WordPress Simple Backup plugin versions prior to 2.7.10 suffer from file download and path traversal vulnerabilities.
f57a12da9297027e3773452968be51ac7ced5f4c62bc2a03d3a8a87db3b83faeThe FoF Pretty Mail extension version 1.1.2 for Flarum suffers from a local file inclusion vulnerability.
1dbbfbdf1a7bf4060fdff75fb8aff1ab0bc5375217ca00dc2d7c0cf611ab7316UPS Network Management Card version 4 suffers from a path traversal vulnerability.
09c742a5856228ab92542adea67531a36cce939377dbf076b6f5c6131ba276dcArtica Proxy versions 4.40 and 4.50 suffer from a local file inclusion protection bypass vulnerability that allows for path traversal.
ee5d3d2cce629647f1cc48769c74910aca7883ad99b79b7b1c766a0e28a65ddfRAD SecFlow-2 devices with Hardware 0202, Firmware 4.1.01.63, and U-Boot 2010.12 suffer from a directory traversal vulnerability.
4fc9777bae6431fffff54a5e1e945548b2d134853e189f941d1edbb9e6269023Boss Mini version 1.4.0 suffers from a local file inclusion vulnerability.
fd1ebe20ccdc11bd1897608c2ab131c580b9a7fdc758f3d4c292f49e3840ee1bAutomatic-Systems SOC FL9600 FastLine version V06 suffers from a directory traversal vulnerability.
e43491c92de6a6e95e9bcf00c8f526235bfba3e6efc005c1ff1ac8382b3fa1aeWordPress Canto versions prior to 3.0.5 suffer from remote file inclusion and shell upload vulnerabilities.
a59ad7feb866d8c5d65a87422165e0d5c276bf4da7b8e83a100a1933f7afdf64This Metasploit exploit module leverages sql injection and local file inclusion vulnerabilities in Cacti versions prior to 1.2.26 to achieve remote code execution. Authentication is needed and the account must have access to the vulnerable PHP script (pollers.php). This is granted by setting the Sites/Devices/Data permission in the General Administration section.
b4ef67908324e2b53eac068bc36847b4c86d487875706d6d2339e053cc3970f0Red Hat Security Advisory 2024-0322-03 - An update is now available for Red Hat Ansible Automation Platform 2.4. Issues addressed include a local file inclusion vulnerability.
ec54d91ee61f5c72cb68e7109ab0359e6a72658c9986d06dab1a8ef8e367fea8xbtitFM versions 4.1.18 and below suffer from remote shell upload, remote SQL injection, and path traversal vulnerabilities.
ef1507c81f76ecec6734de5bc13c14f9dd0d27fd26b16cae52e43d8b56f7e84bRed Hat Security Advisory 2024-0215-03 - An update for GitPython is now available for Red Hat OpenStack Platform 17.1. Issues addressed include a local file inclusion vulnerability.
2542267af116a6f3edaff43482571cb4d3815dd12928ccaf837db35fc21410a3Red Hat Security Advisory 2024-0190-03 - An update for GitPython is now available for Red Hat OpenStack Platform 17.1. Issues addressed include a local file inclusion vulnerability.
54cb109bd805a7aec5c62bda346b466ce736b598e614da0e7a20126dacb270cdSSH-Snake is a powerful tool designed to perform automatic network traversal using SSH private keys discovered on systems, with the objective of creating a comprehensive map of a network and its dependencies, identifying to what extent a network can be compromised using SSH and SSH private keys starting from a particular system. SSH-Snake can automatically reveal the relationship between systems which are connected via SSH, which would normally take a tremendous amount of time and effort to perform manually.suffers from bypass and traversal vulnerabilities.
955ae990d1d900f97e789c6f6cb04dd954898e032e8e00fc6d4354e9508c09aeTYPO3 version 11.5.24 suffers from a path traversal vulnerability.
03813e6c817dd07d0776cc4f2e231198a5090417fd417056ae4cf86789054797Red Hat Security Advisory 2023-7851-03 - Updated Satellite 6.14 packages that fixes Important security bugs and several regular bugs are now available for Red Hat Satellite. Issues addressed include cross site scripting and local file inclusion vulnerabilities.
5936a03da5b97212f5fb9b6747bf8731fbb23f1c33b0483d107dfa2b817abdfbetcd-browser version 87ae63d75260 suffers from a directory traversal vulnerability.
8456b0b8489b8c480ad32f464fbe163fc1fe87e4a533e2f02fd020993cf98140This is a script that checks the WordPress WP Rocket plugin to see if it is a version vulnerable to local file inclusion.
c3229af0a58a90826c202f67b9967c50d32d7265ad9cc923c136a59dbeebe883WordPress AI ChatBot plugin versions 4.8.9 and below suffer from arbitrary file deletion, remote SQL injection, and directory traversal vulnerabilities.
3c8bd183a8149e978aa13cbebd94a03b1f13fab6fc7a36a3dae48595fdb56856Minio version 2022-07-29T19-40-48Z suffers from a path traversal vulnerability.
e70e4cd749d41bb9ff62f9f8824c552c17eb973e31cf58d0428755e0147d2bc4KPOT Stealer CMS 2.0 suffers from a directory traversal vulnerability.
a03351195e4ccd6346eb50122bfeeab02551f28a42e38a371693172b705c255bKarenderia MRS version 5.3 suffers from a directory traversal vulnerability.
647908386cd95429f4bf261e972554ebd7fa2d7d14b9f47f02be47b9e7b02d46TECHView LA5570 Wireless Gateway version 1.0.19_T53 suffers from directory traversal, privilege escalation, and information disclosure vulnerabilities.
d1257e7bf2cdf6fd21b1cc76b8960cbdf567e1b24499e73c14da1c1903331e35WordPress Media Library Assistant plugin versions prior to 3.10 are affected by an unauthenticated remote reference to Imagick() conversion which allows attacker to perform local file inclusion and remote code execution depending on the Imagick configuration on the remote server.
215d90f7b23ba2c6491523ea488e0b6086485144b12a9481dd5f5a3182326981FileMage Gateway version 1.10.9 suffers from a local file inclusion vulnerability.
1eade8341df9276ab13d1f45c29b99f2db633972268c24b6ee53618c52bb593c
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed