radio-srw.de XSS vulnerability

Open Bug Bounty ID: OBB-596426 Description| Value ---|--- Affected Website:| radio-srw.de Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

radio-wattwurm.de XSS vulnerability

Open Bug Bounty ID: OBB-596427 Description| Value ---|--- Affected Website:| radio-wattwurm.de Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

radio-osthofen.de XSS vulnerability

Open Bug Bounty ID: OBB-596420 Description| Value ---|--- Affected Website:| radio-osthofen.de Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

claybarfl.org XSS vulnerability

Vulnerable URL: http://www.claybarfl.org/member.php?member=1/-///'/"//--...

asus.com XSS vulnerability

Vulnerable URL: http://www.asus.com/zentalk/tw/home.php/member.php?mod=loggingz9lte"alert'OPENBUGBOUNTY'...

seacms /htdocs/seacms/member.php id参数 SQL注入

No description provided by source...

phpmps member.php parameter delete from SQL injection vulnerability

0x01 vulnerability profile phpmps in the page member. php parameter delete since the filter is not strict, resulting in SQL injection vulnerability. 0x02 vulnerability details member.php in the delete logic the presence of injection vulnerabilities. 1The id parameter, as long as not an array it...

MallBuilder /pay/api/member.php userid参数 SQL注入

No description provided by source...

MyBB <1.8.4 member.php跨站脚本漏洞

No description provided by source...

BEESCMS V4.0的文件member.php存在多处注入漏洞

No description provided by source...

PHPMPS v2.3 /member.php SQL注入漏洞

/member.phpcase 'send': $paycenter = trim$POST'paycenter'; $contactname = trim$POST'contactname'; $telephone = trim$POST'telephone'; $email = trim$POST'email'; $username = trim$POST'username'; $orderid = trim$POST'orderid'; $time = time; $ip = getip; $payonlinesetting = getpaysetting;...

phpmps 注入

简要描述： phpmps 注入 详细说明： member.php 的comment流程中，使用了$username存在二次注入 漏洞证明： 注册一个 xxxxx\ 的用户并登陆，提交请求如下，可以看到延迟效果和执行的语句。 POC: POST /phpmpsv2.3build150302utf8https://images.seebug.org/upload/member.php?act=comment id=1&content=,1,1,1,sleep3 -- a...

MyBB 'member.php' Cross-Site Scripting Vulnerability

MyBB is a PHP-based forum program. A cross-site scripting vulnerability exists in member.php in versions of MyBB prior to 1.8.4, which can be exploited by remote attackers to inject arbitrary Web script or HTML...

CVE-2015-2332

Cross-site scripting XSS vulnerability in member.php in MyBB aka MyBulletinBoard before 1.8.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

Cross site scripting

Cross-site scripting XSS vulnerability in member.php in MyBB aka MyBulletinBoard before 1.8.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2015-2332

Cross-site scripting XSS vulnerability in member.php in MyBB aka MyBulletinBoard before 1.8.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2014-9240

SQL injection vulnerability in member.php in MyBB aka MyBulletinBoard 1.8.x before 1.8.2 allows remote attackers to execute arbitrary SQL commands via the questionid parameter in a doregister action...

PHPMyWind 5.1 /member.php 远程密码修改漏洞

/member.php//初始化参数 …… $id = isset$id ? intval$id : 0; …… //更新资料 else if$a == 'saveedit' //检测数据完整性 if$password!=$repassword or $email=='' header'location:?c=edit'; exit; //HTML转义变量 .... //检测旧密码是否正确 if$password != '' $oldpassword = md5md5$oldpassword; $r = $dosql-GetOne"SELECT password FROM @member...

MyPHP Forum <= 3.0 Edit Topics/Blind SQL Injection Vulnerabilities

No description provided by source. / ----------------------------------------------------------------------------------- MyPHP Forum Final = 3.0 Edit Topics/Blind SQL Injection Remote Vulnerabilities ----------------------------------------------------------------------------------- Discovered By...

XMB Forum 1.8 Member.PHP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/7406/info XMB Forum Member.PHP has been reported prone to an SQL injection vulnerability, under certain conditions. The SQL injection vulnerability has been reported to affect the registration page of XMB Forum. This is...