Filtered by vendor Sergey Korostel
Subscriptions
Filtered by product Php Upload Center
Subscriptions
Total
4 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2006-6360 | 1 Sergey Korostel | 1 Php Upload Center | 2024-11-21 | N/A |
PHP remote file inclusion vulnerability in activate.php in PHP Upload Center 2.0 allows remote attackers to execute arbitrary PHP code via a URL in the footerpage parameter. | ||||
CVE-2006-1208 | 1 Sergey Korostel | 1 Php Upload Center | 2024-11-21 | N/A |
Sergey Korostel PHP Upload Center allows remote attackers to execute arbitrary PHP code by uploading a file whose name ends in a .php.li extension, which can be accessed from the upload directory. | ||||
CVE-2006-1207 | 1 Sergey Korostel | 1 Php Upload Center | 2024-11-21 | N/A |
PHP Upload Center stores password hashes under the web root with insufficient access control, which allows remote attackers to download each password hash via a direct request for the upload/users/[USERNAME] file. | ||||
CVE-2005-3947 | 1 Sergey Korostel | 1 Php Upload Center | 2024-11-21 | N/A |
Directory traversal vulnerability in index.php in PHP Upload Center allows remote attackers to read arbitrary files via "../" sequences in the filename parameter. |
Page 1 of 1.