Qtofilemanager Security Vulnerabilities and Issues — Qtofilemanager CVE List

Lucene search

QtoQtofilemanager

4 matches found

CVE•added 2006/07/07 12:5 a.m.•34 views

CVE-2006-3406

Directory traversal vulnerability in qtofm.php in QTOFileManager 1.0 allows remote attackers to modify arbitrary files via a .. (dot dot) sequence in the edit parameter.

6.4CVSS7.1AI score0.00196EPSS

CVE•added 2008/05/07 11:20 p.m.•32 views

CVE-2008-2110

Unrestricted file upload vulnerability in qtofm.php in QTOFileManager 1.0 allows remote attackers to execute arbitrary PHP code by uploading a file with an executable extension, then accessing it via a direct request.

7.5CVSS7.6AI score0.03011EPSS

CVE•added 2006/06/22 1:2 a.m.•30 views

CVE-2006-3132

Cross-site scripting (XSS) vulnerability in qtofm.php4 in QTOFileManager 1.0 allows remote attackers to inject arbitrary web script or HTML via the msg parameter, as originally reported for index.php.

5.8CVSS6AI score0.00622EPSS

CVE•added 2006/07/07 12:5 a.m.•29 views

CVE-2006-3405

Cross-site scripting (XSS) vulnerability in qtofm.php in QTOFileManager 1.0 allows remote attackers to inject arbitrary web script or HTML via the (1) delete, (2) pathext, and (3) edit parameters.

5.8CVSS6AI score0.00416EPSS