WordPress 插件SQL注入漏洞

WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language. The platform supports the server in PHP and MySQL to set up a personal blog site. WordPress Plugin is a WordPress open source application plug-ins. wordpress Plugin Header Footer Code Manager in the...

Header Footer Code Manager < 1.1.14 - Admin+ SQL Injections

The plugin does not validate and escape the "orderby" and "order" request parameters before using them in a SQL statement when viewing the Snippets admin dashboard, leading to SQL injections PoC...

WordPress Header Footer Code Manager plugin <= 1.1.13 - SQL Injection (SQLi) vulnerability

SQL Injection SQLi vulnerability discovered by bl4derunner in WordPress Header Footer Code Manager plugin versions = 1.1.13. Solution Update the WordPress Header Footer Code Manager plugin to the latest available version at least 1.1.14...

Rockwell Automation Application Code Manager Detection (Windows SMB Login)

SMB login-based detection of Rockwell Automation Application Code Manager. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Tracking Code Manager <= 1.11.1 - Authenticated XSS, CSRF & DoS

The Tracking Code Manager WordPress plugin was affected by an Authenticated XSS, CSRF & DoS security vulnerability...

vBulletin adminCP Cross-Site Scripting

No description provided by source. .::vBulletin adminCP Cross-Site Scripting ::. Exploit Title: vBulletin adminCP Cross-Site Scripting Date: 2009 Author: Ashiyane Digital Security Members Cair3x Software Link: http://www.vbulletin.com/ Version: 3.8.4 and all Version Tested on: vBulletin 3.8.4 CVE...

vBulletin adminCP Cross Site Scripting

.::vBulletin adminCP Cross-Site Scripting ::. Exploit Title: vBulletin adminCP Cross-Site Scripting Date: 2009 Author: Ashiyane Digital Security Members Cair3x Software Link: http://www.vbulletin.com/ Version: 3.8.4 and all Version Tested on: vBulletin 3.8.4 CVE : Code : -::Forum Manager = Add Ne...

CVE-2007-0830

Multiple cross-site scripting XSS vulnerabilities in the Admin Control Panel AdminCP in Jelsoft vBulletin 3.6.4 allow remote authenticated administrators to inject arbitrary web script or HTML via unspecified vectors related to the 1 User Group Manager, 2 User Rank Manager, 3 User Title Manager, ...

CVE-2007-0830

Multiple cross-site scripting XSS vulnerabilities in the Admin Control Panel AdminCP in Jelsoft vBulletin 3.6.4 allow remote authenticated administrators to inject arbitrary web script or HTML via unspecified vectors related to the 1 User Group Manager, 2 User Rank Manager, 3 User Title Manager, ...

VBulletin AdminCP Index.PHP Multiple Cross-Site Scripting Vulnerability

VBulletin AdminCP Index.PHP Multiple Cross-Site Scripting Vulnerability vBulletin is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input data. An attacker could exploit this vulnerability to have arbitrary script code execute in the...