WordPress Cross-Site Scripting Vulnerability (CNVD-2020-01155)

WordPress is a set of blogging platforms developed using the PHP language by the WordPress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A cross-site scripting vulnerability exists in the module editor in WordPress versions prior to 5.3.1. The...

Drupal 8.x < 8.2.7 Multiple Vulnerabilities

According to its self-reported version number, the detected Drupal application is affected by multiple vulnerabilities : - A security bypass vulnerability exists in the editor module due to a failure to properly check access restrictions when adding private files with a configured text editor e.g...

Drupal 8.3.x < 8.3.0-rc2 Multiple Vulnerabilities

According to its self-reported version number, the detected Drupal application is affected by multiple vulnerabilities : - A security bypass vulnerability exists in the editor module due to a failure to properly check access restrictions when adding private files with a configured text editor e.g...

Drupal Multiple Vulnerabilities (SA-2017-001) - Linux

Drupal is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:drupal:drupal"; ifdescription...

Editor module incorrectly checks access to inline private files

More info at https://www.drupal.org/SA-2017-001...

drupal8 -- multiple vulnerabilities

Drupal Security Team reports: CVE-2017-6377: Editor module incorrectly checks access to inline private files CVE-2017-6379: Some admin paths were not protected with a CSRF token CVE-2017-6381: Remote code execution...

xoops module cjay content 3 - Remote File Inclusion Vulnerability

No description provided by source. / \ / \ | | | | | | | | | | | / | | | | | | | ' / | | ' \ / \ | | | | || | || | | | \ | | | | / | , |/ /|| ||| |||| / | |/ INFO: Program Title Cjay Content 3 WYSIWYG IE 5.5+ Remote File Inclusion Vulnerability Description Editor module for XOOPS CMS Vuln...

Mail.RU Group eMail - Persistent Web Vulnerability

Document Title: =============== Mail.RU Group eMail - Persistent Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=709 Release Date: ============= 2012-10-09 Vulnerability Laboratory ID VL-ID: ==================================== 709 Comm...

Mail.RU Group eMail - Persistent Web Vulnerability

Document Title: =============== Mail.RU Group eMail - Persistent Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=709 Release Date: ============= 2012-10-09 Vulnerability Laboratory ID VL-ID: ==================================== 709 Comm...

SupportSoft DNA Editor Module (dnaedit.dll) Code Execution Exploit

No description provided by source. !-- SupportSoft DNA Editor Module dnaedit.dll v6.9.2205 remote code execution exploit IE6/7 by Nine:Situations:Group::bruiser vendor url: http://www.supportsoft.com/ our site: http://retrogod.altervista.org/ details: CLSID: 01110800-3E00-11D2-8470-0060089874ED...

SupportSoft DNA Editor Module ActiveX控件不安全函数调用漏洞

BUGTRAQ ID: 34004 SupportSoft是美国的一家实时服务管理软件供货商。 SupportSoft产品中所提供的DNA Editor Module ActiveX控件（dnaedit.dll，CLSID: 01110800-3E00-11D2-8470-0060089874ED）没有正确地过滤对Packagefiles、SaveDna、AddFile、SetIdentity等方式所传送的参数，如果用户受骗访问了恶意网页并向上述方式传送了特制参数的话，就可能导致拒绝服务、向用户系统下载恶意文件或执行任意代码。 SupportSoft DNA Editor Module...

SupportSoft DNA Editor Module - dnaedit.dll Code Execution

SupportSoft DNA Editor Module - dnaedit.dll Code Execution !-- SupportSoft DNA Editor Module dnaedit.dll v6.9.2205 remote code execution exploit IE6/7 by Nine:Situations:Group::bruiser vendor url: http://www.supportsoft.com/ our site: http://retrogod.altervista.org/ details: CLSID:...

SupportSoft DNA Editor Module (dnaedit.dll) Code Execution Exploit

Exploit for unknown platform in category remote exploits ================================================================== SupportSoft DNA Editor Module dnaedit.dll Code Execution Exploit ================================================================== !-- SupportSoft DNA Editor Module...

SupportSoft DNA Editor Module - &#039;dnaedit.dll&#039; Code Execution

!-- SupportSoft DNA Editor Module dnaedit.dll v6.9.2205 remote code execution exploit IE6/7 by Nine:Situations:Group::bruiser vendor url: http://www.supportsoft.com/ our site: http://retrogod.altervista.org/ details: CLSID: 01110800-3E00-11D2-8470-0060089874ED Progid: Tioga.Editor.1 Binary Path:...

cjay-rfi.txt

/ \ / \ | | | | | | | | | | | / | | | | | | | ' / | | ' \ / \ | | | | || | || | | | \ | | | | / | , |/ /|| ||| |||| / | |/ INFO: Program Title Cjay Content 3 WYSIWYG IE 5.5+ Remote File Inclusion Vulnerability Description Editor module for XOOPS CMS Vuln Code In...

XOOPS Module Cjay Content 3 Remote File Inclusion Vulnerability

No description provided by source. / \ / \ | | | | | | | | | | | / | | | | | | | ' / | | ' \ / \ | | | | || | || | | | \ | | | | / | , |/ /|| ||| |||| / | |/ INFO: Program Title Cjay Content 3 WYSIWYG IE 5.5+ Remote Fi...

XOOPS Module Cjay Content 3 Remote File Inclusion Vulnerability

Exploit for unknown platform in category web applications =============================================================== XOOPS Module Cjay Content 3 Remote File Inclusion Vulnerability =============================================================== / \ / \ | | | | | | | | | | | / | | | | | | | '...

XOOPS Module cjay content 3 - Remote File Inclusion

XOOPS Module cjay content 3 - Remote File Inclusion / \ / \ | | | | | | | | | | | / | | | | | | | ' / | | ' \ / \ | | | | || | || | | | \ | | | | / | , |/ /|| ||| |||| / | |/ INFO: Program Title Cjay Content 3 WYSIWYG IE 5.5+ Remote File Inclusion Vulnerability Description Editor module for...