what you don't know can hurt you
Showing 1 - 1 of 1 RSS Feed

Files

Pulse CMS Arbitrary File Deletion
Posted Mar 24, 2010
Site secunia.com

Secunia Research has discovered a vulnerability in Pulse CMS, which can be exploited by malicious users to manipulate certain data. Input passed via the "f" parameter to delete.php is not properly sanitized before deleting files. This can be exploited to delete arbitrary files with the permissions of the web server via directory traversal attacks. Successful exploitation requires authentication.

tags | advisory, web, arbitrary, php
advisories | CVE-2010-0989
MD5 | bf5d1cee37201343df7c3daae8344872
Page 1 of 1
Back1Next

Top Authors In Last 30 Days

Recent News

News RSS Feed
Hacker Conference Speaker Axed Over Abortion Views
Posted Jun 17, 2019

tags | headline, government, usa, conference
Exposed Database Dumps PII Of 1.6 Million Job Seekers
Posted Jun 17, 2019

tags | headline, privacy, database, data loss
Telegram DDoS Attack Launched Mostly From China
Posted Jun 17, 2019

tags | headline, china, denial of service, social
U.S. Defense, Intelligence Ramps Up Efforts To Insert Malware In Russia's Grid
Posted Jun 17, 2019

tags | headline, government, usa, russia, cyberwar, scada
Evernote Critical Flaw Opened Personal Data Of Millions To Attack
Posted Jun 14, 2019

tags | headline, privacy, flaw, chrome
Spirit Confirms ASCO Industries Cyberattack
Posted Jun 14, 2019

tags | headline, malware, fraud
Symantec Plays Down Unreported Breach Of Test Data
Posted Jun 14, 2019

tags | headline, hacker, data loss, password, symantec
Julian Assange's Extradition Hearing Set For 2020
Posted Jun 14, 2019

tags | headline, government, privacy, usa, britain, data loss, cyberwar, spyware
4 US Agencies Don't Properly Verify Your Data Due To The Equifax Breach
Posted Jun 14, 2019

tags | headline, government, privacy, usa, data loss, fraud, identity theft
JavaScript Template Attacks Expose New Browser Fingerprinting Vectors
Posted Jun 14, 2019

tags | headline, flaw, spyware
View More News →
packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close