Filtered by vendor Sergey Korostel
Subscriptions
Filtered by product Php Upload Center
Subscriptions
Total
4 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2005-3947 | 1 Sergey Korostel | 1 Php Upload Center | 2024-08-07 | N/A |
| Directory traversal vulnerability in index.php in PHP Upload Center allows remote attackers to read arbitrary files via "../" sequences in the filename parameter. | ||||
| CVE-2006-6360 | 1 Sergey Korostel | 1 Php Upload Center | 2024-08-07 | N/A |
| PHP remote file inclusion vulnerability in activate.php in PHP Upload Center 2.0 allows remote attackers to execute arbitrary PHP code via a URL in the footerpage parameter. | ||||
| CVE-2006-1208 | 1 Sergey Korostel | 1 Php Upload Center | 2024-08-07 | N/A |
| Sergey Korostel PHP Upload Center allows remote attackers to execute arbitrary PHP code by uploading a file whose name ends in a .php.li extension, which can be accessed from the upload directory. | ||||
| CVE-2006-1207 | 1 Sergey Korostel | 1 Php Upload Center | 2024-08-07 | N/A |
| PHP Upload Center stores password hashes under the web root with insufficient access control, which allows remote attackers to download each password hash via a direct request for the upload/users/[USERNAME] file. | ||||
Page 1 of 1.