Lucene search
K

47 matches found

Prion
Prion
added 2022/01/21 4:15 p.m.15 views

Sql injection

An SQL Injection vulnerability exists in Sourcecodester Simple Music Clour Community System 1.0 via the email parameter in /music/ajax.php...

10CVSS9.8AI score0.01556EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2022/01/21 3:34 p.m.53 views

CVE-2021-46200

Affected software: Sourcecodester Simple Music Clour Community System v1.0. Root cause: SQL Injection via the email parameter in /music/ajax.php due to improper input filtering. Impact: high across confidentiality, integrity, and availability (per CVSS 3.1/9.8). Attack vector: network; no user in...

10CVSS9.8AI score0.01556EPSS
Exploits1References1Affected Software1
CNVD
CNVD
added 2021/05/12 12:0 a.m.4 views

XSS Vulnerability in Octopus-Forum

Octopus-Forum is a community system developed using java. Octopus-Forum suffers from an XSS vulnerability that can be exploited by attackers to obtain sensitive information such as user cookies...

5.8AI score
Exploits0
CNVD
CNVD
added 2021/03/25 12:0 a.m.6 views

ThinkSAAS SQL Injection Vulnerability (CNVD-2021-27807)

ThinkSAAS is a lightweight php open source community system , is a can be used to build discussion groups , bbs forums and circles open open source community system . ThinkSAAS before version 3.38 SQL injection vulnerability exists . The vulnerability is caused by the...

9.8CVSS7.4AI score0.01945EPSS
Exploits1References1
CNVD
CNVD
added 2018/12/17 12:0 a.m.3 views

Logical design flaws in the web-based training community system

Beijing Sinew Education Technology Co., Ltd. is a comprehensive education technology company that focuses on serving the enrollment and training of higher adult continuing education; professional development training for teachers; research and development of technology related to large-scale onli...

6.6AI score
Exploits0
myhack58
myhack58
added 2016/03/02 12:0 a.m.15 views

How I was in the Google collaboration community GWC found the reflection type, a storage type, the DOM type of vulnerability? - Vulnerability warning-the black bar safety net

! Google for Work Connect, the GWC is a System, Application Administrator, and partner community of system, but also in Google's vulnerability reward range. Shortly before, I was in the GWC community system found reflection type, a storage type, the DOM typeXSS. The storage typeXSS In the GWC...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.13 views

ArsDigita Community System 3.4.x Directory Traversal Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/22121/info ArsDigita Community System is prone to a directory-traversal vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to retrieve arbitrary files from...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.19 views

phpOCS <= 0.1-beta3 (index.php act) Local File Inclusion Vulnerability

No description provided by source. :::::::-. ... ::::::. :::. ;;, ';, ;; ;;;;;;;, ;;; ' . ' $$, $$$$ $$$ $$$ Y$c$$ 888,o8P'88 .d888 888 Y88 MMMMP YmmMMMM MMM YM Discovered by dun \ dunatstrcpy.pl phpOCS = 0.1-beta3 Local File Inclusion Vulnerability Script: phpOCS is a fully featured Online...

7.1AI score
Exploits0
CVE
CVE
added 2010/05/12 4:0 p.m.38 views

CVE-2010-1923

CVE-2010-1923 affects Hi Web Wiesbaden Web 2.0 Social Network Freunde Community System. The vulnerability is a SQL injection in user.php that allows an attacker to inject SQL via the id parameter in the showgallery action , leading to possible arbitrary SQL execution. Documents consistently descr...

7.5CVSS8.6AI score0.00973EPSS
Exploits1References4Affected Software1
Packet Storm
Packet Storm
added 2010/05/10 12:0 a.m.25 views

Web 2.0 Social Network Freunde Community System SQL Injection

----------------------------Information------------------------------------------------ +Name : Web 2.0 Social Network Freunde Community System SQL Injection Vulnerability +Autor : Easy Laster +ICQ : 11-051-551 +Date : 08.05.2010 +Script : Web 2.0 Social Network Freunde Community System +Download...

0.4AI score
Exploits0
exploitpack
exploitpack
added 2010/05/08 12:0 a.m.10 views

Web 2.0 Social Network Freunde Community System - user.php SQL Injection

Web 2.0 Social Network Freunde Community System - user.php SQL Injection source: https://www.securityfocus.com/bid/40264/info Web 2.0 Social Network Freunde Community System is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in ...

0.1AI score
Exploits0
seebug.org
seebug.org
added 2008/09/26 12:0 a.m.19 views

phpOCS &lt;= 0.1-beta3 (index.php act) Local File Inclusion Vulnerability

No description provided by source. :::::::-. ... ::::::. :::. ;;, ';, ;; ;;;;;;;, ;;; ' . ' $$, $$$$ $$$ $$$ "Y$c$$ 888,o8P'88 .d888 888 Y88 MMMMP" "YmmMMMM"" MMM YM Discovered by dun \ dunatstrcpy.pl phpOCS = 0.1-beta3 Local File Inclusion Vulnerability Script: "phpOCS is a fully featured Online...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2008/09/25 12:0 a.m.15 views

PHPOCS 0.1-beta3 - act Local File Inclusion

PHPOCS 0.1-beta3 - act Local File Inclusion :::::::-. ... ::::::. :::. ;;, ';, ;; ;;;;;;;, ;;; ' . ' $$, $$$$ $$$ $$$ "Y$c$$ 888,o8P'88 .d888 888 Y88 MMMMP" "YmmMMMM"" MMM YM Discovered by dun \ dunatstrcpy.pl phpOCS = 0.1-beta3 Local File Inclusion Vulnerability Script: "phpOCS is a fully featur...

Exploits0
Packet Storm
Packet Storm
added 2008/09/25 12:0 a.m.20 views

phpocs-lfi.txt

:::::::-. ... ::::::. :::. ;;, ';, ;; ;;;;;;;, ;;; ' . ' $$, $$$$ $$$ $$$ "Y$c$$ 888,o8P'88 .d888 888 Y88 MMMMP" "YmmMMMM"" MMM YM Discovered by dun \ dunatstrcpy.pl phpOCS = 0.1-beta3 Local File Inclusion Vulnerability Script: "phpOCS is a fully featured Online Community System. It has fully...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2008/09/25 12:0 a.m.49 views

PHPOCS 0.1-beta3 - &#039;act&#039; Local File Inclusion

:::::::-. ... ::::::. :::. ;;, ';, ;; ;;;;;;;, ;;; ' . ' $$, $$$$ $$$ $$$ "Y$c$$ 888,o8P'88 .d888 888 Y88 MMMMP" "YmmMMMM"" MMM YM Discovered by dun \ dunatstrcpy.pl phpOCS = 0.1-beta3 Local File Inclusion Vulnerability Script: "phpOCS is a fully featured Online Community System. It has fully...

7.4AI score
Exploits0
0day.today
0day.today
added 2008/09/25 12:0 a.m.21 views

phpOCS <= 0.1-beta3 (index.php act) Local File Inclusion Vulnerability

Exploit for unknown platform in category web applications ====================================================================== phpOCS = 0.1-beta3 index.php act Local File Inclusion Vulnerability ====================================================================== :::::::-. ... ::::::. :::. ;;...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2007/01/22 12:0 a.m.19 views

ArsDigita Community System目录遍历漏洞

ArsDigita Community System是一款基于WEB的应用程序。 ArsDigita Community System不正确过滤用户提交的输入,远程攻击者可以利用漏洞以WEB权限查看系统文件内容。 问题是程序对用户提交URL参数缺少过滤,提交包含多个".%252e/"字符作为参数数据,可绕过WEB ROOT限制,以WEB权限查看系统文件内容。 Ars Digita Community System ACS 3.4.10 Ars Digita Community System ACS 3.4.9 Ars Digita Community Education Solution...

7.1AI score
Exploits0
NVD
NVD
added 2007/01/19 11:28 p.m.22 views

CVE-2007-0389

Directory traversal vulnerability in ArsDigita Community System ACS 3.4.10 and earlier, and ArsDigita Community Education Solution ACES 1.1, allows remote attackers to read arbitrary files via .%252e/ double-encoded dot dot slash sequences in the URI...

7.8CVSS6.7AI score0.02829EPSS
Exploits1References5
CVE
CVE
added 2007/01/19 11:0 p.m.39 views

CVE-2007-0389

The CVE-2007-0389 issue affects ArsDigita Community System (ACS) 3.4.10 and earlier and ArsDigita Community Education Solution (ACES) 1.1. It is a directory traversal vulnerability that lets an attacker read arbitrary files by sending URIs containing double-encoded sequences like .%252e/. The pro...

7.8CVSS6.7AI score0.02829EPSS
Exploits1References5Affected Software2
exploitpack
exploitpack
added 2007/01/18 12:0 a.m.21 views

ArsDigita Community System 3.4.x - Directory Traversal

ArsDigita Community System 3.4.x - Directory Traversal source: https://www.securityfocus.com/bid/22121/info ArsDigita Community System is prone to a directory-traversal vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to retrieve...

0.3AI score
Exploits0
Rows per page
Query Builder