ConfTool 1.1 Index.PHP Cross-Site Scripting Vulnerability

No description provided by source...

CedStat 1.31 index.php hier Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/22588/info CedStat is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker can exploit this issue to execute arbitrary PHP code in the context of the...

justVisual 2.0 (index.php) <= LFI Vulnerability

No description provided by source. justVisual 2.0 index.php = LFI Vulnerability +Title: justVisual 2.0 index.php Local File Vulnerability +Version: 2.0 +License: http://www.gnu.org/copyleft/gpl.html +Download: http://fh54.de/justVisual/packages/justVisual2.zip +Risk: Medium +Local: Yes -Remote: N...

LoveCMS 1.4 install/index.php step Parameter Traversal Arbitrary File Access

No description provided by source. source: http://www.securityfocus.com/bid/22675/info LoveCMS is prone to multiple input-validation vulnerabilities, including an arbitrary-file-upload issue, a remote file-include issue, a local file-include issue, and a cross-site scripting issue. An attacker ca...

PTCeffect 4.6 - LFI & SQL Injection Vulnerabilities

No description provided by source. Exploit Title: PTCeffect LFI & SQL Injection Vulnerabilities Google Dork: find it : Date: 2014-04-19 Exploit Author: Walidz Software Link: http://www.ptceffect.com/ Version: 4.6 Tested on: windows,linux,mac os CVE : N/A The LFI vulnerability is in index.php...

slogan design Script SQL Injection Vulnerability

No description provided by source. Title: slogan design Script SQL Injection Vulnerability Version: 3.1 Author: Mr.P3rfekT Software Site: http://www.slogandesign.co.il Tested on Lunix CVE : N/A Founded By Mr.P3rfekT --- We Will Not Go Down Dork : inurl:index.php?mid= Helllo Allz. Exploit :...

iFoto 0.20 Index.PHP Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/18391/info iFoto is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script...

Xibo 1.2.2 and 1.4.1 (index.php, p param) - Directory Traversal Vulnerability

No description provided by source...

mcGallery 1.1 - index.php lang Parameter XSS

No description provided by source...

Bandersnatch 0.4 Index.PHP Multiple Cross-Site Scripting Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/26553/info Bandersnatch is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the...

TNT Forum 0.9.4 - Local File Inclusion Vulnerabilities

No description provided by source. ====================================================== TNT Forum 0.9.4 Local File Inclusion Vulnerabilities ====================================================== ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH Underground Hacking Team...

minimal ablog 0.4 (sql/fu/bypass) Multiple Vulnerabilities

No description provided by source. =========================================================================================================== o minimal-ablog 0.4 SQL Injection, File Upload and Admin Bypass Vuln Software : minimal-ablog version 0.4 Vendor : http://www.abweb.co.cc/ Download :...

CoD2: DreamStats <= 4.2 (index.php) Remote File Include Vulnerability

No description provided by source. ConTact Me:-wWw.Asb-May.Net ScRiPt:-http://callofduty.filefront.com/file/DreamStatsSystem;54520 Discovered By:- ThE dE@Th AsB-MaY DiScOvEr ExPlIoTs TeAm index.php:- if !$slots include$rootpath . 'html/serveroffline.php';exit;...

Pre News Manager <= 1.0 (index.php id) SQL Injection Vulnerability

No description provided by source. \ /\ \ / | \ \ | / \ // / | \ | \ \ Y / | \ / / \ /| /\ / / / / / .OR.ID ECHOADV97$2008 ----------------------------------------------------------------------------------------- ECHOADV97$2008 Pre News Manager = 1.0 index.php id Sql Injection...

Gallery 1.4 index.php Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8814/info It has been reported that Gallery is prone to a remote file include vulnerability in the index.php script file. The problem occurs due to the program failing to verify the location in which it includes the...

PHP Charts 1.0 (index.php, type param) - Remote Code Execution

No description provided by source. !/usr/bin/python Original Advisory came from: http://packetstormsecurity.com/files/119582/PHP-Charts-1.0-Code-Execution.html infodox - insecurety.net import requests import random import threading import sys def genpayloadhost, port: Perl Reverse Shell Generator...

ADN Forum <= 1.0b Insecure Cookie Handling Vulnerability

No description provided by source. -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- adnforum = 1.0b / Insecure Cookie Handling Vulnerability -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- $ Program: adnforum $ Version: = 1.0b $ File affected: index.php $ Download:...

Flatnux CMS 2013-01.17 (index.php, theme param) - Local File Inclusion

No description provided by source. Exploit Title: Flatnux CMS Local File Inclusion Date: 21-03-2013 Author: DaOne aka Mocking Bird Vendor Homepage: http://flatnux.altervista.org/ Software Link: http://flatnux.altervista.org/download.html?f=Flatnux-Next/flatnux-2013-01.17.zip Category: webapps/php...

Joomla S5 Clan Roster com_s5clanroster (index.php, id param) - SQL Injection

No description provided by source. Joomla Component coms5clanroster Sql Injection Vulnerability ============================================================== .:. Author : AtT4CKxT3rR0r1ST [email protected] .:. Dork : inurl:coms5clanroster .:. Script :...

eroCMS <= 1.4 (index.php site) SQL Injection Vulnerability

No description provided by source. Viva IslaM Viva IslaM Remote SQL Injection Vulnerability eroCMS V1.0 - V1.1 - V1.2 - V1.3 - V1.4 index.php site AuTh0r : Mr.SQL H0ME : WwW.PaL-HaCkEr.CoM Email : [email protected] !! SYRIAN HaCkErS !! Script : eroCMS Vesrion : 1.0 - 1.1 - 1.2 - 1.3 - 1.4 site :...