creepytrix

🔒 CREEPYTRIX - Bitrix Pentest Tool v1.1 !Versionhttps://i...

Vulnerability of the iblock module in the 1C-Bitrix website management system: Website management that allows attackers to execute arbitrary code

Vulnerability of the iblock module in the Content Management System CMS of 1C-Bitrix: Website management is related to incorrect code generation. Exploiting this vulnerability allows a malicious actor to inject arbitrary code into any PHP script executed during the creation of new information...

The vulnerability of the 1C-Bitrix website content management system, related to insufficient protection of registration data, allows a hacker to gain access to the domain controller’s account information.

The vulnerability of the 1C-Bitrix website content management system is related to insufficient protection of registration data. Exploiting this vulnerability can allow a malicious actor to gain access to the account information of the domain controller...

PT-2014-10: Proactive Filter Bypassing in Bitrix CMS

The specialists of the Positive Research center have detected a Proactive Filter Bypassing vulnerability in Bitrix CMS. Bitrix Proactive Filter, which provides traffic filtering and protection from attacks on web application, ignores the entire functionality of MySQL queries syntax due to imprope...

PT-2013-64: Access Control Bypassing in Bitrix CMS

The specialists of the Positive Research center have detected an Access Control Bypassing vulnerability in Bitrix CMS. This vulnerability has been discovered in the integrity check mechanism of the "Script Integrity Monitor", which allows an attacker to forge the integrity check mechanism and...

[Full-disclosure] Multiple Vulns in Bitrix CMS

Multiple Vulns in Bitrix CMS Vendor bitrix.com Version The latest one 4.1.x Severity Medium Patched: No Multiple vulnerabilities discovered in Bitrix CMS. A remote attacker can conduct XSS attacks and compromise vulnerable system. 1. A remote attacker can get information about version history and...