1201 matches found
Sql injection
A SQL injection issue was discovered in the Mail Masta aka mail-masta plugin 1.0 for WordPress. This affects /inc/lists/view-list.php Requires authentication to Wordpress admin with the GET Parameter: filterlist...
CVE-2017-6096
A SQL injection issue was discovered in the Mail Masta aka mail-masta plugin 1.0 for WordPress. This affects /inc/lists/view-list.php Requires authentication to Wordpress admin with the GET Parameter: filterlist...
WordPress Plugin Mail Masta 1.0 - SQL Injection
WordPress Plugin Mail Masta 1.0 - SQL Injection Exploit Title: Multiple SQL injection vulnerabilities in Mail Masta aka mail-masta plugin 1.0 for Wordpress. Date: 02/18/2017 Exploit Author: Hanley Shun Vendor Homepage: https://wpcore.com/plugin/mail-masta Software Link:...
CVE-2016-10223
An issue was discovered in BigTree CMS before 4.2.15. The vulnerability exists due to insufficient filtration of user-supplied data in the "id" HTTP GET parameter passed to the "core/admin/adjax/dashboard/check-module-integrity.php" URL. An attacker could execute arbitrary HTML and script code in...
Design/Logic Flaw
An issue was discovered in BigTree CMS before 4.2.15. The vulnerability exists due to insufficient filtration of user-supplied data in the "id" HTTP GET parameter passed to the "core/admin/adjax/dashboard/check-module-integrity.php" URL. An attacker could execute arbitrary HTML and script code in...
Authorization
An issue was discovered in contextswurfl for TYPO3 before 0.4.2. The vulnerability exists due to insufficient filtration of user-supplied data in the "forceua" HTTP GET parameter passed to the "/contextswurfl/Library/wurfl-dbapi-1.4.4.0/checkwurfl.php" URL. An attacker could execute arbitrary HTM...
CVE-2017-5961
An issue was discovered in ionize through 1.0.8. The vulnerability exists due to insufficient filtration of user-supplied data in the "path" HTTP GET parameter passed to the "ionize-master/themes/admin/javascript/tinymce/jscripts/tinymce/plugins/codemirror/dialog.php" URL. An attacker could execu...
Authorization
An issue was discovered in the PoodLL Filter plugin through 3.0.20 for Moodle. The vulnerability exists due to insufficient filtration of user-supplied data in the "poodllaudiourl" HTTP GET parameter passed to the "filterpoodllmoodle322016112802/poodll/mp3recorderskins/brazil/index.php" URL. An...
Arbitrary File Deletion Vulnerability in MOMOCMS
MoMoCMS is an enterprise building system developed by php+MySQL. An arbitrary file deletion vulnerability exists in the MOMOCMS 'unlink' function. Due to obtaining the within to be deleted via $GET'file' allows an attacker to delete database files backed up by the administrator...
Smart Guard Network Manager 6.3.2 - SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: SQL Injection In Smart Guard Network Manager Api Date: 03/12/2016 Exploit Author: Rahul Raz Vendor Homepage: http://www.xsinfoways.com/ Software Name: Smart Guard Network Manager Version: 6.3.2 Tested on: Ubuntu Linux...
WordPress Plugin WP Vault 0.8.6.6 - Local File Inclusion
WordPress Plugin WP Vault 0.8.6.6 - Local File Inclusion Exploit Title: WP Vault 0.8.6.6 – Plugin WordPress – Local File Inclusion Date: 28/11/2016 Exploit Author: Lenon Leite Vendor Homepage: https://wordpress.org/plugins/wp-vault/ Software Link: https://wordpress.org/plugins/wp-vault/ Contact:...
MuM MapEdit 3.2.6.0 - Multiple Vulnerabilities
MuM MapEdit 3.2.6.0 - Multiple Vulnerabilities Security Advisory -- Multiple Vulnerabilities - MuM Map Edit Product Vendor: Mensch und Maschine Software SE / Mensch und Maschine acadGraph GmbH Product: MapEdit Affected software version: 3.2.6.0 MuM MapEdit provides geodata to the internet and...
MuM MapEdit 3.2.6.0 - Multiple Vulnerabilities
Security Advisory -- Multiple Vulnerabilities - MuM Map Edit Product Vendor: Mensch und Maschine Software SE / Mensch und Maschine acadGraph GmbH Product: MapEdit Affected software version: 3.2.6.0 MuM MapEdit provides geodata to the internet and intranets and is deployed on several communal and...
CVE-2016-6209
A user supplied GET parameter is used to create the value used as the src value of an iframe displayed on all pages. It allows for CSRF and javascript insertion techniques among others. An attacker could forge a malicious URL that could include javascript execution in the main browser frame...
图腾软件图书管理系统 /SearchJournalByChar.aspx?QU=0 存在sql注入
漏洞发生在 /SearchJournalByChar.aspx?QU=0 GET参数QU存在报错注入 后台数据库是oracle 测试:...
Mail.ru: SQL Injection
Добрый день. Из за недостаточной фильтрации GET параметра "email" можно провести атаку типа SQL Injection. Вектор атаки - Error based. PoC вывод версии СУБД https://townwars.mail.ru/?c=Login2&m=Auth&email=1'+and+1=select+version::bigint--&pass=test&saveme=0&origin=0&target=WwwForum вывод данных в...
EasyDNNnews Reflective Cross-Site Scripting Vulnerability
EasyDNNnews is a DotNetNuke tool that enables unskilled users to publish as well as manage articles and news. A reflected cross-site scripting vulnerability exists in EasyDNNnnews due to JavaScript being included in the GET parameter name. This allows attackers to exploit the vulnerability to...
Moderate: Red Hat Security Advisory: spacewalk-java security update
An update for spacewalk-java is now available for Red Hat Satellite 5.7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...
5: stored and reflected XSS vulnerabilities
Multiple cross-site scripting XSS flaws were found in the way HTTP GET parameter data was handled in Red Hat Satellite. A user able to provide malicious links to a Satellite user could use these flaws to perform XSS attacks against other Satellite users...
Memphis Document Library Plugin <= 3.1.5 - Arbitrary File Download
The function "mdocsimgpreview" is in charge of downloading image previews previously uploaded by the administrator, but it does not sanitize the file path being downloaded, thus, allowing to download arbitrary files in the file system. The vulnerable GET parameter is "mdocs-img-preview". The...