WordPress Google Analytics 4.2.4 Cross Site Scripting

Title: ====== Google Analytics v4.2.4 Wordpress - Web Vulnerabilities Date: ===== 2012-08-22 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=692 VL-ID: ===== 692 Common Vulnerability Scoring System: ==================================== 3.5 Introduction: ============= Th...

Clipster Video - Persistent Cross-Site Scripting

Exploit Title: Clipster Video Persistent XSS Vulnerability Date: 04/09/2012 Author: DaOne Software Link: http://www.clipsterscript.com/ Google Dork: "Powered by ClipsterScript.com" How to exploit: 1-go to : http://site.com/login.php?action=Register 2-Put in the Username field the XSS Code =...

Clipster Video Persistent XSS Vulnerability

Exploit for php platform in category web applications Exploit Title: Clipster Video Persistent XSS Vulnerability Author: DaOne Price: $24 Software Link: http://www.clipsterscript.com/ Google Dork: "Powered by ClipsterScript.com" How to exploit: 1-go to : http://site.com/login.php?action=Register...

eFront Educational 3.6.11 Cross Site Scripting

Title: ====== eFront Educational v3.6.11 - Multiple Web Vulnerabilities Date: ===== 2012-08-03 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=666 VL-ID: ===== 666 Common Vulnerability Scoring System: ==================================== 3.5 Introduction: =============...

Barracuda Web Filter 910 5.0.015 Cross Site Scripting

Title: ====== Barracuda Web Filter 910 5.0.015 - Multiple Vulnerabilities Date: ===== 2012-08-02 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=570 Barracuda Networks Security ID: BNSEC-279/BNYF-5533 VL-ID: ===== 570 Common Vulnerability Scoring System:...

eFront Enterprise 3.6.11 Cross Site Scripting

Title: ====== eFront Enterprise v3.6.11 - Multiple Web Vulnerabilities Date: ===== 2012-08-06 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=668 VL-ID: ===== 668 Common Vulnerability Scoring System: ==================================== 3.5 Introduction: =============...

Social Engine v4.2.5 - Multiple Web Vulnerabilities

Title: ====== Social Engine v4.2.5 - Multiple Web Vulnerabilities Date: ===== 2012-07-31 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=672 VL-ID: ===== 672 Common Vulnerability Scoring System: ==================================== 3 Abstract: ========= A Laboratory...

SonicWall PolicyManager Module - Cross Site Vulnerability

Document Title: =============== SonicWall PolicyManager Module - Cross Site Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=529 Release Date: ============= 2012-09-01 Vulnerability Laboratory ID VL-ID: ==================================== 5...

SugarCRM Community Edition 6.5.2 (Build 8410) - Multiple Vulnerabilities

SugarCRM Community Edition 6.5.2 Build 8410 multiple vulnerabilities Brendan Coles http://itsecuritysolutions.org/ 2012-07-26 There are multiple security vulnerabilities in SugarCRM Community Edition 6.5.2 Build 8410 which may allow an attacker to take control of the software. Version: 6.5.2 Buil...

Eventy CMS v1.8 Plus Multiple Vulnerabilities

Exploit for php platform in category web applications Eventy CMS v1.8 Plus - Multiple Web Vulnerablities Introduction: ============= Publish Your Events In Online Calendar. Eventy Is Beautiful And Easy To Use Web Based Event Calendar Software Publish events like parties, courses, meetings,...

WordPress Count per Day Plugin 'note' Parameter Persistent XSS Vulnerability

The WordPress plugin SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wordpress:wordpress"; ifdescription...

Fortigate UTM WAF Appliance - Multiple Vulnerabilities

Document Title: =============== Fortigate UTM WAF Appliance - Multiple Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=557 Release Date: ============= 2012-08-28 Vulnerability Laboratory ID VL-ID: ==================================== 557...

Hijacking Servers Remotely with Hikit advanced persistent threat

Security researchers have revealed the existence of an advanced persistent threat that has been making the rounds since April 2011. Backdoor.Hikit is a dangerous backdoor Trojan that will damage infected system and files. Usually, Backdoor. Hikit will open backdoor to allow remote attackers to...

Hivemail Webmail - Multiple Persistent Cross-Site Scripting Vulnerabilities

Hivemail Webmail - Multiple Persistent Cross-Site Scripting Vulnerabilities !/usr/bin/python ''' Exploit Title: Hivemail Webmail Multiple Stored XSS issues Date: 16/08/2012 Exploit Author: Shai rod @NightRang3r Vendor Homepage: http://www.hivemail.com/ Software Link:...

T-dah Webmail - Cross-Site Request Forgery Persistent Cross-Site Scripting

T-dah Webmail - Cross-Site Request Forgery Persistent Cross-Site Scripting ----------------------------------------------------------- / | | | | | | | | | | | | | | | | | / |/ |/ \ | | || | || | | | | / | ||\,|,||| ----------------------------------------------------------- T-dah Webmail CSRF &...

uebimiau webmail 2.7.2 - Persistent Cross-Site Scripting

uebimiau webmail 2.7.2 - Persistent Cross-Site Scripting !/usr/bin/python ''' Exploit Title: Uebimiau Webmail Stored XSS Date: 17/08/2012 Exploit Author: Shai rod @NightRang3r Vendor Homepage: http://www.uebimiau.org/ Software Link: http://www.uebimiau.org/downloads/uebimiau-2.7.2-any.zip Version...

Better WP Security v3.4.3 Wordpress - Web Vulnerabilities

Document Title: =============== Better WP Security v3.4.3 Wordpress - Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=691 Release Date: ============= 2012-08-20 Vulnerability Laboratory ID VL-ID: ==================================== 6...

Hivemail Webmail - Multiple Persistent Cross-Site Scripting Vulnerabilities

!/usr/bin/python ''' Exploit Title: Hivemail Webmail Multiple Stored XSS issues Date: 16/08/2012 Exploit Author: Shai rod @NightRang3r Vendor Homepage: http://www.hivemail.com/ Software Link: http://www.hivemail.com/data/HM141F103.rar Version: 1.41F Build 103 Gr33Tz: @aviadgolan , @benhayak,...

uebimiau webmail 2.7.2 - Persistent Cross-Site Scripting

!/usr/bin/python ''' Exploit Title: Uebimiau Webmail Stored XSS Date: 17/08/2012 Exploit Author: Shai rod @NightRang3r Vendor Homepage: http://www.uebimiau.org/ Software Link: http://www.uebimiau.org/downloads/uebimiau-2.7.2-any.zip Version: 2.7.2 Gr33Tz: @aviadgolan , @benhayak, @nirgoldshlager,...

IlohaMail Webmail - Persistent Cross-Site Scripting

IlohaMail Webmail - Persistent Cross-Site Scripting !/usr/bin/python ''' Exploit Title: IlohaMail Webmail Stored XSS. Date: 18/08/2012 Exploit Author: Shai rod @NightRang3r Vendor Homepage: http://sourceforge.net/projects/ilohamail/ Software Link:...