The flaw exists due to insufficient validation of input passed via multiple parameters.
A local file inclusion vulnerability exists in Samsung WLAN AP router due to an improper validation of used supplied input passed via HTTP GET request.
Samsung WLAN AP Local File Inclusion Vulnerability. The flaw exists due to improper access restrictions imposed on the files WordPress Ultimate Form Builder Plugins Information Disclosure Vulnerability. The flaw exists due to insufficient validation of input passed via 'path' parameter to 'admin.php' script. Wordpress Loco Translate Plugin LFI Vulnerability. The flaw exists as the configuration including passwords is downloadable without authentication. Lupusec XT2 Plus Main Panel Information Disclosure Vulnerability. The flaw exists due to insufficient validation of input passed via 'page' parameter to 'admin-ajax.php' script. The flaw exists as the application allows any user to read files from the server without authentication.įorm Maker Wordpress Plugin LFI Vulnerability. gSOAP is prone to a directory traversal vulnerability which allows an unauthorized attacker to read files or directories. In version from 3.0.0 to 3.5.3 of Eclipse Vert.x, the StaticHandler uses external input to construct a pathname that should be within a restricted directory, but it does not properly neutralize '\' (forward slashes) sequences that can resolve to a location that is outside of that directory when runn.
0 kommentar(er)
