Lucene search
+L

92 matches found

seebug.org
seebug.org
added 2015/12/25 12:0 a.m.28 views

orion.extfeedbackform Bitrix模块SQL注入漏洞

No description provided by source...

7.1AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2015/08/07 12:0 a.m.9 views

The vulnerability of the Moodle learning management system allows a hacker to execute cross-site scripting attacks.

The vulnerability of the Lesson module in the Moodle learning management system exists due to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting using the feedback form...

3.5CVSS5.2AI score0.01459EPSS
Exploits0References4Affected Software1
securityvulns
securityvulns
added 2013/09/09 12:0 a.m.49 views

Usernoise 3.7.8 WP plugin cross-site scripting vulnerability

Details ============================= Application: Usernoise http://usernoise.karevn.com/ Version: 3.7.8 probably earlier versions as well Type: Wordpress plugin Developer: Nikolay Karev http://karevn.com/ - http://profiles.wordpress.org/karevn/ Vulnerability: Unauthorized persistent cross-site...

6.7AI score
Exploits0
0day.today
0day.today
added 2013/08/07 12:0 a.m.23 views

Wordpress Usernoise Plugin 3.7.8 - Persistent XSS Vulnerability

Exploit for php platform in category web applications Details ============================= Application: Usernoise http://usernoise.karevn.com/ Version: 3.7.8 probably earlier versions as well Type: Wordpress plugin Developer: Nikolay Karev http://karevn.com/ - http://profiles.wordpress.org/karev...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2013/08/07 12:0 a.m.16 views

WordPress Plugin Usernoise 3.7.8 - Persistent Cross-Site Scripting

WordPress Plugin Usernoise 3.7.8 - Persistent Cross-Site Scripting Details ============================= Application: Usernoise http://usernoise.karevn.com/ Version: 3.7.8 probably earlier versions as well Type: Wordpress plugin Developer: Nikolay Karev http://karevn.com/ -...

Exploits0
Packet Storm
Packet Storm
added 2012/08/13 12:0 a.m.32 views

Nasa Cross Site Scripting

Exploit Title: Feedback form heasarc.gsfc.nasa.gov Cross Site Scripting Date: 13/08/2012 Author: Ryuzaki Lawlet Web/Blog: http://justryuz.blogspot.com/ Category: webapps Security:RISK: High Vendor or Software Link: Google dork: - Tested on: Linux Exploit/p0c :...

0.1AI score
Exploits0
Packet Storm
Packet Storm
added 2012/04/11 12:0 a.m.32 views

Scully.cfa.harvard.edu Cross Site Scripting

Exploit Title: Scully.cfa.harvard.edu Minor Planet Center "3 OR "alertdocument.cookie Dem0 : http://scully.cfa.harvard.edu/cgi-bin/feedback.cgi?U=xss FB : www.fb.me/justryuz +---------------------------------------------------+ Greetz to : CyberSEC,Newbie3vilc063s,Rileks Crew,h3x4 Crew,C4,T3D...

7.4AI score
Exploits0
0day.today
0day.today
added 2012/04/10 12:0 a.m.30 views

FeedBack Form [feedback.cgi] <= XSS Vulnerability

Exploit for php platform in category web applications Exploit Title: FeedBack Form feedback.cgi "3 OR "alertdocument.cookie Dem0 : http://scully.cfa.harvard.edu/cgi-bin/feedback.cgi?U=xss http://www.europcar.bg/cgi-bin/feedback.cgi?LANG=xss http://www.europcarug.com/cgi-bin/feedback.cgi?LANG=xss ...

7.1AI score
Exploits0
xssed
xssed
added 2010/02/20 12:0 a.m.9 views

Unfixed XSS vulnerability at www.festivalbussen.com

Security researcher Uber0n, has submitted on 20/02/2010 a cross-site-scripting XSS vulnerability affecting www.festivalbussen.com, which at the time of submission ranked 2198864 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 14/06/2010. It is...

6.6AI score
Exploits0References1
NVD
NVD
added 2005/09/08 10:3 a.m.17 views

CVE-2005-2854

CRLF injection vulnerability in thesitewizard.com chfeedback.pl Feedback Form Perl Script 2.0.1 allows remote attackers to use the script as a mail relay spam proxy via CRLF sequences in the 1 name or 2 email fields, which are injected into mail headers...

5CVSS6.9AI score0.01069EPSS
Exploits0References2
Cvelist
Cvelist
added 2005/09/08 4:0 a.m.25 views

CVE-2005-2854

CRLF injection vulnerability in thesitewizard.com chfeedback.pl Feedback Form Perl Script 2.0.1 allows remote attackers to use the script as a mail relay spam proxy via CRLF sequences in the 1 name or 2 email fields, which are injected into mail headers...

6.9AI score0.01069EPSS
Exploits0References2
CVE
CVE
added 2005/09/08 4:0 a.m.48 views

CVE-2005-2854

The CVE-2005-2854 entry concerns the thesitewizard.com chfeedback.pl Feedback Form Perl Script 2.0.1. The vulnerability is a CRLF injection in the name and email fields, allowing remote attackers to inject headers and use the script as a mail relay (spam proxy). Multiple connected sources (NVD, R...

5CVSS7.3AI score0.01069EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder