172 matches found
CVE-2014-9528
SQL injection vulnerability in the actionIndex function in protected/modulescore/notification/controllers/ListController.php in HumHub 0.10.0-rc.1 and earlier allows remote authenticated users to execute arbitrary SQL commands via the from parameter to index.php. NOTE: this can be leveraged for...
Sql injection
SQL injection vulnerability in the actionIndex function in protected/modulescore/notification/controllers/ListController.php in HumHub 0.10.0-rc.1 and earlier allows remote authenticated users to execute arbitrary SQL commands via the from parameter to index.php. NOTE: this can be leveraged for...
CVE-2014-9528
SQL injection vulnerability in the actionIndex function in protected/modulescore/notification/controllers/ListController.php in HumHub 0.10.0-rc.1 and earlier allows remote authenticated users to execute arbitrary SQL commands via the from parameter to index.php. NOTE: this can be leveraged for...
CVE-2014-9528
CVE-2014-9528 affects HumHub 0.10.0-rc.1 and earlier. The vulnerability is a SQL injection in the actionIndex function of protected/modules_core/notification/controllers/ListController.php, exploitable by remote authenticated users via the from parameter to index.php. The issue may also enable cr...
Humhub Insecure Password Validation / Reset
Humhub insecure password validation and reset design + Discovered by: Jos Wetzels + Affects: Humhub password == $this-hashPassword$password Here a hash of the user-supplied password gets compared to the stored hash in an insecure manner, since PHP's loose type comparison operators compare only...
Humhub 0.10.0-rc.1 - Multiple Persistent Cross-Site Scripting Vulnerabilities
Exploit Title: Humhub test Will insert the corresponding HTML elements into the post/comment body. 2. Humhub-modules-mail 7 persistent XSS vulnerability Humhub-modules-mail versions 0.5.9 and prior when used in conjunction with Humhub 0.10.0-rc.1 or prior is affected by the same vulnerability as...
Humhub 0.10.0-rc.1 - SQL Injection
Humhub 0.10.0-rc.1 - SQL Injection Exploit Title: Humhub condition is injected with the otherwise unsanitized $lastEntryId, which can be any SQL injection. Proof of Concept: Performing the following request index.php?r=notification/list/index&from=999 AND CASE WHEN 0x30SELECT substringpassword,1,...
Humhub 0.10.0-rc.1 - XSS / SQL Injection vulnerabilities
Exploit for php platform in category web applications Exploit Author: Jos Wetzels, Emiel Florijn Vendor Homepage: https://www.humhub.org Software Link: https://github.com/humhub/humhub/releases Version: test Will insert the corresponding HTML elements into the post/comment body. 2...
Humhub 0.10.0-rc.1 - SQL Injection
Exploit Title: Humhub condition is injected with the otherwise unsanitized $lastEntryId, which can be any SQL injection. Proof of Concept: Performing the following request index.php?r=notification/list/index&from=999 AND CASE WHEN 0x30SELECT substringpassword,1,1 FROM userpassword WHERE id = 1 TH...
Humhub 0.10.0-rc.1 - Multiple Persistent Cross-Site Scripting Vulnerabilities
Humhub 0.10.0-rc.1 - Multiple Persistent Cross-Site Scripting Vulnerabilities Exploit Title: Humhub test Will insert the corresponding HTML elements into the post/comment body. 2. Humhub-modules-mail 7 persistent XSS vulnerability Humhub-modules-mail versions 0.5.9 and prior when used in...
Humhub 0.10.0-rc.1 Cross Site Scripting / SQL Injection
Humhub 1 SQL injection vulnerability + Discovered by: Jos Wetzels, Emiel Florijn + Affects: Humhub condition is injected with the otherwise unsanitized $lastEntryId, which can be any SQL injection. Proof of Concept: Performing the following request index.php?r=notification/list/index&from=999 AND...
HumHub Modules Mail 0.5.8 Cross Site Scripting
Title: HumHub Modules Mail v0.5.8 Author: Morten Nørtoft, Kenneth Jepsen, Mikkel Vej Date: 2014/10/31 Download: https://github.com/humhub/humhub-modules-mail Contacted authors: 2014/10/15 ---------------------------------------------------------- Description: "Private messaging system to...