Lucene search
K

146 matches found

seebug.org
seebug.org
added 2014/07/01 12:0 a.m.17 views

Pixelpost 1.7.3 - Multiple POST Variables SQL Injection Vulnerability

No description provided by source. -------------------------------------------------------------------- Pixelpost 1.7.3 Multiple POST Variables SQL Injection Vulnerability Vendor: Pixelpost.org Product web page: http://www.pixelpost.org Affected version: 1.7.3 Summary: Pixelpost is an open-source...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2013/06/04 12:0 a.m.88 views

Pixelpost 1.7.3 Cross Site Scripting

Exploit Title: pixelpost 1.7.3 Cross Site Scripting Vulnerabilities Date: 06/03/2013 Author: Nikhalesh Singh Bhadoria Twitter: @nikhaleshsingh Download Link:http://www.pixelpost.org/ Versions Affected: pixelpost 1.7.3 Category:Xss...

7.4AI score
Exploits0
NVD
NVD
added 2011/09/24 12:55 a.m.11 views

CVE-2011-3792

Pixelpost 1.7.3 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by includes/functionsfeeds.php and certain other files...

5CVSS6.1AI score0.01229EPSS
Exploits0References3
Prion
Prion
added 2011/09/24 12:55 a.m.13 views

Information disclosure

Pixelpost 1.7.3 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by includes/functionsfeeds.php and certain other files...

5CVSS6.7AI score0.01229EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2011/09/24 12:0 a.m.16 views

CVE-2011-3792

Pixelpost 1.7.3 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by includes/functionsfeeds.php and certain other files...

6.1AI score0.01229EPSS
Exploits0References3
CVE
CVE
added 2011/09/24 12:0 a.m.34 views

CVE-2011-3792

Pixelpost 1.7.3 is affected by an information-disclosure vulnerability where remote attackers can obtain the installation path by directly requesting a PHP file, revealing path in an error message (e.g., includes/functions_feeds.php and related files). The issue is documented across multiple sour...

5CVSS6.3AI score0.01229EPSS
Exploits0References3Affected Software1
UbuntuCve
UbuntuCve
added 2011/02/25 5:0 p.m.21 views

CVE-2011-1100

Multiple SQL injection vulnerabilities in admin/index.php in Pixelpost 1.7.3 allow remote authenticated users to execute arbitrary SQL commands via the 1 findfid, 2 id, 3 selectfcat, 4 selectfmon, or 5 selectftag parameter in an images action...

6.5CVSS6.2AI score0.01297EPSS
Exploits2References1
Prion
Prion
added 2011/02/25 5:0 p.m.11 views

Sql injection

Multiple SQL injection vulnerabilities in admin/index.php in Pixelpost 1.7.3 allow remote authenticated users to execute arbitrary SQL commands via the 1 findfid, 2 id, 3 selectfcat, 4 selectfmon, or 5 selectftag parameter in an images action...

6.5CVSS8.8AI score0.01297EPSS
Exploits2References3Affected Software1
Cvelist
Cvelist
added 2011/02/25 4:0 p.m.19 views

CVE-2011-1100

Multiple SQL injection vulnerabilities in admin/index.php in Pixelpost 1.7.3 allow remote authenticated users to execute arbitrary SQL commands via the 1 findfid, 2 id, 3 selectfcat, 4 selectfmon, or 5 selectftag parameter in an images action...

8.1AI score0.01297EPSS
Exploits2References3
CVE
CVE
added 2011/02/25 4:0 p.m.44 views

CVE-2011-1100

Pixelpost 1.7.3 is affected by multiple SQL injection flaws in admin/index.php triggered by POST parameters (findfid, id, selectfcat, selectfmon, selectftag). The underlying issue is insufficient input sanitization, allowing remote or authenticated attackers to manipulate queries and potentially ...

6.5CVSS8.3AI score0.01297EPSS
Exploits2References3Affected Software1
0day.today
0day.today
added 2011/02/13 12:0 a.m.37 views

Pixelpost 1.7.3 Multiple POST Variables SQL Injection Vulnerability

Exploit for php platform in category web applications -------------------------------------------------------------------- Pixelpost 1.7.3 Multiple POST Variables SQL Injection Vulnerability Vendor: Pixelpost.org Product web page: http://www.pixelpost.org Affected version: 1.7.3 Summary: Pixelpos...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2011/02/12 12:0 a.m.22 views

PixelPost 1.7.3 - Multiple POST SQL Injections

-------------------------------------------------------------------- Pixelpost 1.7.3 Multiple POST Variables SQL Injection Vulnerability Vendor: Pixelpost.org Product web page: http://www.pixelpost.org Affected version: 1.7.3 Summary: Pixelpost is an open-source, standards-compliant, multi-lingua...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2011/02/12 12:0 a.m.29 views

PixelPost 1.7.3 - Multiple POST SQL Injections

PixelPost 1.7.3 - Multiple POST SQL Injections -------------------------------------------------------------------- Pixelpost 1.7.3 Multiple POST Variables SQL Injection Vulnerability Vendor: Pixelpost.org Product web page: http://www.pixelpost.org Affected version: 1.7.3 Summary: Pixelpost is an...

0.1AI score
Exploits0
Packet Storm
Packet Storm
added 2011/02/11 12:0 a.m.14 views

Pixelpost 1.7.3 Cross Site Scripting

-------------------------------------------------------------------- Pixelpost 1.7.3 Multiple Persistent Cross-Site Scripting Vulnerabilities Vendor: Pixelpost.org Product web page: http://www.pixelpost.org Affected version: 1.7.3 Summary: Pixelpost is an open-source, standards-compliant,...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2011/02/11 12:0 a.m.19 views

Pixelpost 1.7.3 SQL Injection

-------------------------------------------------------------------- Pixelpost 1.7.3 Multiple POST Variables SQL Injection Vulnerability Vendor: Pixelpost.org Product web page: http://www.pixelpost.org Affected version: 1.7.3 Summary: Pixelpost is an open-source, standards-compliant, multi-lingua...

Exploits0
Zero Science Lab
Zero Science Lab
added 2011/02/11 12:0 a.m.41 views

Pixelpost 1.7.3 Multiple POST Variables SQL Injection Vulnerability

Summary Pixelpost is an open-source, standards-compliant, multi-lingual, fully extensible photoblog application for the web. Anyone who has web-space that meets the requirements can download and use Pixelpost for free! Description Pixelpost is vulnerable to an SQL Injection attack when input is...

6.5CVSS5.9AI score0.01297EPSS
Exploits2
Zero Science Lab
Zero Science Lab
added 2011/02/11 12:0 a.m.22 views

Pixelpost 1.7.3 Multiple Persistent Cross-Site Scripting Vulnerabilities

Summary Pixelpost is an open-source, standards-compliant, multi-lingual, fully extensible photoblog application for the web. Anyone who has web-space that meets the requirements can download and use Pixelpost for free! Description Pixelpost is vulnerable to multiple cross-site scripting...

6AI score
Exploits0
securityvulns
securityvulns
added 2011/01/25 12:0 a.m.46 views

HTB22794: Path disclousure in Pixelpost

Vulnerability ID: HTB22794 Reference: http://www.htbridge.ch/advisory/pathdisclousureinpixelpost.html Product: Pixelpost Vendor: Pixelpost http://www.pixelpost.org/ Vulnerable Version: 1.7.3 Vendor Notification: 11 January 2011 Vulnerability Type: Path disclousure Status: Awaiting Vendor Response...

7AI score
Exploits0
securityvulns
securityvulns
added 2011/01/25 12:0 a.m.64 views

HTB22791: File Content Disclosure in Pixelpost

Vulnerability ID: HTB22791 Reference: http://www.htbridge.ch/advisory/filecontentdisclosureinpixelpost.html Product: Pixelpost Vendor: Pixelpost http://www.pixelpost.org/ Vulnerable Version: 1.7.3 Vendor Notification: 11 January 2011 Vulnerability Type: File Content Disclosure Status: Awaiting...

0.4AI score
Exploits0
securityvulns
securityvulns
added 2011/01/25 12:0 a.m.58 views

HTB22792: XSS in Pixelpost

Vulnerability ID: HTB22792 Reference: http://www.htbridge.ch/advisory/xssinpixelpost.html Product: Pixelpost Vendor: Pixelpost http://www.pixelpost.org/ Vulnerable Version: 1.7.3 Vendor Notification: 11 January 2011 Vulnerability Type: XSS Cross Site Scripting Status: Awaiting Vendor Response Ris...

0.5AI score
Exploits0
Rows per page
Query Builder