JSP file into the web root without authentication, leading to arbitrary code execution as SYSTEM. Some early builds of version ...

ManageEngine Desktop Central / Password Manager LinkViewFetchServlet.dat SQL Injection

This module exploits an unauthenticated blind SQL injection in LinkViewFetchServlet, which is exposed in ManageEngine Desktop Central v7 build 70200 to v9 build 90033 and Password Manager Pro v6 build 6500 to v7 build 7002 including the MSP versions. The SQL injection can be used to achieve remot...

ManageEngine Password Manager MetadataServlet.dat SQL Injection Exploit

This Metasploit module exploits an unauthenticated blind SQL injection in LinkViewFetchServlet, which is exposed in ManageEngine Desktop Central v7 build 70200 to v9 build 90033 and Password Manager Pro v6 build 6500 to v7 build 7002 including the MSP versions. The SQL injection can be used to...

Directory traversal

Directory traversal vulnerability in Cisco Unified Contact Center Enterprise allows remote authenticated users to read arbitrary web-root files via a crafted URL, aka Bug ID CSCun25262...

redaxscript 0.3.2 - Multiple Vulnerabilities

No description provided by source. ================================== Vulnerability ID: HTB22805 Reference: http://www.htbridge.ch/advisory/pathdisclosureinredaxscript.html Product: Redaxscript Vendor: http://redaxscript.com/ http://redaxscript.com/ Vulnerable Version: 0.3.2 Vendor Notification: ...

fsboard 2.0 - Directory Traversal vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/14111/info FSboard is prone to a directory traversal vulnerability. This could allow a remote attacker to read files outside the Web root. This could only be used to access files to which the Web server has permission. Al...

datawizard webxq 2.1.204 - Directory Traversal vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2660/info DataWizard WebXQ server could be led to traverse directories and possibly reveal files outside of the web root. By including '/../' sequences along with a known file or directory in requested URLs, a remote user...

MyBB 1.6 - Full Path Disclosure Vulnerability

No description provided by source. Vulnerability ID: HTB22654 Reference: http://www.htbridge.ch/advisory/pathdisclosureinmybb.html Product: MyBB Vendor: MyBB http://www.mybb.com Vulnerable Version: 1.6 Vendor Notification: 13 October 2010 Vulnerability Type: Path disclosure Status: Not Fixed,...

viscacha 0.8.1 - Multiple Vulnerabilities

No description provided by source. Vulnerability ID: HTB22921 Reference: http://www.htbridge.ch/advisory/sqlinjectioninviscacha.html Product: Viscacha Vendor: MaMo Net http://www.viscacha.org Vulnerable Version: 0.8.1 Vendor Notification: 24 March 2011 Vulnerability Type: SQL Injection Risk level...

iPlanet Certificate Management System 4.2 - Directory Traversal

No description provided by source. source: http://www.securityfocus.com/bid/1839/info Acquiring access to known files outside of the web root is possible through directory traversal techniques in both iPlanet Certificate Management System CMS. This is made possible through the use of ../ in a HTT...

MegaBrowser 0.3 HTTP Directory Traversal File Disclosure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/7802/info The MegaBrowser HTTP server component is prone to a file disclosure vulnerability. Directory traversal sequences may be used to break out of the web root directory. Attackers may gain access to files that are...

Joomla 1.5.12 connect back exploit

No description provided by source. !/usr/bin/php ?php / Copyright c ITIX LTD This program is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation, either version 3 of the License, or at your option a...

Easy Message Board Directory Traversal Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/13551/info Easy Message Board is prone to a directory traversal vulnerability that could allow attackers to read files outside the Web root...