Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
extplorer extplorer vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2023-40628
A reflected XSS vulnerability exists in the Extplorer component for Joomla.
Extplorer Extplorer
8.8
CVSSv3
CVE-2023-29657
eXtplorer 2.1.15 is vulnerable to Insecure Permissions. File upload in file manager allows uploading zip file containing php pages with arbitrary code executions.
Extplorer Extplorer 2.1.15
8.8
CVSSv3
CVE-2023-27842
Insecure Permissions vulnerability found in Extplorer File manager eXtplorer v.2.1.15 allows a remote malicious user to execute arbitrary code via the index.php compenent
Extplorer Extplorer 2.1.15
1 Github repository
6.1
CVSSv3
CVE-2019-25096
A vulnerability has been found in soerennb eXtplorer up to 2.1.12 and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross site scripting. The attack can be launched remotely. Upgrading to version 2.1.13 is able to...
Extplorer Extplorer
9.8
CVSSv3
CVE-2019-25097
A vulnerability was found in soerennb eXtplorer up to 2.1.12 and classified as critical. Affected by this issue is some unknown functionality of the component Directory Content Handler. The manipulation leads to path traversal. Upgrading to version 2.1.13 is able to address this ...
Extplorer Extplorer
9.8
CVSSv3
CVE-2019-25098
A vulnerability was found in soerennb eXtplorer up to 2.1.12. It has been classified as critical. This affects an unknown part of the file include/archive.php of the component Archive Handler. The manipulation leads to path traversal. Upgrading to version 2.1.13 is able to addres...
Extplorer Extplorer
9.8
CVSSv3
CVE-2019-7305
Information Exposure vulnerability in eXtplorer makes the /usr/ and /etc/extplorer/ system directories world-accessible over HTTP. Introduced in the Makefile patch file debian/patches/debian-changes-2.1.0b6+dfsg-1 or debian/patches/adds-a-makefile.patch, this can lead to data lea...
Extplorer Extplorer
9.8
CVSSv3
CVE-2012-6710
ext_find_user in eXtplorer up to and including 2.1.2 allows remote malicious users to bypass authentication via a password[]= (aka an empty array) in an action=login request to index.php.
Extplorer Extplorer
7.2
CVSSv3
CVE-2017-12756
Command inject in transfer from another server in extplorer 2.1.9 and prior allows malicious user to inject command via the userfile[0] parameter.
Extplorer Extplorer
7.8
CVSSv3
CVE-2016-4313
Directory traversal vulnerability in unzip/extract feature in eXtplorer 2.1.9 allows remote malicious users to execute arbitrary files via a .. (dot dot) in an archive file.
Extplorer Extplorer 2.1.9
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »