Download
| Alert*
oval:org.secpod.oval:def:601229
Multiple cross-site scripting vulnerabilities have been discovered in extplorer, a web file explorer and manager using Ext JS. A remote attackers can inject arbitrary web script or HTML code via a crafted string in the URL to application.js.php, admin.php, copy_move.php, functions.php, header.php a ... oval:org.secpod.oval:def:601376 extplorer is installed oval:org.secpod.oval:def:600848 John Leitch has discovered a vulnerability in eXtplorer, a very feature rich web server file manager, which can be exploited by malicious people to conduct cross-site request forgery attacks. The vulnerability allows users to perform certain actions via HTTP requests without performing any validity ... oval:org.secpod.oval:def:1901776 extplorer exposes /usr and /etc/extplorer over HTTP |