33 matches found
CVE-2023-51810
SQL injection vulnerability in StackIdeas EasyDiscuss v.5.0.5 and fixed in v.5.0.10 allows a remote attacker to obtain sensitive information via a crafted request to the search parameter in the Users module...
PT-2024-14302 · Stackideas · Easydiscuss
Name of the Vulnerable Software and Affected Versions: StackIdeas EasyDiscuss versions 5.0.5 through 5.0.9 Description: A SQL injection issue allows a remote attacker to obtain sensitive information via a crafted request to the search parameter in the Users module. Recommendations: For versions...
Exploit for SQL Injection in Stackideas Easydiscuss
CVE-2023-51810 Description Blind SQL injection vulnerabil...
Joomla! Easydiscuss Cross Site Scripting
Exploit Title: Joomla Plugin Easydiscuss inside the body, everything after the will be executed in the useras browser. Works with every version up to 4.0.20 2. Proof of Concept Login with permissions to post a message, insert in the body and add any html code after that, whenever a user tries to...
Joomla Easydiscuss Component < 4.0.21 - Cross-Site Scripting Vulnerability
Exploit for php platform in category web applications Exploit Title: Joomla Plugin Easydiscuss inside the body, everything after the will be executed in the user’s browser. Works with every version up to 4.0.20 2. Proof of Concept Login with permissions to post a message, insert in the body and a...
Joomla! Component Easydiscuss 4.0.21 - Cross-Site Scripting
Joomla! Component Easydiscuss 4.0.21 - Cross-Site Scripting Exploit Title: Joomla Plugin Easydiscuss inside the body, everything after the will be executed in the user’s browser. Works with every version up to 4.0.20 2. Proof of Concept Login with permissions to post a message, insert in the body...
Joomla! StackIdeas EasyDiscuss extension cross-site scripting vulnerability
Joomla! is the U.S. Open Source Matters team developed a set of open source content management system CMS, the system provides RSS feeds, site search and other features.StackIdeas EasyDiscuss is used in one of the forum plug-ins . A cross-site scripting vulnerability exists in versions of Joomla!...
Joomla! Component Easydiscuss < 4.0.21 - Cross-Site Scripting
Exploit Title: Joomla Plugin Easydiscuss inside the body, everything after the will be executed in the user’s browser. Works with every version up to 4.0.20 2. Proof of Concept Login with permissions to post a message, insert in the body and add any html code after that, whenever a user tries to...
CVE-2018-5263
The StackIdeas EasyDiscuss aka comeasydiscuss extension before 4.0.21 for Joomla! allows XSS...
CVE-2018-5263
The StackIdeas EasyDiscuss aka comeasydiscuss extension before 4.0.21 for Joomla! allows XSS...
Cross site scripting
The StackIdeas EasyDiscuss aka comeasydiscuss extension before 4.0.21 for Joomla! allows XSS...
CVE-2018-5263
CVE-2018-5263 concerns the StackIdeas EasyDiscuss Joomla! extension (com_easydiscuss) prior to 4.0.21. The vulnerability is a cross-site scripting (XSS) flaw triggered when editing a message: injecting a payload can cause script execution in a user’s browser after the textarea closes. Affected v...
CVE-2018-5263
The StackIdeas EasyDiscuss aka comeasydiscuss extension before 4.0.21 for Joomla! allows XSS...