Exploits - exploit.company

Explore Vulnerabilities

Explore all Exploits:

Directory Listing Disclosure in Ultimate PHP Board

Under some circumstances, it may be possible to disclose the contents of directories. By passing a malicious request to the viewtopic.php script, UPB may return a listing of the directory. This could be further refined to disclose the contents of selected files.

Explore Vulnerabilities

Explore all Exploits:

Directory Listing Disclosure in Ultimate PHP Board

Netscape Enterprise Server with Web Publishing enabled will disclose the directory listing of the server to unauthenticated users who submit an INDEX request.

Recent Exploits:

RDPGuard 9.9.9 – Privilege Escalation

YesWiki Unauthenticated Path Traversal

ABB Cylon Aspect 3.08.02 Stored Cross-Site Scripting Vulnerability

Apache ActiveMQ 6.1.6 – Denial of Service (DOS)

GeoVision GV-ASManager 6.1.1.0 – CSRF

ABB Cylon FLXeon 9.3.4 WebSocket Command Spawning Vulnerability

GestioIP 3.5.7 – Stored Cross-Site Scripting Vulnerability

Cacti 1.2.26 – Remote Code Execution (RCE) (Authenticated)

Exclusive Addons for Elementor ≤ 2.6.9 – Authenticated Stored Cross-Site Scripting (XSS)

Kentico Xperience 13.0.178 – Cross Site Scripting (XSS)