Lucene search
High-Tech Bridge SAEDB-ID:36785HistoryFeb 15, 2012 - 12:00 a.m.
11in1 CMS 1.2.1 - '/admin/index.php?class' Traversal Local File Inclusion
2012-02-1500:00:00
High-Tech Bridge SA
www.exploit-db.com
23
source: https://www.securityfocus.com/bid/52025/info
11in1 is prone to a cross-site request-forgery and a local file include vulnerability.
An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site, steal cookie-based authentication credentials, and open or run arbitrary files in the context of the affected application.
11in1 1.2.1 is vulnerable; other versions may also be affected.
http://www.example.com/admin/index.php?class=../../../tmp/file%00Related
prion
prion
Directory traversal
2012-02-24 13:55:00
exploitdb
exploitdb
11in1 CMS 1.2.1 - 'index.php?class' Traversal Local File Inclusion
2012-02-15 00:00:00
nuclei
nuclei
11in1 CMS 1.2.1 - Local File Inclusion (LFI)
2021-09-27 11:02:48
cve
cve
CVE-2012-0996
2012-02-24 13:55:02
nvd
nvd
CVE-2012-0996
2012-02-24 13:55:02
cvelist
cvelist
CVE-2012-0996
2012-02-20 19:00:00
htbridge
htbridge
Multiple vulnerabilities in 11in1
2012-01-25 00:00:00
openvas
openvas
11in1 Cross Site Request Forgery and Local File Include Vulnerabilities
2012-02-16 00:00:00
11in1 Cross Site Request Forgery and Local File Include Vulnerabilities
2012-02-16 00:00:00
securityvulns
securityvulns
Multiple vulnerabilities in 11in1
2012-02-22 00:00:00
packetstorm
packetstorm