42 matches found
EUVD-2018-3474
Malware in sbrugna...
EUVD-2018-3475
Malware in sbrugna...
EUVD-2018-3476
Malware in sbrugna...
EUVD-2018-3473
Malware in sbrugna...
EasyService Billing SQL Injection Vulnerability
EasyService Billing is a PHP-based service-oriented consumer business management system . A SQL injection vulnerability exists in the 'q' parameter of the jobcard-ongoing.php file in EasyService Billing version 1.0. A remote attacker can exploit this vulnerability to execute arbitrary SQL command...
EasyService Billing 1.0 - Cross-Site Scripting Vulnerability
Exploit for php platform in category web applications !-- Exploit Title: EasyService Billing 1.0 Cross-Site Scripting in 'q' Parameter Software Link: https://codecanyon.net/item/easyservice-billing-php-scripts-for-quotation-invoice-payments-etc/16687594 Exploit Author: Divya Jain Version:...
EasyService Billing 1.0 - (q) SQL Injection Vulnerability
Exploit for php platform in category web applications !-- Exploit Title: EasyService Billing 1.0 SQL Injection on page jobcard-ongoing.php?q= Software Link: https://codecanyon.net/item/easyservice-billing-php-scripts-for-quotation-invoice-payments-etc/16687594 Exploit Author: Divya Jain Version:...
EasyService Billing Cross-Site Scripting Vulnerability
EasyService Billing is a PHP-based service-oriented consumer business management system . A cross-site scripting vulnerability exists in the 'q' parameter of the jobcard-ongoing.php file in EasyService Billing version 1.0. A remote attacker can exploit this vulnerability to inject arbitrary web...
EasyService Billing Cross-Site Request Forgery Vulnerability (CNVD-2018-10564)
EasyService Billing is a PHP-based service-oriented consumer business management system . A cross-site request forgery vulnerability exists in the User Add/System Settings Page system-settings-user-new2.php in EasyService Billing version 1.0. A remote attacker can exploit this vulnerability to ad...
EasyService Billing Cross-Site Request Forgery Vulnerability
EasyService Billing is a PHP-based service-oriented consumer business management system . A cross-site request forgery vulnerability exists in EasyService Billing version 1.0. A remote attacker can exploit this vulnerability to perform unauthorized operations with...
EasyService Billing 1.0 - Cross-Site Request Forgery Vulnerability
Exploit for php platform in category web applications history.pushState'', '', '/' form action="http://test.com/EasyServiceBilling/quotation-new3-new2.php?add=true&id=139" method="P...
EasyService Billing 1.0 - Cross-Site Scripting
EasyService Billing 1.0 - Cross-Site Scripting !-- Exploit Title: EasyService Billing 1.0 Cross-Site Scripting in 'q' Parameter Date: 25-05-2018 Software Link: https://codecanyon.net/item/easyservice-billing-php-scripts-for-quotation-invoice-payments-etc/16687594 Exploit Author: Divya Jain Versio...
EasyService Billing 1.0 - Cross-Site Request Forgery
EasyService Billing 1.0 - Cross-Site Request Forgery history.pushState'', '', '/' input typ...
EasyService Billing 1.0 - q SQL Injection
EasyService Billing 1.0 - q SQL Injection !-- Exploit Title: EasyService Billing 1.0 SQL Injection on page jobcard-ongoing.php?q= Date: 25-05-2018 Software Link: https://codecanyon.net/item/easyservice-billing-php-scripts-for-quotation-invoice-payments-etc/16687594 Exploit Author: Divya Jain...
EasyService Billing 1.0 CSRF / XSS / SQL Injection
Exploit 1 of 3: history.pushState'', '', '/' input...
EasyService Billing 1.0 - 'q' SQL Injection
!-- Exploit Title: EasyService Billing 1.0 SQL Injection on page jobcard-ongoing.php?q= Date: 25-05-2018 Software Link: https://codecanyon.net/item/easyservice-billing-php-scripts-for-quotation-invoice-payments-etc/16687594 Exploit Author: Divya Jain Version: EasyService Billing 1.0 CVE:...
EasyService Billing 1.0 - Cross-Site Scripting
!-- Exploit Title: EasyService Billing 1.0 Cross-Site Scripting in 'q' Parameter Date: 25-05-2018 Software Link: https://codecanyon.net/item/easyservice-billing-php-scripts-for-quotation-invoice-payments-etc/16687594 Exploit Author: Divya Jain Version: EasyService Billing 1.0 CVE: CVE-2018-11443...
EasyService Billing 1.0 - Cross-Site Request Forgery
history.pushState'', '', '/' input type="hidden" nam...
CVE-2018-11442
A CSRF issue was discovered in EasyService Billing 1.0, which was triggered via a quotation-new3-new2.php?add=true&id= URI, as demonstrated by adding a new quotation...
CVE-2018-11444
A SQL Injection issue was observed in the parameter "q" in jobcard-ongoing.php in EasyService Billing 1.0...