EUVD-2020-16715

Malware in sbrugna...

EUVD-2020-16717

Malware in sbrugna...

CVE-2020-23979

13enforme CMS 1.0 has SQL Injection via the 'content.php' id parameter...

CVE-2020-23981

13enforme CMS 1.0 has Cross Site Scripting via the "content.php" id parameter...

CVE-2020-23979

13enforme CMS 1.0 has SQL Injection via the 'content.php' id parameter...

CVE-2020-23981

13enforme CMS 1.0 has Cross Site Scripting via the "content.php" id parameter...

Cross site scripting

13enforme CMS 1.0 has Cross Site Scripting via the "content.php" id parameter...

Sql injection

13enforme CMS 1.0 has SQL Injection via the 'content.php' id parameter...

CVE-2020-23981

CVE-2020-23981 affects 13enforme CMS 1.0 with a Cross Site Scripting flaw in the content.php id parameter. The NVD entry lists CVSSv2/3.1 base scores of 4.3 (MEDIUM) and 6.1 (MEDIUM) respectively, indicating potential impact to confidentiality and integrity. No vendor/version-specific remediation...

CVE-2020-23981

13enforme CMS 1.0 has Cross Site Scripting via the "content.php" id parameter...

CVE-2020-23979

CVE-2020-23979 affects 13enforme CMS 1.0, with a SQL Injection via the content.php id parameter. The NVD notes a Network attack vector, LOW complexity, no authentication, and partial confidentiality, integrity, and availability impacts (CVSS v2: 7.5 HIGH; CVSS v3.1: 9.8 CRITICAL). Connected docum...

CVE-2020-23979

13enforme CMS 1.0 has SQL Injection via the 'content.php' id parameter...

13enforme CMS SQL Injection / Cross Site Scripting

Exploit Title: 13enforme CMS SQL Injection & XSS Vulnerability Google Dork:intext:"13enForme" +inurl:.php?id= Date: 2020-04-03 Exploit Author: @ThelastVvV Vendor Homepage: http://www.13enforme.com Version: 1 Tested on: Ubuntu --------------------------------------------------------- PoC 1: The...