122 matches found
iniNet SpiderControl SCADA Web Server Service 2.02 Privilege Escalation
iniNet SpiderControl SCADA Web Server Service 2.02 Insecure File Permissions Vendor: iniNet Solutions GmbH Product web page: http://www.spidercontrol.net Affected version: 2.02.0000 Summary: Modular and automated engineering is provided for HMI and SCADA. The tools are developed to join a large...
IniNet Solutions SCADA Web Server Security Restriction Bypass Vulnerability
IniNet SCADA Web Server is a third-party web-based server software. A security restriction bypass vulnerability exists in SCADA Web Server versions prior to 2.02 when processing URL-encoded input. An attacker could exploit this vulnerability to perform unauthorized operations...
Stack overflow
Multiple stack-based buffer overflows in IniNet embeddedWebServer aka eWebServer before 2.02 allow remote attackers to execute arbitrary code via a long field in an HTTP request...
GetSimple CMS 2.01 and 2.02 Administrative Credentials Disclosure
No description provided by source. Researcher: Michael Brooks Affecting: GetSimple CMS 2.01 and 2.02 Fixed:2.03 Vulnerability: Administrative Credentials Disclosure Vendor's Homepage: http://code.google.com/p/get-simple-cms download url for 2.01: http://www.box.net/get-simple/1/30435008/399754548...
PHPay 2.2 - Multiple Path Disclosure Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/7309/info phPay has been reported prone to multiple path disclosure vulnerabilities. It has been reported that when specially crafted requests are made for many phPay pages and include files, an error condition may be...
FtpLocate 2.02 Cross Site Scripting Vulnerability
FtpLocate version 2.02 suffers from a persistent cross site scripting vulnerability. Exploit Title: FtpLocate 2.02 Persistent XSS Date: 2013/6/23 Exploit Author: Chako Firmware Version: 2.02 Tested on: Windows 7 Vendor Homepage: http://turtle.ee.ncku.edu.tw/ftplocate/readme.english.html...
FtpLocate 2.02 Cross Site Scripting
Exploit Title: FtpLocate 2.02 Persistent XSS Date: 2013/6/23 Exploit Author: Chako Firmware Version: 2.02 Tested on: Windows 7 Vendor Homepage: http://turtle.ee.ncku.edu.tw/ftplocate/readme.english.html http://www.freshports.org/ftp/ftplocate/ File Download:...
Advanced Poll 2.02 SQL Injection
Title : Advanced Poll 2.02 SQL Injection Vulnerability + Affected Version : v2.02 + Software Link : http://www.electrolized.free.fr/scripts-php/pollphp.zip + Tested on : Windows 7 + Date : 15/10/2011 + Dork : inurl:/db/admin intitle:Advanced Poll 2.02 + Category : Webapps + Severity : High +...
Advanced Poll 2.02 - SQL Injection
Advanced Poll 2.02 - SQL Injection + Title : Advanced Poll 2.02 SQL Injection Vulnerability + Affected Version : v2.02 + Software Link : http://www.electrolized.free.fr/scripts-php/pollphp.zip + Tested on : Windows 7 + Date : 15/10/2011 + Dork : inurl:/db/admin intitle:Advanced Poll 2.02 + Catego...
Advanced Poll 2.02 - SQL Injection
Title : Advanced Poll 2.02 SQL Injection Vulnerability + Affected Version : v2.02 + Software Link : http://www.electrolized.free.fr/scripts-php/pollphp.zip + Tested on : Windows 7 + Date : 15/10/2011 + Dork : inurl:/db/admin intitle:Advanced Poll 2.02 + Category : Webapps + Severity : High +...
GetSimple CMS < 2.03 Administrative Credentials Disclosure Vulnerability
GetSimple CMS is prone to an administrative credentials disclosure vulnerability. Copyright C 2010 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This progr...
CVE-2010-3464
Cross-site request forgery CSRF vulnerability in admin/managerusers.class.php in SantaFox 2.02, and possibly earlier, allows remote attackers to hijack the authentication of administrators for requests, as demonstrated by adding administrative users via the saveadmin action to admin/index.php...
CVE-2010-3464
SantaFox CSRF in admin/manager_users.class.php (v2.02, possibly earlier) allows an attacker to hijack admin sessions by performing actions via admin/index.php, e.g., adding administrative users through the save_admin path. Connected OpenVAS entry also notes XSS/CSRF vectors for SantaFox. Impact i...
CVE-2010-1927
Multiple PHP remote file inclusion vulnerabilities in openMairie openCourrier 2.02 and 2.03 beta, when registerglobals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the pathom parameter to 1 bible.class.php, 2 dossier.class.php, 3 service.class.php, 4...
Openstock Facture 2.02 Local File Inclusion
======================================================= Openstock Facture 2.02 Local File Include Vulnerability ======================================================= + Openstock Facture 2.02 Local File Include Vulnerability 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=...
Openstock Facture 2.02 Local File Include Vulnerability
Exploit for php platform in category web applications ======================================================= Openstock Facture 2.02 Local File Include Vulnerability ======================================================= + Openstock Facture 2.02 Local File Include Vulnerability...
Advanced Poll 2.02 Cross Site Scripting
======================================================================================== | Title : Advanced Poll 2.02 Cross Site Scripting Vulnerability | | Author : indoushka | | email : [email protected] | | Home : Souk Naamane - 04325 - Oum El Bouaghi - Algeria -00213771818860 | | Web Site...
Advanced Poll 2.02 XSS Vulnerability
No description provided by source. ======================================================================================== | Title : Advanced Poll 2.02 Cross Site Scripting Vulnerability | | Author : indoushka | | email : [email protected] | | Home : Souk Naamane - 04325 - Oum El Bouaghi -...
EXcms Root directory disclosure vulnerability
---------------------------------------------------------------------- PT-2009-22 Positive Technologies Security Advisory EXcms Root directory disclosure vulnerability ---------------------------------------------------------------------- --- Affected Software EXcms Versions prior to 2.02 Product...
e-Vision CMS <= 2.02 (SQL/Upload/IG) Multiple Remote Vulnerabilities
Exploit for unknown platform in category web applications ==================================================================== e-Vision CMS = 2.02 SQL/Upload/IG Multiple Remote Vulnerabilities ==================================================================== eVision 2.0 Sql Injection/Remote Fi...