41 matches found
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in pd-admin before 4.17 allow remote authenticated users to inject arbitrary web script or HTML via 1 the WebFTP Overview "Create new directory" field or 2 the body of an e-mail autoresponder message...
CVE-2013-0129
Multiple cross-site scripting XSS vulnerabilities in pd-admin before 4.17 allow remote authenticated users to inject arbitrary web script or HTML via 1 the WebFTP Overview "Create new directory" field or 2 the body of an e-mail autoresponder message...
CVE-2013-0129
Multiple cross-site scripting XSS vulnerabilities in pd-admin before 4.17 allow remote authenticated users to inject arbitrary web script or HTML via 1 the WebFTP Overview "Create new directory" field or 2 the body of an e-mail autoresponder message...
kingcms 5.0 vulnerability-a vulnerability warning-the black bar safety net
To 1. kingcms 5.0 fckeditor the default path in the admin/system/editor/FCKeditor/editor/fckeditor.Html The local horse named for the hx. asp;jpg watch jpg the front there is no point.. OK..actually later do stations combined fckeditor this editor..plus the best verification..only management can...
KingCMS ASP 5.0/5.1 vulnerability-vulnerability warning-the black bar safety net
KingCMS ASP is based on ASP+ACCESS framework of a very good CMS system, the reception is all static processing, the new generation of KingCMS provides a better interface, more development leeway, more powerful expansion capability, and now also by many webmasters welcome. But in the absence of th...
kingcms5. 0/5. 1 vulnerability-the vulnerability warning-the black bar safety net
To 1. kingcms 5.0 fckeditor the default path in the admin/system/editor/FCKeditor/editor/fckeditor.Html The local horse named for the hx. asp;jpg watch jpg the front there is no point.. OK..actually later do stations combined fckeditor this editor..plus the best verification..only management can...
CVE-2008-0091
Directory traversal vulnerability in download2.php in AGENCY4NET WEBFTP 1 allows remote attackers to read and delete arbitrary files via a .. dot dot in the file parameter...
Directory traversal
Directory traversal vulnerability in download2.php in AGENCY4NET WEBFTP 1 allows remote attackers to read and delete arbitrary files via a .. dot dot in the file parameter...
CVE-2008-0091
Directory traversal vulnerability in download2.php in AGENCY4NET WEBFTP 1 allows remote attackers to read and delete arbitrary files via a .. dot dot in the file parameter...
CVE-2008-0091
CVE-2008-0091 concerns a directory traversal in download2.php of AGENCY4NET WEBFTP 1 . The flaw allows remote attackers to read and delete arbitrary files by supplying a ".." in the file parameter. According to NVD, the vulnerability has a CVSS v2 base score of 6.4 (MEDIUM) with network access, l...
AGENCY4NET WEBFTP 1 download2.php File Disclosure Vulnerability
No description provided by source. &nbs...
agency-disclose.txt
AGENCY4NET WEBFTP 1 download2.php Remote File Disclosure Vulnerability http://sourceforge.net/project/platformdownload.php?groupid=206982 POC : /Script/download2.php?file=../../../../../../../../../../../etc/passwd D0rk : : TrYaG-TeaM Tryag.com/cc, H-T Team , RoMaNcYxHaCkEr , Asb-May's Team...
AGENCY4NET WEBFTP 1 download2.php File Disclosure Vulnerability
Exploit for unknown platform in category web applications =============================================================== AGENCY4NET WEBFTP 1 download2.php File Disclosure Vulnerability =============================================================== AGENCY4NET WEBFTP 1 download2.php Remote File...
AGENCY4NET WEBFTP 1 - 'download2.php' File Disclosure
AGENCY4NET WEBFTP 1 download2.php Remote File Disclosure Vulnerability http://sourceforge.net/project/platformdownload.php?groupid=206982 POC : /Script/download2.php?file=../../../../../../../../../../../etc/passwd D0rk : : TrYaG-TeaM Tryag.com/cc, H-T Team , RoMaNcYxHaCkEr , Asb-May's Team...
AGENCY4NET WEBFTP 1 - download2.php File Disclosure
AGENCY4NET WEBFTP 1 - download2.php File Disclosure AGENCY4NET WEBFTP 1 download2.php Remote File Disclosure Vulnerability http://sourceforge.net/project/platformdownload.php?groupid=206982 POC : /Script/download2.php?file=../../../../../../../../../../../etc/passwd D0rk : : TrYaG-TeaM...
Directory traversal
Directory traversal vulnerability in webftp.php in SysCP WebFTP 1.2.6 and possibly earlier allows remote attackers to include and execute arbitrary local PHP scripts, and possibly read other types of files, via a .. dot dot and a trailing null in the webftplanguage parameter...
CVE-2006-0132
Directory traversal vulnerability in webftp.php in SysCP WebFTP 1.2.6 and possibly earlier allows remote attackers to include and execute arbitrary local PHP scripts, and possibly read other types of files, via a .. dot dot and a trailing null in the webftplanguage parameter...
CVE-2006-0132
CVE-2006-0132 describes a directory traversal in SysCP WebFTP 1.2.6 (and possibly earlier) where an attacker can manipulate the webftp_language parameter with a “..” sequence and a trailing null to cause local PHP scripts to be included/executed, and potentially read other files. The vulnerabilit...
CVE-2006-0132
Directory traversal vulnerability in webftp.php in SysCP WebFTP 1.2.6 and possibly earlier allows remote attackers to include and execute arbitrary local PHP scripts, and possibly read other types of files, via a .. dot dot and a trailing null in the webftplanguage parameter...
webftpInclude.txt
SYSCP WEBFTP LOCAL FILE INCLUSION VULNERABILITY Thomas Henlich DESCRIPTION Thomas Henlich has discovered a vulnerability in WebFTP, which can be used by remote attackers to disclose potentially sensitive information and to compromise a vulnerable system. Input passed to the "webftplanguage"...