ViArt Helpdesk - Persistent XSS Vulnerability

Exploit for php platform in category web applications 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 +...

Fortigate UTM WAF Appliance - Cross Site Vulnerabilities

Document Title: =============== Fortigate UTM WAF Appliance - Cross Site Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=559 Release Date: ============= 2012-09-23 Vulnerability Laboratory ID VL-ID: ==================================== 55...

imagetize Persistent XSS Vulnerability

Exploit for php platform in category web applications 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 +...

Fortigate UTM WAF Appliance - Multiple Vulnerabilities

Fortigate UTM WAF Appliance - Multiple Vulnerabilities Title: ====== Fortigate UTM WAF Appliance - Multiple Web Vulnerabilities Date: ===== 2012-09-06 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=557 VL-ID: ===== 557 Common Vulnerability Scoring System:...

SonicWALL EMail Security 7.3.5 Cross Site Scripting

Title: ====== SonicWALL EMail Security 7.3.5 - Multiple Vulnerabilities Date: ===== 2012-08-14 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=543 VL-ID: ===== 543 Common Vulnerability Scoring System: ==================================== 3.5 Introduction: =============...

MDaemon WorldClient < 12.5.7 Multiple XSS Vulnerabilities

According to its banner, the version of MDaemon's WorldClient is earlier than 12.5.7 and is, therefore, affected by the following cross-site scripting vulnerabilities : - Input supplied in body of an email is not properly sanitized before being presented to the user. Specially crafted email...

CVE-2012-3915

The DMVPN tunnel implementation in Cisco IOS 15.2 allows remote attackers to cause a denial of service persistent IKE state via a large volume of hub-to-spoke traffic, aka Bug ID CSCtq39602...

NeoBill CMS 0.8 Alpha - Multiple Vulnerabilities

NeoBill CMS 0.8 Alpha - Multiple Vulnerabilities Title: ====== NeoBill CMS v0.8 Alpha - Multiple Web Vulnerabilities Date: ===== 2012-08-18 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=685 VL-ID: ===== 685 Common Vulnerability Scoring System:...

ASTPP VoIP Billing (4cf207a) - Multiple Vulnerabilities

Title: ====== ASTPP VoIP Billing 4cf207a - Multiple Web Vulnerabilities Date: ===== 2012-08-17 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=687 VL-ID: ===== 687 Common Vulnerability Scoring System: ==================================== 4 Introduction: =============...

NeoBill CMS 0.8 Alpha Cross Site Scripting

Title: ====== NeoBill CMS v0.8 Alpha - Multiple Web Vulnerabilities Date: ===== 2012-08-18 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=685 VL-ID: ===== 685 Common Vulnerability Scoring System: ==================================== 3.5 Introduction: =============...

Fortigate UTM WAF Appliance Cross Site Scripting

Title: ====== Fortigate UTM WAF Appliance - Multiple Web Vulnerabilities Date: ===== 2012-09-06 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=557 VL-ID: ===== 557 Common Vulnerability Scoring System: ==================================== 5 Introduction: ============= T...

ASTPP VoIP Billing (4cf207a) Cross Site Scripting

Title: ====== ASTPP VoIP Billing 4cf207a - Multiple Web Vulnerabilities Date: ===== 2012-08-17 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=687 VL-ID: ===== 687 Common Vulnerability Scoring System: ==================================== 4 Introduction: =============...

vOlk Botnet Framework v4.0 Multiple Vulnerabilities

Exploit for php platform in category web applications Title: ====== vOlk Botnet Framework v4.0 - Multiple Web Vulnerabilities Introduction: ============= vOlk-Botnet v4.0 is a remote administration tool, its main function is to manage the HOSTS file of the windows operating systems The code creat...

Operation Aurora - Other Zero-Day Attacks targeting finance and Energy

The infamous Aurora Trojan horse is just one of many attacks launched by the same group of malware authors over the past three years, according to researchers at Symantec. Security researchers with Symantec have issued a report outlining the techniques used by the so-called "Edgewood" hacking...

Pinterest Clone Script - Multiple Vulnerabilities

Pinterest Clone Script - Multiple Vulnerabilities Exploit Title: Pinterestclones Multiple Vulnerabilities Author: DaOne Price: $199.99 Software Link: http://www.pinterestclones.com/ Google Dork: N/A Persistent XSS How to exploit: 1-go to : http://site.com/createusernamen/ 2-Put anything in the...

Pinterest Clone Script - Multiple Vulnerabilities

Exploit Title: Pinterestclones Multiple Vulnerabilities Author: DaOne Price: $199.99 Software Link: http://www.pinterestclones.com/ Google Dork: N/A Persistent XSS How to exploit: 1-go to : http://site.com/createusernamen/ 2-Put anything in the other field Password & E-mail etc... 3-Go to: Add...

eFront Educational v3.6.11 - Multiple Web Vulnerabilities

Title: ====== eFront Educational v3.6.11 - Multiple Web Vulnerabilities Date: ===== 2012-08-03 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=666 VL-ID: ===== 666 Common Vulnerability Scoring System: ==================================== 3.5 Introduction: =============...

Group-Office Calendar SQL Injection

Title: ====== eFront Educational v3.6.11 - Multiple Web Vulnerabilities Date: ===== 2012-08-03 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=666 VL-ID: ===== 666 Common Vulnerability Scoring System: ==================================== 3.5 Introduction: =============...

Clipster Video - Persistent Cross-Site Scripting

Clipster Video - Persistent Cross-Site Scripting Exploit Title: Clipster Video Persistent XSS Vulnerability Date: 04/09/2012 Author: DaOne Software Link: http://www.clipsterscript.com/ Google Dork: "Powered by ClipsterScript.com" How to exploit: 1-go to : http://site.com/login.php?action=Register...

Interspire Email Marketer v6.0.1 Multiple Vulnerabilites

Exploit for php platform in category web applications Interspire Email Marketer v6.0.1 - Multiple Vulnerabilites Details: ======== 1.1 A SQL Injection vulnerability is detected in the Interspire Email Marketer v6.0.1, Email Marketing Software. The vulnerability allows an attacker remote or local...