3941 matches found
WordPress Plugin Menu Creator 1.1.7 - SQL Injection
WordPress Plugin Menu Creator 1.1.7 - SQL Injection Exploit Title: WordPress Menu Creator plugin 1,BENCHMARK5000000,MD5CHAR115,113,108,109,97,112,0 --------------- Vulnerable code --------------- $menuid = $GET'menuid'; ... $firstitem = $wpdb-getrow"SELECT FROM " . $wpdb-prefix."menuitems WHERE...
WordPress Plugin Menu Creator 1.1.7 - SQL Injection
Exploit Title: WordPress Menu Creator plugin 1,BENCHMARK5000000,MD5CHAR115,113,108,109,97,112,0 --------------- Vulnerable code --------------- $menuid = $GET'menuid'; ... $firstitem = $wpdb-getrow"SELECT FROM " . $wpdb-prefix."menuitems WHERE order=0 AND parent=0 AND menu = $menuid";...
WordPress Menu Creator plugin <= 1.1.7 SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: WordPress Menu Creator plugin 1,BENCHMARK5000000,MD5CHAR115,113,108,109,97,112,0 --------------- Vulnerable code --------------- $menuid = $GET'menuid'; ... $firstitem = $wpdb-getrow"SELECT FROM " . $wpdb-prefix."menuitems WHERE...
Code Widgets DataBound Index Style Menu - category.asp SQL Injection
Code Widgets DataBound Index Style Menu - category.asp SQL Injection source: https://www.securityfocus.com/bid/49208/info Code Widgets DataBound Index Style Menu is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query...
Code Widgets DataBound Collapsible Menu - main.asp SQL Injection
Code Widgets DataBound Collapsible Menu - main.asp SQL Injection source: https://www.securityfocus.com/bid/49209/info Code Widgets DataBound Collapsible Menu is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query...
Code Widgets DataBound Collapsible Menu - 'main.asp' SQL Injection
source: https://www.securityfocus.com/bid/49209/info Code Widgets DataBound Collapsible Menu is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...
SA-CONTRIB-2011-033 - iWebkit - Cross Site Scripting
iWebKit is a web toolkit designed to create iPhone and iPod touch compatible websites and webapps. iWebkit does not properly sanitize menu links when displayed, allowing a malicious user to embed scripts in menu items, thus creating a cross site scripting XSS vulnerability that may lead to an...
Fiddler v2.3.3.3 New version released !
Fiddler is a Web Debugging Proxy which logs all HTTPS traffic between your computer and the Internet. Fiddler allows you to inspect all HTTPS traffic, set breakpoints, and "fiddle" with incoming or outgoing data. Fiddler includes a powerful event-based scripting subsystem, and can be extended usi...
dhtml-menu-builder universal password and XSS cross-site vulnerabilities-vulnerability warning-the black bar safety net
Vulnerability Description: from abroad dhtml-menu-builder Auth bypass and Persistent xss; official website http://dhtml-menu-builder. com/; the system there is a serious background administrator authentication bypass vulnerability, as well asXSScross-site vulnerabilities. Publisher/date:...
dhtml-menu-builder Auth bypass and Persistent XSS Vulnerability
Exploit for php platform in category web applications 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 +...
Sothink DHTML Menu SQL Injection Vulnerability
Exploit for asp platform in category web applications ===================================================================== . . . . | | ||/ | || | / / \ / /\ | | / | \ \ | |/ | \ / | || | // | / // | \ /\ | /|//|||| |\ | / /|| / Exploit-ID is the Indonesian Exploit Archive Web :...
dhtml-menu-builder SQL Injection Vulnerability
Exploit for php platform in category web applications ===================================================================== . . . . | | ||/ | || | / / \ / /\ | | / | \ \ | |/ | \ / | || | // | / // | \ /\ | /|//|||| |\ | / /|| / Exploit-ID is the Indonesian Exploit Archive Web :...
Sothink DHTML Menu SQL Injection
===================================================================== . . . . | | ||/ | || | / / \ / /\ | | / | \ \ | |/ | \ / | || | // | / // | \ /\ | /|//|||| |\ | / /|| / Exploit-ID is the Indonesian Exploit Archive Web : exploit-id.com e-mail : rootatexploit-id.com Caddy-Dz , member...
Sothink DHTML Menu - SQL Injection
Sothink DHTML Menu - SQL Injection ===================================================================== . . . . | | ||/ | || | / / \ / /\ | | / | \ \ | |/ | \ / | || | // | / // | \ /\ | /|//|||| |\ | / /|| / Exploit-ID is the Indonesian Exploit Archive Web : exploit-id.com e-mail :...
SA-CONTRIB-2011-019 - Menu Access - Cross Site Scripting
The Menu Access module provides global, menu specific, and per menu item security permissions by role and user account. The Menu Access module contains a cross site scripting XSS vulnerability that can be exploited when a specially formatted menu description is viewed. This could result in...
Sothink DHTML Menu - SQL Injection
===================================================================== . . . . | | ||/ | || | / / \ / /\ | | / | \ \ | |/ | \ / | || | // | / // | \ /\ | /|//|||| |\ | / /|| / Exploit-ID is the Indonesian Exploit Archive Web : exploit-id.com e-mail : rootatexploit-id.com Caddy-Dz , member...
BackTrack 5 "revolution" will Release on May 10th, 2011
BackTrack 5 "revolution" will Release on May 10th, 2011 As BackTrack 5 development rolls on full steam ahead, we've been getting numerous questions about the future release. We thought we'd publish a blog post with general information about BT5 for the impatient. The codename of this release will...
Foxit PDF Reader 4.2 Javascript File Write
This module exploits an unsafe Javascript API implemented in Foxit PDF Reader version 4.2. The createDataObject Javascript API function allows for writing arbitrary files to the file system. This issue was fixed in version 4.3.1.0218. Note: This exploit uses the All Users directory currently, whi...
Wordpress jQuery Mega Menu 1.0 Plugin Local File Inclusion
Exploit for php platform in category web applications ------------------------------------------------------------------------ Software................WordPress jQuery Mega Menu 1.0 Vulnerability...........Local File Inclusion...
WordPress Plugin jQuery Mega Menu 1.0 - Local File Inclusion
WordPress Plugin jQuery Mega Menu 1.0 - Local File Inclusion Source: http://packetstormsecurity.org/files/view/98753/WordPressjQueryMegaMenu1.0-lfi.txt ------------------------------------------------------------------------ Software................WordPress jQuery Mega Menu 1.0...