19 matches found
nwohl.com Cross Site Scripting vulnerability
Open Bug Bounty ID: OBB-1098656 Security Researcher Gh05tPT Helped patch 6893 vulnerabilities Received 10 Coordinated Disclosure badges Received 48 recommendations , a holder of 10 badges for responsible and coordinated disclosure, found a security vulnerability affecting nwohl.com website and it...
OpenDB 1.0.6 user_profile.php redirect_url Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/30989/info Open Media Collectors Database OpenDb is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute...
OpenDB 1.0.6 listings.php title Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/30989/info Open Media Collectors Database OpenDb is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute...
OpenDb 1.5.0.4 - Multiple LFI Vulnerability
No description provided by source...
OpenDB 1.0.6 user_admin.php user_id Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/30989/info Open Media Collectors Database OpenDb is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute...
Open Media Collectors Database Multiple Local File Include Vulnerabilities
Open Media Collectors Database OpenDb is prone to multiple local file- include vulnerabilities because it fails to properly sanitize user- supplied input. An attacker can exploit these vulnerabilities to obtain potentially sensitive information and execute arbitrary local scripts in the context o...
OpenDb 1.5.0.4 Local File Inclusion
============================================================================== / \ / \ \ \ / / / \ / \ / /\ / /\ \ \ \ / / / /\ / /\ \ / / \ / \ \ \ / / / / \ / \ \ // \ / // \ ============================================================================== » Note : Works Only With...
OpenDb 1.5.0.4 - Multiple Local File Inclusions
============================================================================== / \ / \ \ \ / / / \ / \ / /\ / /\ \ \ \ / / / /\ / /\ \ / / \ / \ \ \ / / / / \ / \ \ // \ / // \ ============================================================================== » Note : Works Only With...
OpenDb 1.5.0.4 - Multiple Local File Inclusions
OpenDb 1.5.0.4 - Multiple Local File Inclusions ============================================================================== / \ / \ \ \ / / / \ / \ / /\ / /\ \ \ \ / / / /\ / /\ \ / / \ / \ \ \ / / / / \ / \ \ // \ / // \...
OpenDb 1.5.0.4 Multiple LFI Vulnerability
Exploit for unknown platform in category web applications ========================================= OpenDb 1.5.0.4 Multiple LFI Vulnerability ========================================= ============================================================================== » Note : Works Only With...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability in useradmin.php in Open Media Collectors Database OpenDb 1.0.6 allows remote attackers to change arbitrary passwords via an updatepassword action...
CVE-2008-3938
CVE-2008-3938 describes a CSRF flaw in Open Media Collectors Database (OpenDb) 1.0.6, where an attacker can induce a remote user to perform an update_password action via user_admin.php, potentially changing arbitrary passwords. The issue affects the vulnerability in the OpenDb interface, with the...
CVE-2008-3937
OpenDb (Open Media Collectors Database) version 1.0.6 contains multiple cross-site scripting (XSS) vulnerabilities. The issues allow remote attackers to inject arbitrary script/HTML via three inputs: user_id in edit action to user_admin.php, title in listings.php, and redirect_url in user_profile...
PT-2008-5267 · Opendb · Opendb
Name of the Vulnerable Software and Affected Versions: OpenDb version 1.0.6 Description: The issue allows remote attackers to inject arbitrary web script or HTML. This can be achieved via the user id parameter in an edit action to "user admin.php", the title parameter to "listings.php", and the...
OpenDB 1.0.6 - 'listings.php?title' Cross-Site Scripting
source: https://www.securityfocus.com/bid/30989/info Open Media Collectors Database OpenDb is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the browser ...
OpenDB 1.0.6 - user_profile.php?redirect_url Cross-Site Scripting
OpenDB 1.0.6 - userprofile.php?redirecturl Cross-Site Scripting source: https://www.securityfocus.com/bid/30989/info Open Media Collectors Database OpenDb is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may levera...
OpenDB 1.0.6 - 'user_profile.php?redirect_url' Cross-Site Scripting
source: https://www.securityfocus.com/bid/30989/info Open Media Collectors Database OpenDb is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the browser ...
OpenDB 1.0.6 - listings.php?title Cross-Site Scripting
OpenDB 1.0.6 - listings.php?title Cross-Site Scripting source: https://www.securityfocus.com/bid/30989/info Open Media Collectors Database OpenDb is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these...
OpenDB 1.0.6 - 'user_admin.php?user_id' Cross-Site Scripting
source: https://www.securityfocus.com/bid/30989/info Open Media Collectors Database OpenDb is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the browser ...