connectors software vulnerabilities

Searching connectors software vulnerabilities

connectors/php/connector.php in FCKeditor mcpuk

connectors/php/connector.php in FCKeditor mcpuk file manager, as used in (1) Geeklog 1.4.0 through 1.4.0sr3, (2) toendaCMS 1.0.0 Shizouka Stable and earlier, and possibly other products, when installed on Apache with mod_mime, allows remote attackers to upload and execute arbitrary PHP code via a filename with a .php extension and a trailing extension that is allowed, such as .zip.

Multiple PHP remote file inclusion vulnerabilit

Multiple PHP remote file inclusion vulnerabilities in UNAK-CMS 1.5 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the dirroot parameter to (1) fckeditor/editor/filemanager/browser/default/connectors/php/connector.php or (2) fckeditor/editor/dialog/fck_link.php.

PHP remote file inclusion vulnerability in mana

PHP remote file inclusion vulnerability in manager/media/browser/mcpuk/connectors/php/Commands/Thumbnail.php in Modx CMS 0.9.2.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the base_path parameter. NOTE: it is possible that this is a vulnerability in FCKeditor.

Incomplete blacklist vulnerability in filemanag

Incomplete blacklist vulnerability in filemanager/browser/default/connectors/php/config.php in the FCKeditor module, as used in ActiveCampaign 1-2-All (aka 12All) 4.50 through 4.53.13, and possibly other products, allows remote authenticated administrators to upload and possibly execute .php4 and .php5 files via unspecified vectors. NOTE: this issue is reachable through filemanager/browser/default/browser.html.

Software vulnerabilities results 1 to 5 of 5

Page: 1

connectors software vulnerabilities

vulnerabilities.aspcode.net

Searching connectors software vulnerabilities

connectors/php/connector.php in FCKeditor mcpuk

Multiple PHP remote file inclusion vulnerabilit

PHP remote file inclusion vulnerability in mana

Incomplete blacklist vulnerability in filemanag