Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ajaxplorer ajaxplorer vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2015-3431
Pydio (formerly AjaXplorer) prior to 6.0.7 allows remote malicious users to execute arbitrary commands via unspecified vectors, aka "Pydio OS Command Injection Vulnerabilities."
Pydio Pydio
8.5
CVSSv2
CVE-2013-6226
Directory traversal vulnerability in plugins/editor.zoho/agent/save_zoho.php in the Zoho plugin in Pydio (formerly AjaXplorer) prior to 5.0.4 allows remote malicious users to read or delete arbitrary files via unspecified vectors.
Ajaxplorer Ajaxplorer 3.1.1
Ajaxplorer Ajaxplorer 2.5
Ajaxplorer Ajaxplorer 3.3.2
Ajaxplorer Ajaxplorer 3.0.1
Ajaxplorer Ajaxplorer 4.2.3
Ajaxplorer Ajaxplorer 4.0.4
Ajaxplorer Ajaxplorer 3.3.4
Ajaxplorer Ajaxplorer 5.0.1
Ajaxplorer Ajaxplorer 3.0
Ajaxplorer Ajaxplorer 2.7.2
Ajaxplorer Ajaxplorer 3.1
Ajaxplorer Ajaxplorer 3.2.3
Ajaxplorer Ajaxplorer 2.6.0
Ajaxplorer Ajaxplorer 2.5.4
Ajaxplorer Ajaxplorer 4.2.2
Ajaxplorer Ajaxplorer 2.3.3
Ajaxplorer Ajaxplorer 5.0.2
Ajaxplorer Ajaxplorer 3.2.1
Ajaxplorer Ajaxplorer 3.2.5
Ajaxplorer Ajaxplorer
Ajaxplorer Ajaxplorer 4.0.3
Ajaxplorer Ajaxplorer 2.3.4
7.5
CVSSv2
CVE-2013-6227
Unrestricted file upload vulnerability in plugins/editor.zoho/agent/save_zoho.php in the Zoho plugin in Pydio (formerly AjaXplorer) prior to 5.0.4 allows remote malicious users to execute arbitrary code by uploading an executable file, and then accessing this file at a location s...
Pydio Pydio
Ajaxplorer Ajaxplorer
1 EDB exploit
7.5
CVSSv2
CVE-2012-1840
AjaXplorer 3.2.x prior to 3.2.5 and 4.0.x prior to 4.0.4 does not properly perform cookie authentication, which allows remote malicious users to obtain login access by leveraging knowledge of a password hash.
Ajaxplorer Ajaxplorer 3.2.3
Ajaxplorer Ajaxplorer 3.2.4
Ajaxplorer Ajaxplorer 3.2.1
Ajaxplorer Ajaxplorer 3.2.2
Ajaxplorer Ajaxplorer 3.2
Ajaxplorer Ajaxplorer 4.0
Ajaxplorer Ajaxplorer 4.0.1
Ajaxplorer Ajaxplorer 4.0.2
Ajaxplorer Ajaxplorer 4.0.3
7.5
CVSSv2
CVE-2012-1839
Multiple directory traversal vulnerabilities in the Get Template feature in plugins/gui.ajax/class.AJXP_ClientDriver.php in AjaXplorer 3.2.x prior to 3.2.5 and 4.0.x prior to 4.0.4 allow remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the...
Ajaxplorer Ajaxplorer 3.2.3
Ajaxplorer Ajaxplorer 3.2.2
Ajaxplorer Ajaxplorer 3.2.4
Ajaxplorer Ajaxplorer 3.2.1
Ajaxplorer Ajaxplorer 3.2
Ajaxplorer Ajaxplorer 4.0.3
Ajaxplorer Ajaxplorer 4.0.1
Ajaxplorer Ajaxplorer 4.0.2
Ajaxplorer Ajaxplorer 4.0
6.8
CVSSv2
CVE-2008-6639
Cross-site request forgery (CSRF) vulnerability in admin.php in AjaXplorer 2.3.3 and 2.3.4 allows remote malicious users to hijack the authentication of administrators for requests that modify passwords via the update_user_pwd action.
Ajaxplorer Ajaxplorer 2.3.3
Ajaxplorer Ajaxplorer 2.3.4
5.5
CVSSv2
CVE-2013-5688
Multiple directory traversal vulnerabilities in index.php in AjaXplorer 5.0.2 and previous versions allow remote authenticated users to read arbitrary files via a ../%00 (dot dot backslash encoded null byte) in the file parameter in a (1) download or (2) get_content action, or (3...
Ajaxplorer Ajaxplorer 4.0.4
Ajaxplorer Ajaxplorer 3.2
Ajaxplorer Ajaxplorer 3.1.1
Ajaxplorer Ajaxplorer 3.1
Ajaxplorer Ajaxplorer 3.0.3
Ajaxplorer Ajaxplorer 5.0.1
Ajaxplorer Ajaxplorer 5.0.0
Ajaxplorer Ajaxplorer 4.2.3
Ajaxplorer Ajaxplorer 4.2.2
Ajaxplorer Ajaxplorer 3.3.4
Ajaxplorer Ajaxplorer 3.3.3
Ajaxplorer Ajaxplorer 3.3.2
Ajaxplorer Ajaxplorer 3.2.5
Ajaxplorer Ajaxplorer 2.7.2
Ajaxplorer Ajaxplorer 2.7.1
Ajaxplorer Ajaxplorer 2.6.0
Ajaxplorer Ajaxplorer 2.5.5
Ajaxplorer Ajaxplorer 4.0.3
Ajaxplorer Ajaxplorer 4.0.1
Ajaxplorer Ajaxplorer 3.3.5
Ajaxplorer Ajaxplorer 3.2.4
Ajaxplorer Ajaxplorer 3.2.2
1 EDB exploit
5
CVSSv2
CVE-2015-5650
Directory traversal vulnerability in AjaXplorer 2.0 allows remote malicious users to read arbitrary files via unspecified vectors.
Ajaxplorer Ajaxplorer 2.0
4.3
CVSSv2
CVE-2015-3432
Multiple cross-site scripting (XSS) vulnerabilities in Pydio (formerly AjaXplorer) prior to 6.0.7 allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors, aka "Pydio XSS Vulnerabilities."
Pydio Pydio
NA
CVE-2022-40358
An issue exists in AjaXplorer 4.2.3, allows malicious users to cause cross site scripting vulnerabilities via a crafted svg file upload.
Ajaxplorer Ajaxplorer 4.2.3
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »