Phpletter Ajax File And Image Manager

This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor	Phpletter	First view	2011-12-14
Product	Ajax File And Image Manager	Last view	2011-12-14
Version		Type
Update
Edition
Language
Sofware Edition
Target Software
Target Hardware
Other

Activity : Overall

COMMON PLATFORM ENUMERATION: Repartition per Version

CPE Name	Affected CVE
cpe:2.3:a:phpletter:ajax_file_and_image_manager:0.7.10:::::::*	1
cpe:2.3:a:phpletter:ajax_file_and_image_manager:0.6:::::::*	1
cpe:2.3:a:phpletter:ajax_file_and_image_manager:0.7.8:::::::*	1
cpe:2.3:a:phpletter:ajax_file_and_image_manager:1.0:beta1::::::	1
cpe:2.3:a:phpletter:ajax_file_and_image_manager:1.0:rc1::::::	1
cpe:2.3:a:phpletter:ajax_file_and_image_manager:0.8:::::::*	1
cpe:2.3:a:phpletter:ajax_file_and_image_manager:0.8.8:::::::*	1
cpe:2.3:a:phpletter:ajax_file_and_image_manager:0.8.9:::::::*	1
cpe:2.3:a:phpletter:ajax_file_and_image_manager:0.8.24:::::::*	1
cpe:2.3:a:phpletter:ajax_file_and_image_manager:0.6.12:::::::*	1
cpe:2.3:a:phpletter:ajax_file_and_image_manager:1.0:rc5::::::	1
cpe:2.3:a:phpletter:ajax_file_and_image_manager:0.9:::::::*	1
cpe:2.3:a:phpletter:ajax_file_and_image_manager:1.0:beta2::::::	1
cpe:2.3:a:phpletter:ajax_file_and_image_manager:0.5:::::::*	1
cpe:2.3:a:phpletter:ajax_file_and_image_manager:0.5.5:::::::*	1
cpe:2.3:a:phpletter:ajax_file_and_image_manager:0.5.7:::::::*	1
cpe:2.3:a:phpletter:ajax_file_and_image_manager:1.0:rc2::::::	1
cpe:2.3:a:phpletter:ajax_file_and_image_manager:1.0:rc3::::::	1
cpe:2.3:a:phpletter:ajax_file_and_image_manager:1.0:rc4::::::	1

Related : CVE

	Date	Alert	Description
7.5	2011-12-14	CVE-2011-4825	Static code injection vulnerability in inc/function.base.php in Ajax File and Image Manager before 1.1, as used in tinymce before 1.4.2, phpMyFAQ 2.6 before 2.6.19 and 2.7 before 2.7.1, and possibly other products, allows remote attackers to inject arbitrary PHP code into data.php via crafted parameters.

CWE : Common Weakness Enumeration

%	id	Name
100% (1)	CWE-94	Failure to Control Generation of Code ('Code Injection')

Open Source Vulnerability Database (OSVDB)

id	Description
76928	Ajax File and Image Manager /ajaxfilemanager/ajax_create_folder.php Unspecifi...

OpenVAS Exploits

id	Description
2012-06-18	Name : Log1 CMS 'data.php' PHP Code Injection Vulnerability File : nvt/gb_log1_cms_50523.nasl
2011-11-07	Name : Ajax File and Image Manager 'data.php' PHP Code Injection Vulnerability File : nvt/gb_afim_50523.nasl

Copyright Security-Database 2006-2025 - Powered by themself ;) in 0.0180s

Facebook rss twitter linkedin mail