7738 matches found
Sql injection
Multiple SQL injection vulnerabilities in index.php in Nullam Blog 0.1.2 allow remote attackers to execute arbitrary SQL commands via the 1 i parameter or 2 v parameters in a register action...
CVE-2009-3666
Cross-site scripting XSS vulnerability in index.php in Nullam Blog 0.1.2 allows remote attackers to inject arbitrary web script or HTML via the e parameter in an error action...
CVE-2009-3666
CVE-2009-3666: Nullam Blog 0.1.2 is affected by a Cross-site scripting (XSS) vulnerability in index.php, exploitable via the e parameter in an error action. The OpenVAS entry labels it as part of "Nullam Blog Multiple Vulnerabilities" with CVSS base 7.5 (AV:N/AC:L/Au:N/C:P/I:P/A:P). Documents exp...
CVE-2009-3665
Multiple SQL injection vulnerabilities in index.php in Nullam Blog 0.1.2 allow remote attackers to execute arbitrary SQL commands via the 1 i parameter or 2 v parameters in a register action...
CVE-2009-3666
Cross-site scripting XSS vulnerability in index.php in Nullam Blog 0.1.2 allows remote attackers to inject arbitrary web script or HTML via the e parameter in an error action...
CVE-2009-3665
CVE-2009-3665 refers to multiple SQL injection vulnerabilities in Nullam Blog 0.1.2. The flaw is in the site’s index.php, specifically in the register action, where the parameters (1) i and (2) v can be exploited to execute arbitrary SQL commands remotely. The vulnerability is described with a ba...
CVE-2009-3664
CVE-2009-3664 affects Nullam Blog 0.1.2. The vulnerability is a directory traversal in index.php that allows remote attackers to include or execute arbitrary files via a .. in the p or s parameters. This can lead to partial impacts on confidentiality, integrity, and availability (per CVSS 2.0 bas...
CVE-2009-3664
Multiple directory traversal vulnerabilities in index.php in Nullam Blog 0.1.2 allow remote attackers to include or execute arbitrary files via a .. dot dot in the 1 p and 2 s parameters...
Sina-and the news, etc. blog generic hang horse method+MP3 0day to use the tool-vulnerability warning-the black bar safety net
Article author: eskry Some time ago has been studying the site of violence promotion In the study by blogs violence when promoting a slightly. And share with you This will use a small tool Is a period of time before a lot of people said MP3 0day I wrote one to use the tool To a couple of friends ...
Cross site scripting
Cross-site scripting XSS vulnerability in bpost.php in BLOB Blog System before 1.2 allows remote attackers to inject arbitrary web script or HTML via the postid parameter...
CVE-2009-3594
Cross-site scripting XSS vulnerability in bpost.php in BLOB Blog System before 1.2 allows remote attackers to inject arbitrary web script or HTML via the postid parameter...
CVE-2009-3594
Cross-site scripting XSS vulnerability in bpost.php in BLOB Blog System before 1.2 allows remote attackers to inject arbitrary web script or HTML via the postid parameter...
CVE-2009-3594
CVE-2009-3594 is a cross-site scripting (XSS) vulnerability in BLOB Blog System, affecting versions before 1.2. The issue arises in bpost.php via the postid parameter, enabling remote attackers to inject arbitrary script/HTML. The NVD/OpenVAS entries corroborate a non-authenticated web parameter ...
WordPress RSS feed Generator self_link HTTP_HOST Cross-Site Scripting (CVE-2008-5278)
WordPress is an opensource php-based blog publishing platform. It offers several features such as multi-author editing capability, automatic formatting of text and an architecture which supports plugins to further extend its functionality. There exists a cross-site script insertion vulnerability ...
[ONSEC-09-016] Blogolet XSS
ONSEC-09-016 Blogolet XSS Цель: Blogolet CMS Тип: Межсайтовый скриптинг Угроза: Средняя Дата обнаружения: 21.09.2009 Дата оповещения разработчика: 21.09.2009 Дата выхода исправления: 21.09.2009 Автор: Vladimir Vorontsov OnSec Russian Security Group onsec dot ru Описание: Уязвимости существуют из-...
Klonet E-Commerce products.php SQL Injection
No description provided by source. \ \ / | / / | \ / / /\ \ \ / / \ \ \ | | / \ / \ | / | | \ /| | / ///\ \ /| /| /\ | / / / / / / Info============================================================= Software : Klonet E-Commerce vendor : http://www.klotnet.com/ Date : 09/26/2009 Indonesia...
ProdLer 2.0 - Remote File Inclusion
In The Name Of Allah ProdLer = 2.0 Remote File Include Vulnerability Download Script : http://sourceforge.net/projects/prodler/files/ Author : cr4wl3r Contact : cr4wl3r4tlinuxmaildotorg Location : Gorontalo - INDONESIA Blog : http://sh3ll4u.blogspot.com Dork : No DoRk f0R ScRipT KiDDieS file :...
Loggix Project 9.4.5 - Multiple Remote File Inclusions
In The Name Of Allah Loggix Project = 9.4.5 Multiple Remote File Include Vulnerability Download Script : http://sourceforge.net/projects/loggix/files/ Author : cr4wl3r Contact : cr4wl3r4tlinuxmaildotorg Location : Gorontalo - INDONESIA Blog : http://sh3ll4u.blogspot.com Dork : No DoRk f0R ScRipT...
Loggix Project <= 9.4.5 Multiple Remote File Include Vulnerability
No description provided by source. In The Name Of Allah Loggix Project = 9.4.5 Multiple Remote File Include Vulnerability Download Script : http://sourceforge.net/projects/loggix/files/ Author : cr4wl3r Contact : cr4wl3r4tlinuxmaildotorg Location : Gorontalo - INDONESIA Blog :...
Loggix Project 9.4.5 - Multiple Remote File Inclusions
Loggix Project 9.4.5 - Multiple Remote File Inclusions In The Name Of Allah Loggix Project = 9.4.5 Multiple Remote File Include Vulnerability Download Script : http://sourceforge.net/projects/loggix/files/ Author : cr4wl3r Contact : cr4wl3r4tlinuxmaildotorg Location : Gorontalo - INDONESIA Blog :...