CVE-2020-37091

Maian Support Helpdesk 4.3 contains a cross-site request forgery vulnerability that allows attackers to create administrative accounts without authentication. Attackers can craft malicious HTML forms to add admin users and upload PHP files with unrestricted file upload capabilities through the FA...

CVE-2020-37091

Maian Support Helpdesk 4.3 contains a cross-site request forgery vulnerability that allows attackers to create administrative accounts without authentication. Attackers can craft malicious HTML forms to add admin users and upload PHP files with unrestricted file upload capabilities through the FA...

CVE-2020-37091 Maian Support Helpdesk 4.3 - Cross-Site Request Forgery (Add Admin)

Maian Support Helpdesk 4.3 contains a cross-site request forgery vulnerability that allows attackers to create administrative accounts without authentication. Attackers can craft malicious HTML forms to add admin users and upload PHP files with unrestricted file upload capabilities through the FA...

CVE-2020-37091

Maian Support Helpdesk 4.3 is affected by a cross-site request forgery (CSRF) vulnerability that allows attackers to create administrative accounts without authentication. Exploitation involves crafting malicious HTML forms to add admin users and upload PHP files via the FAQ attachment system, en...

PT-2026-5841

Name of the Vulnerable Software and Affected Versions Maian Support Helpdesk version 4.3 Description The software contains a cross-site request forgery condition that permits attackers to create administrative accounts without needing to authenticate. Attackers can construct malicious HTML forms ...

Maian Media Maian Support 跨站请求伪造漏洞

Maian Media Maian Support is a ticket support system provided by Maian Media Limited in the UK. Version 4.3 of Maian Media Maian Support contains a cross-site request forgeing vulnerability. This vulnerability stems from cross-site request forgeing techniques, allowing attackers to create malicio...

EUVD-2008-2207

Malware in sbrugna...

EUVD-2006-1263

Malware in sbrugna...

Maian Support Helpdesk 4.3 - Cross-Site Request Forgery (Add Admin)

Exploit Title: Maian Support Helpdesk 4.3 - Cross-Site Request Forgery Add Admin Date: 2020-04-26 Author: Besim ALTINOK Vendor Homepage: https://www.maiansupport.com Software Link: https://www.maiansupport.com/zip.html Version: v4.3 Tested on: Xampp Credit: İsmail BOZKURT...

Maian Support Helpdesk 4.3 - Cross-Site Request Forgery (Add Admin) Vulnerability

Exploit for php platform in category web applications Exploit Title: Maian Support Helpdesk 4.3 - Cross-Site Request Forgery Add Admin Author: Besim ALTINOK Vendor Homepage: https://www.maiansupport.com Software Link: https://www.maiansupport.com/zip.html Version: v4.3 Tested on: Xampp Credit:...

Maian Support Helpdesk 4.3 Cross Site Request Forgery

Exploit Title: Maian Support Helpdesk 4.3 - Cross-Site Request Forgery Add Admin Date: 2020-04-26 Author: Besim ALTINOK Vendor Homepage: https://www.maiansupport.com Software Link: https://www.maiansupport.com/zip.html Version: v4.3 Tested on: Xampp Credit: İsmail BOZKURT...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Maian Support 1.3 allow remote attackers to inject arbitrary web script or HTML via the 1 msgscript, 2 msgscript2, and 3 msgscript3 parameters to admin/inc/footer.php; and the 4 msgscript2 parameter to admin/inc/header.php...

CVE-2008-2210

Multiple cross-site scripting XSS vulnerabilities in Maian Support 1.3 allow remote attackers to inject arbitrary web script or HTML via the 1 msgscript, 2 msgscript2, and 3 msgscript3 parameters to admin/inc/footer.php; and the 4 msgscript2 parameter to admin/inc/header.php...

CVE-2008-2210

Multiple cross-site scripting XSS vulnerabilities in Maian Support 1.3 allow remote attackers to inject arbitrary web script or HTML via the 1 msgscript, 2 msgscript2, and 3 msgscript3 parameters to admin/inc/footer.php; and the 4 msgscript2 parameter to admin/inc/header.php...

CVE-2008-2210

The CVE-2008-2210 entry concerns Maian Support version 1.3 with multiple cross-site scripting (XSS) vulnerabilities. Specifically, user-supplied script can be injected via parameters (1) msg_script, (2) msg_script2, and (3) msg_script3 to admin/inc/footer.php, and (4) msg_script2 to admin/inc/hea...

maiansupport-xss.txt

---------------------------------------------------------------- Script : Maian Support v1.3 Type : Xss Vulnerabilities ---------------------------------------------------------------- Discovered by : Khashayar Fereidani Or Dr.Crash Our Team : IRCRASH...

Maian Support v1.3 Xss Vulnerabilities

---------------------------------------------------------------- Script : Maian Support v1.3 Type : Xss Vulnerabilities ---------------------------------------------------------------- Discovered by : Khashayar Fereidani Or Dr.Crash Our Team : IRCRASH...

EV0103.txt

New eVuln Advisory: Maian Support Authentication Bypass http://evuln.com/vulns/103/summary.html --------------------Summary---------------- eVuln ID: EV0103 CVE: CVE-2006-1259 Software: Maian Support Sowtware's Web Site: http://www.maianscriptworld.co.uk/ Versions: 1.0 Critical Level: Moderate...

[eVuln] Maian Support Authentication Bypass

New eVuln Advisory: Maian Support Authentication Bypass http://evuln.com/vulns/103/summary.html --------------------Summary---------------- eVuln ID: EV0103 CVE: CVE-2006-1259 Software: Maian Support Sowtware's Web Site: http://www.maianscriptworld.co.uk/ Versions: 1.0 Critical Level: Moderate...

Sql injection

Multiple SQL injection vulnerabilities in Maian Support 1.0 allow remote attackers to execute arbitrary SQL commands via the 1 email or 2 pass parameter to admin/index.php...