36 matches found
CVE-2018-16779
BlogCMS through 2016-10-25 has XSS via a comment...
Design/Logic Flaw
BlogCMS through 2016-10-25 has XSS via a comment...
CVE-2018-16779
BlogCMS through 2016-10-25 has XSS via a comment...
CVE-2018-16779
CVE-2018-16779 affects BlogCMS (through 2016-10-25) with a reflected/Stored XSS via a comment. The connected records confirm the issue existence and CVSS details (CVSS2 base 4.3, CVSS3 base 6.1) but do not provide affected versions beyond the date, or concrete exploitation details, patches, or mi...
blogcms 4.2.1b (sql/xss) Multiple Vulnerabilities
No description provided by source. Digital Security Research Group DSecRG Advisory DSECRG-08-003 Application: Blogcms Versions Affected: Blogcms 4.2.1b Vendor URL: http://blogcms.com/ Bugs: SQL Injestions, SiXSS, XSS Exploits: YES Reported: 15.01.2008 Vendor response: 16.01.2008 Date of Public...
[DSECRG-08-003] blogcms 4.2.1b Multiple Security Vulnerabilities
Digital Security Research Group DSecRG Advisory DSECRG-08-003 Application: Blogcms Versions Affected: Blogcms 4.2.1b Vendor URL: http://blogcms.com/ Bugs: SQL Injestions, SiXSS, XSS Exploits: YES Reported: 15.01.2008 Vendor response: 16.01.2008 Date of Public Advisory: 16.01.2008 Authors: Alexand...
Blogcms 4.2.1b (SQL/XSS) Multiple Remote Vulnerabilities
No description provided by source. Digital Security Research Group DSecRG Advisory DSECRG-08-003 Application: Blogcms Versions Affected: Blogcms 4.2.1b Vendor URL: http://blogcms.com/ Bugs: SQL Injestions, SiXSS, XSS Exploits: YES Reported: 15.01.2008 Vendor response: 16.01.2008 Date of Public...
DSECRG-08-003.txt
Digital Security Research Group DSecRG Advisory DSECRG-08-003 Application: Blogcms Versions Affected: Blogcms 4.2.1b Vendor URL: http://blogcms.com/ Bugs: SQL Injestions, SiXSS, XSS Exploits: YES Reported: 15.01.2008 Vendor response: 16.01.2008 Date of Public Advisory: 16.01.2008 Authors: Alexand...
Blogcms 4.2.1b (SQL/XSS) Multiple Remote Vulnerabilities
Exploit for unknown platform in category web applications ======================================================== Blogcms 4.2.1b SQL/XSS Multiple Remote Vulnerabilities ======================================================== Digital Security Research Group DSecRG Advisory DSECRG-08-003...
Blog:CMS 4.2.1b - SQL Injection Cross-Site Scripting
Blog:CMS 4.2.1b - SQL Injection Cross-Site Scripting Digital Security Research Group DSecRG Advisory DSECRG-08-003 Application: Blogcms Versions Affected: Blogcms 4.2.1b Vendor URL: http://blogcms.com/ Bugs: SQL Injestions, SiXSS, XSS Exploits: YES Reported: 15.01.2008 Vendor response: 16.01.2008...
Blog:CMS 4.2.1b - SQL Injection / Cross-Site Scripting
Digital Security Research Group DSecRG Advisory DSECRG-08-003 Application: Blogcms Versions Affected: Blogcms 4.2.1b Vendor URL: http://blogcms.com/ Bugs: SQL Injestions, SiXSS, XSS Exploits: YES Reported: 15.01.2008 Vendor response: 16.01.2008 Date of Public Advisory: 16.01.2008 Authors: Alexand...
Blog:CMS 4.1.3 - 'list.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/21173/info BLOG:CMS is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code execute in the browser of an unsuspecting user i...
blogcms400-rfi.txt
""""""""""""""""""""""""""""""""""""""""""""""" """ :: :: ::::: :::: """ """ :: :: :: : :: """ """ :::: :: :: ::::: ::::: :::: """ """ :: :: ::: ::: :: :: :: :: :: """ """ :: :: :: : : ::::: :: :: :::: """ """ """ """"""""""""""""""""""""""""""""""""""""""""""" Xmor$ DigitaL Hacking TeaM blogcms ...
blogcms => 4.0.0 Remote File Include
""""""""""""""""""""""""""""""""""""""""""""""" """ :: :: ::::: :::: """ """ :: :: :: : :: """ """ :::: :: :: ::::: ::::: :::: """ """ :: :: ::: ::: :: :: :: :: :: """ """ :: :: :: : : ::::: :: :: :::: """ """ """ """"""""""""""""""""""""""""""""""""""""""""""" Xmor$ DigitaL Hacking TeaM blogcms ...
BlogCMS.txt
Blog:Cms = 4.1.0 Remote Inclusion File Bug Found by Drago84 ToxiC CreW Site Vendor :http://blogcms.com/ Page affetc: index.php media.php archive.php archives.php blog.php The Problem is: include$DIRPLUGINS."related/nusoap.php"; Expl:...
Blog:CMS 4.0.0k - SQL Injection
Blog:CMS 4.0.0k - SQL Injection !/usr/bin/php -q -d shortopentag=on url=stripslashes$row-url; $redirect=true; if strpos$row-url,'|noseo|'!==false $arr=explode",",'msnbot,googlebot,crawler,centrum'; foreach $arr as $s if strstr$SERVER"HTTPUSERAGENT",$s $redirect=false;...