Search the Community
Showing results for tags 'navigate'.
-
Exploits Navigate CMS 2.8.5 Arbitrary File Download
1337day-Exploits posted a topic in Updated Exploits
Navigate CMS version 2.8.5 suffers from an arbitrary file download vulnerability. View the full article -
This Metasploit module exploits insufficient sanitization in the database::protect method, of Navigate CMS versions 2.8 and prior, to bypass authentication. The module then uses a path traversal vulnerability in navigate_upload.php that allows authenticated users to upload PHP files to arbitrary locations. Together these vulnerabilities allow an unauthenticated attacker to execute arbitrary PHP code remotely. This Metasploit module was tested against Navigate CMS 2.8. View the full article
-
Navigate CMS version 2.8 suffers from a cross site scripting vulnerability. View the full article