Filtered by vendor Qto Subscriptions
Filtered by product Qtofilemanager Subscriptions
Total 4 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2008-2110 1 Qto 1 Qtofilemanager 2024-11-21 N/A
Unrestricted file upload vulnerability in qtofm.php in QTOFileManager 1.0 allows remote attackers to execute arbitrary PHP code by uploading a file with an executable extension, then accessing it via a direct request.
CVE-2006-3406 1 Qto 1 Qtofilemanager 2024-11-21 N/A
Directory traversal vulnerability in qtofm.php in QTOFileManager 1.0 allows remote attackers to modify arbitrary files via a .. (dot dot) sequence in the edit parameter.
CVE-2006-3405 1 Qto 1 Qtofilemanager 2024-11-21 N/A
Cross-site scripting (XSS) vulnerability in qtofm.php in QTOFileManager 1.0 allows remote attackers to inject arbitrary web script or HTML via the (1) delete, (2) pathext, and (3) edit parameters.
CVE-2006-3132 1 Qto 1 Qtofilemanager 2024-11-21 N/A
Cross-site scripting (XSS) vulnerability in qtofm.php4 in QTOFileManager 1.0 allows remote attackers to inject arbitrary web script or HTML via the msg parameter, as originally reported for index.php.