1062 matches found
Wordpress Plugin Store Locator Plus 4.2.23 Email Injection
如果我们拥有有效的“钥匙”就可以发送邮件给任何人File: store-locator-le\include\send-email.phpif !wpverifynonce$REQUEST'valid','em' die; $messageheaders = "From: "$GET'emailname'"...
wirelesswave.ca XSS vulnerability
Vulnerable URL: http://www.wirelesswave.ca/stores/store-locator.asp?AddressInput=T0L 0X0" Details: Description| Value ---|--- Patched:| Yes, at 22.11.2017 Latest check for patch:| 22.11.2017 14:54 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 539891 Google...
carecredit.com XSS vulnerability
Vulnerable URL: http://www.carecredit.com/doctor-locator/results/Vision/Eye-Exams-Eye-Glasses/LA-QUINTA-CA/?Name="=25=61 Details: Description| Value ---|--- Patched:| Yes, at 25.07.2017 Latest check for patch:| 25.07.2017 14:13 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclose...
carecredit.com XSS vulnerability
Vulnerable URL: http://www.carecredit.com/doctor-locator/results/xss/?City==MN1"=10=29 Details: Description| Value ---|--- Patched:| Yes, at 25.07.2017 Latest check for patch:| 25.07.2017 14:13 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 22126 Google Pageran...
carecredit.com XSS vulnerability
Vulnerable URL: http://www.carecredit.com/doctor-locator/results/45645ee/?City==MN1"=10=29 Details: Description| Value ---|--- Patched:| Yes, at 25.07.2017 Latest check for patch:| 25.07.2017 14:13 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 22126 Google...
TYPO3 Store Locator Extension SQL Injection Vulnerability
TYPO3 is a free and open source content management system, Store Locator is a map locator extension plugin that displays store information. A SQL injection vulnerability exists in TYPO3 Store Locator, which allows remote attackers to exploit the vulnerability to submit specially crafted SQL queri...
CVE-2015-4610
SQL injection vulnerability in the Store Locator locator extension before 3.3.1 for TYPO3 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors...
Sql injection
SQL injection vulnerability in the Store Locator locator extension before 3.3.1 for TYPO3 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors...
CVE-2015-4610
The vulnerability affects the TYPO3 Store Locator extension (locator) prior to version 3.3.1 . It is a SQL injection flaw that allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors. The issue originates from the extension’s handling of database queries, leadi...
CVE-2015-4610
SQL injection vulnerability in the Store Locator locator extension before 3.3.1 for TYPO3 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors...
SQL Injection vulnerability in extension Store Locator (locator)
It has been discovered that the extension "Store Locator" locator is susceptible to SQL Injection Release Date: June 15, 2015 Component Type: Third party extension. This extension is not a part of the TYPO3 default installation. Affected Versions: version 3.3.0 and below Vulnerability Type: SQL...
WordPress Store Locator Plus Plugin <= 4.2.23 - Email Injection
Plugin is prone to an email injection vulnerability. Solution Update this plugin...
WordPress Store Locator Plugin <= 2.6.1 - Cross Site Request Forgery
This plugin is prone to a cross site request forgery vulnerability. Solution Update the plugin...
WordPress Store Locator Plus Plugin <= 3.8.6 - SQL Injection
Because of this vulnerability, remote authenticated users can execute arbitrary SQL commands. Solution Update plugin...
WordPress Store Locator Plugin <= 3.33.1 - SQL Injection
Because of this vulnerability, remote authenticated users can execute arbitrary SQL commands. Solution Update the plugin...
Vulnerabilities of the Red Hat Enterprise Linux operating system that allow malicious actors to compromise the confidentiality, integrity, and accessibility of protected information
The multiple vulnerabilities of the samba4-winbind-krb5-locator-4.0.0 package for the Red Hat Enterprise Linux operating system may lead to breaches of confidentiality, integrity, and accessibility of protected information...
Vulnerabilities of the Red Hat Enterprise Linux operating system, which allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information
The multiple vulnerabilities of the samba-winbind-krb5-locator-3.5.6 package for the Red Hat Enterprise Linux operating system can lead to breaches of confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...
The vulnerability of the Red Hat Enterprise Linux operating system allows malicious actors to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the samba-winbind-krb5-locator-4.1.1 package for the Red Hat Enterprise Linux operating system can lead to violations of confidentiality, integrity, and accessibility of protected information. This vulnerability can be exploited...
Vulnerabilities of the CentOS operating system that allow malicious actors to compromise the confidentiality, integrity, and accessibility of protected information
The Samba4-winbind-krb5-locator-4.0.0 package from the CentOS operating system has multiple vulnerabilities. Its operation may lead to violations of the confidentiality, integrity, and accessibility of protected information...
Wordpress Ajax Store Locator SQL Injection Vulnerability
WordPress is a use of PHP language development blog platform, users can support PHP and MySQL database server set up their own weblog. A SQL injection vulnerability exists in Wordpress Ajax Store Locator. An attacker can exploit this vulnerability to compromise the application, access or modify...