7648 matches found
OrangeHRM 2.7.1 Vacancy Name Persistent XSS
OrangeHRM1 2.7.12 -- the latest stable release as of this writing -- suffers from a persistent XSS in the vacancy name variable. Steps: 1. Navigate to following URL: http://domain/symfony/web/index.php/recruitment/viewJobVacancy 2. Add or Edit a Vacancy 3. In the Vacancy Name parameter put XSS...
Ad Rotator AdPeeps 8.6.9 Cross Site Scripting
Advisory: Ad Rotator AdPeeps 8.6.9 Persistent XSS Vulnerability Version:8.6.9 Vendor URL: http://adpeeps.com/ Demo Link:http://demo.adpeeps.com/ Author: Viknesvaran Sittaramane Category: Webapp Twiiter: https://twitter.com/csvsn ........... Product Description ........... Ad Peeps is a banner...
Forumize Me 1.75 Persistent XSS Vulnerability
Exploit for php platform in category web applications 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 +...
MyBB Profile Wii Friend Code 1.0 Cross Site Scripting / SQL Injection
Exploit Title: MyBB Profile Wii Friend Code SQLi/Persistent XSS Dork: intitle:"Profile of" intext:"Wii Friend Code" inurl:member.php Date: 1/3/2013 Exploit Author: Ichi Vendor Homepage: http://mods.mybb.com/view/profile-wii-friend-code Software Link:...
MyBB Profile Wii Friend Code Multiple Vulnerabilities
Exploit for php platform in category web applications Exploit Title: MyBB Profile Wii Friend Code SQLi/Persistent XSS Dork: intitle:"Profile of" intext:"Wii Friend Code" inurl:member.php Date: 1/3/2013 Exploit Author: Ichi Vendor Homepage: http://mods.mybb.com/view/profile-wii-friend-code Softwar...
MyBB Profile Wii Friend Code - Multiple Vulnerabilities
MyBB Profile Wii Friend Code - Multiple Vulnerabilities Exploit Title: MyBB Profile Wii Friend Code SQLi/Persistent XSS Dork: intitle:"Profile of" intext:"Wii Friend Code" inurl:member.php Date: 1/3/2013 Exploit Author: Ichi Vendor Homepage: http://mods.mybb.com/view/profile-wii-friend-code...
MyBB Profile Wii Friend Code - Multiple Vulnerabilities
Exploit Title: MyBB Profile Wii Friend Code SQLi/Persistent XSS Dork: intitle:"Profile of" intext:"Wii Friend Code" inurl:member.php Date: 1/3/2013 Exploit Author: Ichi Vendor Homepage: http://mods.mybb.com/view/profile-wii-friend-code Software Link:...
Open-Realty CMS 3.x | Persistent Cross Site Scripting (XSS) Vulnerability
OVERVIEW Open-Realty CMS 3.x versions are vulnerable to Persistent Cross Site Scripting XSS. 2. BACKGROUND Open-Realty is the world's leading real estate listing marketing and management CMS application, and has enjoyed being the real estate web site software of choice for professional web site...
SonicWall Email Security 7.4.1.x - Persistent Web Vulnerability
Title: ====== SonicWall Email Security 7.4.1.x - Persistent Web Vulnerability Date: ===== 2012-12-21 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=768 VL-ID: ===== 768 Common Vulnerability Scoring System: ==================================== 4.1 Introduction:...
MailOrderWorks v5.907 - Multiple Web Vulnerabilities
Document Title: =============== MailOrderWorks v5.907 - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=798 Release Date: ============= 2013-01-02 Vulnerability Laboratory ID VL-ID: ==================================== 796...
Enterpriser16 LoadBalancer v7.1 - Multiple Web Vulnerabilities
Title: ====== Enterpriser16 LB v7.1 - Multiple Web Vulnerabilities Date: ===== 2012-12-12 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=785 VL-ID: ===== 785 Common Vulnerability Scoring System: ==================================== 3.5 Introduction: ============= Load...
MailOrderWorks v5.907 - Multiple Web Vulnerabilities
Document Title: =============== MailOrderWorks v5.907 - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=798 Release Date: ============= 2013-01-02 Vulnerability Laboratory ID VL-ID: ==================================== 796...
SonicWall Email Security 7.4.1.x Cross Site Scripting
Title: ====== SonicWall Email Security 7.4.1.x - Persistent Web Vulnerability Date: ===== 2012-12-21 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=768 VL-ID: ===== 768 Common Vulnerability Scoring System: ==================================== 4.1 Introduction:...
Open-Realty CMS 3.x Cross Site Scripting
OVERVIEW Open-Realty CMS 3.x versions are vulnerable to Persistent Cross Site Scripting XSS. 2. BACKGROUND Open-Realty is the world's leading real estate listing marketing and management CMS application, and has enjoyed being the real estate web site software of choice for professional web site...
WordPress Plugin WP-UserOnline Persistent XSS vulnerability
This perl exploit I've developed at 26.04.2010. As I've wrote earlier, vulnerable are WP-UserOnline 2.62 and previous versions. After my informing the developer released WP-UserOnline 2.70 at 07.05.2010. In version 2.70 he fixed XSS, but not Full path disclosure vulnerabilities. Hello list! in 20...
SonicWall Email Security 7.4.1.x - Persistent Vulnerability
Document Title: =============== SonicWall Email Security 7.4.1.x - Persistent Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=768 Release Date: ============= 2012-12-21 Vulnerability Laboratory ID VL-ID: ====================================...
SonicWall Email Security 7.4.1.x - Persistent Vulnerability
Document Title: =============== SonicWall Email Security 7.4.1.x - Persistent Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=768 Release Date: ============= 2012-12-21 Vulnerability Laboratory ID VL-ID: ====================================...
SonicWALL SonicOS 5.8.1.8 WAF - Cross-Site Scripting
SonicWALL SonicOS 5.8.1.8 WAF - Cross-Site Scripting Title: ====== SonicWall SonicOS 5.8.1.8 WAF - POST Inject Vulnerability Date: ===== 2012-12-18 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=769 DELL Sonicwall Bug ID DSBID: 123995 VL-ID: ===== 769 Common...
Enterpriser16 Load Balancer 7.1 - Multiple Cross-Site Scripting Vulnerabilities
Enterpriser16 Load Balancer 7.1 - Multiple Cross-Site Scripting Vulnerabilities Title: ====== Enterpriser16 Load Balancer v7.1 - Multiple Web Vulnerabilities Date: ===== 2012-12-12 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=785 VL-ID: ===== 785 Common Vulnerability...
Cisco VoIP Hacker Urges Closer Look at Firmware Security Vulnerabilities
Ang Cui’s “Funtenna” is just the latest eye-opener into the security of embedded networked devices such as printers, VoIP phones, routers and other core, connected infrastructure. The Columbia University PhD candidate’s recent hack of a Cisco-branded VoIP phone demonstrates the risk posed by...