7655 matches found
Apple iTunes U - Persistent POST Inject Web Vulnerability
Document Title: =============== Apple iTunes U - Persistent POST Inject Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1532 Apple ID: 624515538 Release Date: ============= 2015-08-11 Vulnerability Laboratory ID VL-ID:...
UBNT Bug Bounty #3 - Persistent Filename Vulnerability
Document Title: =============== UBNT Bug Bounty 3 - Persistent Filename Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1467 Video: http://www.vulnerability-lab.com/getcontent.php?id=1468 Release Date: ============= 2015-08-11 Vulnerability...
UBNT Bug Bounty #3 - Persistent Filename Vulnerability
Document Title: =============== UBNT Bug Bounty 3 - Persistent Filename Vulnerability References: =========== http://www.vulnerability-lab.com/getcontent.php?id=1468 View Video: https://www.youtube.com/watch?v=JeEWyV9VMpE Advisory: http://www.vulnerability-lab.com/getcontent.php?id=1467 Release...
HTTPie - a CLI, cURL-like tool for humans
HTTPie pronounced aych-tee-tee-pie is a command line HTTP client. Its goal is to make CLI interaction with web services as human-friendly as possible. It provides a simple http command that allows for sending arbitrary HTTP requests using a simple and natural syntax, and displays colorized output...
WordPress Job Manager Plugin 0.7.22 - Persistent XSS Vulnerability
Exploit for php platform in category web applications Job Manager Persistent XSS Details ======================================================================================== Product: Job Manager Plugin For Wordpress Vendor-URL: www.wp-jobmanager.com CVE-ID: CVE-2015-2321 Credits...
WordPress Filedownload 1.4 Open Proxy Vulnerability
WordPress Filedownload plugin version 1.4 suffers from an open proxy vulnerability. Title: Open Proxy in filedownload v1.4 wordpress plugin Author: Larry W. Cashdollar, @larry0 Date: 2015-07-11 Download Site: https://wordpress.org/plugins/filedownload/ Vendor: Peter Gross Vendor Notified:...
WordPress Job Manager Plugin 0.7.22 - Persistent XSS
Job Manager plugin is prone to a persistent XSS vulnerability, because email field was not sanitized. It allows an attacler to steal cookies or perform phishing attacks. Other attacks are also possible. Solution Update the plugin...
WordPress Plugin Job Manager 0.7.22 - Persistent Cross-Site Scripting
WordPress Plugin Job Manager 0.7.22 - Persistent Cross-Site Scripting Job Manager Persistent XSS Details ======================================================================================== Product: Job Manager Plugin For Wordpress Vendor-URL: www.wp-jobmanager.com CVE-ID: CVE-2015-2321 Credi...
Microweber 1.0.3 - Persistent Cross-Site Scripting Cross-Site Request Forgery (Add Admin)
Microweber 1.0.3 - Persistent Cross-Site Scripting Cross-Site Request Forgery Add Admin Microweber v1.0.3 Stored XSS And CSRF Add Admin Exploit form action="http://localhost/micro...
WordPress Plugin Job Manager 0.7.22 - Persistent Cross-Site Scripting
Job Manager Persistent XSS Details ======================================================================================== Product: Job Manager Plugin For Wordpress Vendor-URL: www.wp-jobmanager.com CVE-ID: CVE-2015-2321 Credits...
Microweber 1.0.3 - Persistent Cross-Site Scripting / Cross-Site Request Forgery (Add Admin)
Microweber v1.0.3 Stored XSS And CSRF Add Admin Exploit form action="http://localhost/microweber-latest/api/saveuser" method="POST...
Ebay Magento Bug Bounty #9 - Bypass & Persistent Vulnerability
Document Title: =============== Ebay Magento Bug Bounty 9 - Bypass & Persistent Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1443 EIBBP-31471 Release Date: ============= 2015-08-06 Vulnerability Laboratory ID VL-ID:...
WordPress Filedownload 1.4 Open Proxy
Title: Open Proxy in filedownload v1.4 wordpress plugin Author: Larry W. Cashdollar, @larry0 Date: 2015-07-11 Download Site: https://wordpress.org/plugins/filedownload/ Vendor: Peter Gross Vendor Notified: 2015-07-11 Vendor Contact: [email protected] Description: Creates a downloadlink with t...
Ebay Magento Bug Bounty #9 - Bypass & Persistent Vulnerability
Document Title: =============== Ebay Magento Bug Bounty 9 - Bypass & Persistent Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1443 EIBBP-31471 Release Date: ============= 2015-08-05 Vulnerability Laboratory ID VL-ID:...
D-Link DCS-2103 1.20 CSRF / Cross Site Scripting Vulnerabilities
Exploit for hardware platform in category web applications There are Cross-Site Request Forgery and Cross-Site Scripting vulnerabilities in D-Link DCS-2103 IP camera. ------------------------- Affected products: ------------------------- Vulnerable is the next model: D-Link DCS-2103, Firmware...
WordPress Job Manager 0.7.22 Cross Site Scripting
Job Manager Persistent XSS Details ======================================================================================== Product: Job Manager Plugin For Wordpress Vendor-URL: www.wp-jobmanager.com CVE-ID: CVE-2015-2321 Credits...
D-Link DCS-2103 1.20 CSRF / Cross Site Scripting
Hello list! There are Cross-Site Request Forgery and Cross-Site Scripting vulnerabilities in D-Link DCS-2103 IP camera. ------------------------- Affected products: ------------------------- Vulnerable is the next model: D-Link DCS-2103, Firmware 1.0.0. Version 1.20 and previous versions also mus...
Hawkeye-G 3.0.1.4912 - Persistent Cross-Site Scripting Information Leakage
Hawkeye-G 3.0.1.4912 - Persistent Cross-Site Scripting Information Leakage Exploit Title: Persistent XSS, Information Leakage IDS / IPS Google Dork: intitle: Persistent XSS, Information Leakage IDS / IPS Date: 2015-07-25 Exploit Author: John Page hyp3rlinx Website: hyp3rlinx.altervista.org Vendor...
Hawkeye-G 3.0.1.4912 Cross Site Scripting / Information Leakage
Credits: John Page hyp3rlinx + Domains: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/AS-HAWKEYEG0725.txt Vendor: ================================ www.hexiscyber.com Product: ================================ Hawkeye-G v3.0.1.4912 Hawkeye G is an active defense...
FoxyCart Bug Bounty #1 - Filter Bypass & Persistent Vulnerability
Document Title: =============== FoxyCart Bug Bounty 1 - Filter Bypass & Persistent Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1451 098bdc9b309783df65044c5abb690dafdd4bcd436c380ae68c924fe37e14b4e0 Release Date: ============= 2015-07-15...