7736 matches found
Easy Blog by JM LLC - Multiple Vulnerabilities
No description provided by source. Dear Offensive Security, I have discovered some vulnerabilities in Easy Blog, developed by JM LLC. Best regards, Sp3ctrecore ADVISORY ============================================== Easy Blog by JM LLC - Multiple Vulnerabilities...
Ez Blog 1.0 - XSS/CSRF Multiple Vulnerabilities
No description provided by source. ----------------------------------------------------------------------------------------------- Title: Ez Blog XSS/XSRF Multiple Vulnerabilities Author: Milos Zivanovic Email: milosz.securityatgmail.com Date: 15. December 2009...
ACS Blog 0.8/0.9/1.0/1.1 Name Field HTML Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/12921/info ACS Blog is affected by an HTML injection vulnerability. The issue affects the 'Name' field and may be exploited to execute arbitrary HTML and script code in the browser of the user when the user views an...
A-Blog 2 - (id) XSS / Remote SQL Injection Exploit
No description provided by source. !/usr/bin/perl A-Blog V.2 Multiple Remote Vulnerabilities SQL Injection Exploit/XSS AUTHOR : IRCRASH Discovered by : Dr.Crash Exploited By : Dr.Crash IRCRASH Team Members : Dr.Crash - Malc0de - R3d.w0rm Script Download :...
Blog Torrent 0.8 - Remote Directory Traversal Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/11795/info It is reported that Blog Torrent is prone to a remote directory traversal vulnerability. This issue is due to a failure of the server process to properly filter user supplied input. Blog Torrent preview 0.8...
nullam blog 0.1.2 (lfi/fd/sql/xss) Multiple Vulnerabilities
No description provided by source. -- Salvatore Fresta aka drosophila CWNP444351 Salvatore drosophila Fresta + Application: Nullam Blog + Version: 0.1.2 + Website: http://nullam.net/ + Bugs: A Local File Inclusion B File Disclosure C Multiple Blind SQL Injection D SQL Injection E Reflected XSS +...
Simple PHP Blog (sphpblog) <= 0.5.1 - Multiple Vulnerabilities
No description provided by source. Title: Simple PHP Blog sphpblog = 0.5.1 Multiple Vulnerabilities Vendor: http://sourceforge.net/projects/sphpblog/ Advisory: http://acid-root.new.fr/?0:15 Author: DarkFig gmdarkfig at gmail dot com Released on: 2007/10/21 Changelog: ---------- L M H T Summary: I...
AKY Blog SQL Injection Vulnerability
No description provided by source. =================================================== AKY Blog SQL ?njection =================================================== Author : Madconfig Homepage : www.worldhackerz.com Mail : adminatworldhackerzdot.com Script :...
Apple Mac OS X 10.4 Weblog Server Cross-Site Scripting Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/14569/info Apple Mac OS X Weblog Server is prone to cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issue...
Simple PHP Blog <= 0.4.7.1 - Remote Command Execution Exploit
No description provided by source. !/usr/bin/perl use IO::Socket; print Simple PHP Blog = 0.4.7.1 cmmnds xctn exploit\r\n; print through arbitrary local inclusion\r\n; print rgod [email protected]\r\n; print - this works with magicquotesgpc = Off\r\n\r\n; short explaination: we have this code in...
BP Blog 6.0/7.0/8.0/9.0 - Remote Database Disclosure Vulnerability
No description provided by source. BP Blog V6.0 & V7.0 & V8.0 & V9.0 Database Disclosure Vulnerability I BP Blog V6.0 & V7.0 & V8.0 & V9.0 I Script Website : http://blog.betaparticle.com/ I Found by : Dxil I Contact : [email protected] D powered by BP Blog 7.0 or powered by BP Blog 8.0 E...
Joomla Component Amblog 1.0 - Multiple SQL Injection Vulnerabilities
No description provided by source. Amblog 1.0 Joomla Component Multiple SQL Injection Vulnerabilities Name Amblog Vendor http://robitbt.hu Versions Affected 1.0 Author Salvatore Fresta aka Drosophila Website http://www.salvatorefresta.net Contact salvatorefresta at gmail dot com Date 2010-08-10 X...
Ninja Blog 4.8 - Remote Information Disclosure Vulnerability
No description provided by source. Vendor: http://ninjadesigns.co.uk Versions: Ninja Blog 4.8 May also affect earlier versions Credit: Danny Moules Critical: Yes See PUSH 55 Advisory at http://www.push55.co.uk/index.php?s=ad&id=6 ---- Due to insufficient validation of client-side data, we can alt...
e107 Plugin BLOG Engine 2.1.4 - Remote SQL Injection Vulnerability
No description provided by source. e107 Plugin macgurublogmenu macgurublog.php uid Remote Sql inj author: ZoRLu home: z0rlu.blogspot.com concat: [email protected] date: 28/10/2008 n0te: YALNIZLIK YiTiRDi ANLAMINI YALNIZLIGIMDA : n0te: a.q kpss : dork: allinurl:macgurublog.php?uid= exploit:...
Habari Blog Multiple Vulnerabilities
No description provided by source. Vulnerability ID: HTB22732 Reference: http://www.htbridge.ch/advisory/pathdisclosureinhabari.html Product: Habari Vendor: Habari http://habariproject.org/en/ Vulnerable Version: 0.6.5 Vendor Notification: 02 December 2010 Vulnerability Type: Path disclosure...
Free Blog 1.0 - Multiple Vulnerabilities
No description provided by source. Free Blog 1.0 Multiple Vulnerability By cr4wl3r http://bastardlabs.info http://bastardlabs.info/exploits/FreeBlog.txt Software Link: http://blog.sdnex.com/ Tested: Ubuntu 12.04.1 LTS Proof of concept: Arbitrary File Upload Vulnerability...
MS Windows XP - WmiTraceMessageVa Integer Truncation Vulnerability PoC (MS11-011)
No description provided by source. / Exploit Title: MS11-011CVE-2011-0045: MS Windows XP WmiTraceMessageVa Integer Truncation Vulnerability PoC Date: 2011-03-01 Author: Nikita Tarakanov CISS Research Team Software Link: Version: prior to MS11-011 Tested on: Win XP SP3 CVE : CVE-2011-0045 Status :...
Orca Blog 1.3 Blog.PHP SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/15638/info Orca Blog is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could...
Vbulletin Blog 4.0.2 Title XSS Vulnerability
No description provided by source...
PHP-CMDB 0.7.3 - Multiple Vulnerabilities
No description provided by source. ============================================================== Title ...| Multiple vulnerabilities in PHP-CMDB Version .| php-cmdb0.7.3 Date ....| 27.02.2014 Found ...| HauntIT Blog Home ....| ============================================================== + From...