what you don't know can hurt you
Showing 1 - 25 of 57 RSS Feed

Files

Roxy Fileman 1.4.5 For .NET Directory Traversal
Posted Dec 13, 2019
Authored by Patrik Lantz

Roxy Fileman version 1.4.5 for .NET suffers from a directory traversal vulnerability.

tags | exploit, file inclusion
advisories | CVE-2019-19731
MD5 | 8284d1688030466bc863d4e452dcf4ff

Related Files

phpFileManager 1.7.8 Local File Inclusion
Posted Apr 2, 2019
Authored by Murat Kalafatoglu

phpFileManager version 1.7.8 suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
MD5 | f47a6582f630e20a6c4444e709ce0680
Roxy Fileman 1.4.5 Arbitrary File Download
Posted Jan 16, 2019
Authored by Ihsan Sencan

Roxy Fileman version 1.4.5 suffers from an arbitrary file download vulnerability.

tags | exploit, arbitrary, info disclosure
MD5 | 5889efb4572742bf954e5cd0be9fefc7
Roxy Fileman 1.4.5 File Upload / Directory Traversal
Posted Jan 7, 2019
Authored by Pongtorn Angsuchotmetee, Vittawat Masaree

Roxy Fileman version 1.4.5 suffers from remote file upload and directory traversal vulnerabilities.

tags | exploit, remote, vulnerability, file inclusion, file upload
advisories | CVE-2018-20525, CVE-2018-20526
MD5 | f18d3ae1fe4f8aea768cdfcb18391024
Responsive FileManager 9.13.4 XSS / File Manipulation / Traversal
Posted Dec 14, 2018
Authored by farisv

Responsive FileManager version 9.13.4 suffers from bypass, cross site scripting, remote file read, remote file write, and traversal vulnerabilities.

tags | exploit, remote, vulnerability, xss, file inclusion
MD5 | 2ef45cffaee6d5b284e83ae3327d46c7
Responsive Filemanager 9.8.1 Cross Site Scripting
Posted Oct 9, 2018
Authored by Yavuz Atlas

Responsive Filemanager version 9.8.1 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2018-18062
MD5 | e57866e9ceecaf92811e3d760b50d6b7
Responsive Filemanager 9.8.1 Authentication Bypass
Posted Oct 9, 2018
Authored by Yavuz Atlas

Responsive Filemanager version 9.8.1 suffers from an authentication bypass vulnerability.

tags | exploit, bypass
advisories | CVE-2018-18061
MD5 | 2968e7e3127dac8103c96182e7b5ce30
Responsive FileManager 9.13.4 Path Traversal
Posted Aug 23, 2018
Authored by Simon Uvarov

Responsive FileManager version 9.13.4 suffers from multiple path traversal vulnerabilities.

tags | exploit, vulnerability, file inclusion
advisories | CVE-2018-15535, CVE-2018-15536
MD5 | 226e6880e1a8b33e1629ade9ec2a7326
Responsive Filemanager 9.13.1 Server-Side Request Forgery
Posted Jul 29, 2018
Authored by Guia Brahim Fouad

Responsive Filemanager version 9.13.1 suffers from a server-side request forgery vulnerability.

tags | exploit
advisories | CVE-2018-14728
MD5 | 9ea189ebe988e84ea737aadd00966199
Rich FileManager 2.7.0 Cross Site Scripting
Posted Feb 1, 2018
Authored by indoushka

Rich FileManager version 2.7.0 suffers from a cross site scripting vulnerability via a malicious file upload.

tags | exploit, xss, file upload
MD5 | ff825b156aac90d9c70c62fecf601923
Responsive Filemanager 9.11.0 Arbitrary File Disclosure
Posted Feb 7, 2017
Authored by Wiswat Aswamenakul

Responsive Filemanager versions 9.11.0 and below suffer from an arbitrary file disclosure vulnerability.

tags | exploit, arbitrary, info disclosure
MD5 | dad2a61a98b698bf679cf1922c01c58f
Roxy Fileman 1.4.5 Cross Site Scripting
Posted Jan 13, 2017
Authored by Nc Kh

Roxy Fileman version 1.4.5 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 3f26e791bc7452d1e8ea57ca52a157c0
Kaspersky FileManager Cross Site Scripting
Posted Sep 2, 2016
Authored by Lawrence Amer | Site vulnerability-lab.com

The Kaspersky Company Account FileManager functionality suffered from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | baa0cdc64e9815087996e277392b3f47
Roxy File Manager 1.4.4 Shell Upload
Posted Jun 16, 2016
Authored by Tyrell Sassen

Roxy File Manager versions 1.4.4 and below suffer from a remote shell upload vulnerability.

tags | exploit, remote, shell
MD5 | 77895365fc76cb4e019aa7cab98fa54c
jbFileManager Path Traversal
Posted Jun 15, 2016
Authored by HaHwul

jbFileManager suffers from a path traversal vulnerability.

tags | exploit, file inclusion
MD5 | a12d4222c4b2e4283c2a2ffcbe13ef16
SIMOGEO FileManager 2.3.0 File Upload
Posted Feb 12, 2016
Authored by HaHwul

SIMOGEO FileManager version 2.3.0 suffers from a remote unauthenticated arbitrary file upload vulnerability.

tags | exploit, remote, arbitrary, file upload
MD5 | 072ea1096f8e0d932dfea97fa765fcf4
SIMOGEO FileManager 2.3.0 Path Traversal
Posted Feb 12, 2016
Authored by HaHwul

SIMOGEO FileManager version 2.3.0 suffers from a path traversal vulnerability.

tags | exploit, file inclusion
MD5 | fe74aef1d739c071916123623fa37eee
phpFileManager 0.9.8 Remote Code Execution
Posted Dec 8, 2015
Authored by Jay Turla, hyp3rlinx | Site hyp3rlinx.altervista.org

This Metasploit module exploits a remote code execution vulnerability in phpFileManager 0.9.8 which is a filesystem management tool on a single file.

tags | exploit, remote, code execution
MD5 | fb8ce639c13abf9025e14404d222a6e0
Dream CMS 2.3.0 Cross Site Request Forgery
Posted Oct 11, 2015
Authored by LiquidWorm | Site zeroscience.mk

Dream CMS allows users to perform certain actions via HTTP requests without performing any validity checks to verify the requests. This can be exploited to perform certain actions with administrative privileges if a logged-in user visits a malicious web site. Related to the CSRF issue, an authenticated arbitrary PHP code execution exist. The vulnerability is caused due to the improper verification of uploaded files in '/files-manager-administration/add-file' script via the 'file' POST parameter which allows of arbitrary files being uploaded in '/resource/filemanager/1/home/' where the admin first needs to add the file extension in the allowed list (csrf'd). This can be exploited to execute arbitrary PHP code by uploading a malicious PHP script file and execute system commands. Version 2.3.0 is affected.

tags | exploit, web, arbitrary, php, code execution
MD5 | 8bf9e5b4fbb3d95a618f1830b2eb0269
phpFileManager 0.9.8 Cross Site Request Forgery
Posted Jul 29, 2015
Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

phpFileManager version 0.9.8 suffers from a cross site request forgery vulnerability that can result in a backdoor shell being uploaded.

tags | exploit, shell, csrf
MD5 | 7d8b897f5aefeaad0f0522d0f6b4c43c
phpFileManager 0.9.8 Remote Command Execution / CSRF
Posted Jul 28, 2015
Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

phpFileManager version 0.9.8 suffers from a remote command execution vulnerability that can be leveraged via cross site request forgery.

tags | exploit, remote
advisories | CVE-2015-5958
MD5 | f1555c3c33e909c2e4fda99f6a2c3217
WordPress Photo Gallery 1.2.5 Unrestricted File Upload
Posted Feb 12, 2015
Authored by Kacper Szurek | Site metasploit.com

Photo Gallery Plugin for WordPress contains a flaw that allows a remote attacker to execute arbitrary PHP code. This flaw exists because the photo-gallery\photo-gallery.php script allows access to filemanager\UploadHandler.php. The post() method in UploadHandler.php

tags | exploit, remote, arbitrary, php
advisories | CVE-2014-9312
MD5 | d5407ef3b9af0583a41aa80c37d5a6ae
Easy FileManager 1.1 Local File Inclusion / Shell Upload
Posted Mar 27, 2014
Authored by Katharina S.L. | Site vulnerability-lab.com

Easy FileManager version 1.1 for iOS suffers from local file inclusion and remote shell upload vulnerabilities.

tags | exploit, remote, shell, local, vulnerability, file inclusion
systems | apple, ios
MD5 | da844dfe4dc1b982c9d5a2a077494c13
Moxiecode File Manager 3.1.5 Shell Upload
Posted May 17, 2013
Authored by MustLive

Moxiecode File Manager (MCFileManager) versions 3.1.5 and below suffer from a remote shell upload vulnerability. Moxiecode is a commercial plugin for TinyMCE.

tags | exploit, remote, shell
MD5 | 4d99d4b97168ec60e3ce9b3874647061
WordPress wp-FileManager File Download
Posted May 15, 2013
Authored by ByEge

WordPress wp-FileManager plugin suffers from an arbitrary file download vulnerability.

tags | exploit, arbitrary, info disclosure
MD5 | 82d7dc2340f5b52e61ccd747f0c83601
DM FileManager Remote File Inclusion
Posted Oct 1, 2012
Authored by infodox

In certain versions of the DM FileManager Wordpress Plugin, the security_file parameter does not correctly check the source of a file before including it, leading to a remote file inclusion vulnerability that can be leveraged to gain remote code execution.

tags | exploit, remote, code execution, file inclusion
MD5 | 635175952b7a41f683b1369d1bac11c5
Page 1 of 3
Back123Next

File Archive:

September 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Sep 1st
    20 Files
  • 2
    Sep 2nd
    15 Files
  • 3
    Sep 3rd
    15 Files
  • 4
    Sep 4th
    4 Files
  • 5
    Sep 5th
    1 Files
  • 6
    Sep 6th
    1 Files
  • 7
    Sep 7th
    15 Files
  • 8
    Sep 8th
    27 Files
  • 9
    Sep 9th
    7 Files
  • 10
    Sep 10th
    16 Files
  • 11
    Sep 11th
    9 Files
  • 12
    Sep 12th
    0 Files
  • 13
    Sep 13th
    0 Files
  • 14
    Sep 14th
    25 Files
  • 15
    Sep 15th
    15 Files
  • 16
    Sep 16th
    15 Files
  • 17
    Sep 17th
    15 Files
  • 18
    Sep 18th
    12 Files
  • 19
    Sep 19th
    1 Files
  • 20
    Sep 20th
    1 Files
  • 21
    Sep 21st
    15 Files
  • 22
    Sep 22nd
    21 Files
  • 23
    Sep 23rd
    8 Files
  • 24
    Sep 24th
    15 Files
  • 25
    Sep 25th
    4 Files
  • 26
    Sep 26th
    0 Files
  • 27
    Sep 27th
    0 Files
  • 28
    Sep 28th
    0 Files
  • 29
    Sep 29th
    0 Files
  • 30
    Sep 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close