Description
Unspecified vulnerability in the www_add method in Asset.pm in Plain Black WebGUI 6.3.0 and other versions before 6.7.6 allows attackers to execute arbitrary code via unknown attack vectors.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by David Maciejak · textwebappscgi
https://www.exploit-db.com/exploits/26344
References (6)
Core 6
Core References
Patch vdb-entry
x_refsource_osvdb
http://www.osvdb.org/19933
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2005/2060
Exploit x_refsource_confirm
http://www.plainblack.com/getwebgui/advisories/security-exploit-patch-for-6.3-and-above
Exploit, Patch vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/15083
Patch, Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/17158
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/22730
Scores
EPSS
0.1021
EPSS Percentile
93.2%
Details
Status
published
Published
Dec 31, 2005
Tracked Since
Feb 18, 2026