Lucene search
K

146 matches found

securityvulns
securityvulns
added 2011/01/25 12:0 a.m.46 views

HTB22794: Path disclousure in Pixelpost

Vulnerability ID: HTB22794 Reference: http://www.htbridge.ch/advisory/pathdisclousureinpixelpost.html Product: Pixelpost Vendor: Pixelpost http://www.pixelpost.org/ Vulnerable Version: 1.7.3 Vendor Notification: 11 January 2011 Vulnerability Type: Path disclousure Status: Awaiting Vendor Response...

7AI score
Exploits0
htbridge
htbridge
added 2011/01/11 12:0 a.m.29 views

Multiple Vulnerabilities in Pixelpost

High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in Pixelpost which could be exploited to perform cross-site scripting attacks and disclose potentially sensitive information. 1 Cross-site scripting vulnerability in Pixelpost The vulnerability exists due to input...

4.3CVSS6.6AI score
Exploits0Affected Software1
Packet Storm
Packet Storm
added 2010/09/16 12:0 a.m.23 views

PixelPost 1.7.3 Cross Site Request Forgery / Cross Site Scripting

1 +Exploit Title: pixelpostv1.7.3 Multiple vulnerabilities 0 0 +Date: 15/09/2010 1 1 +Author: Sweet 0 0 +Contact : [email protected] 0 1 +Software Link: http://www.pixelpost.org/ 0 0 +Download: http://www.pixelpost.org/ 1 1 +Version: 1.7.3 0 0 +Tested on: WinXp sp3 1 1 +Risk :Hight 0 0...

7.4AI score
Exploits0
0day.today
0day.today
added 2010/09/16 12:0 a.m.24 views

pixelpost v1.7.3 CSRF change admin password

Exploit for php platform in category web applications =========================================== pixelpost v1.7.3 CSRF change admin password =========================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2010/09/15 12:0 a.m.14 views

PixelPost 1.7.3 - Multiple Vulnerabilities

PixelPost 1.7.3 - Multiple Vulnerabilities 1 +Exploit Title: pixelpostv1.7.3 Multiple vulnerabilities 0 0 +Date: 15/09/2010 1 1 +Author: Sweet 0 0 +Contact : [email protected] 0 1 +Software Link: http://www.pixelpost.org/ 0 0 +Download: http://www.pixelpost.org/ 1 1 +Version: 1.7.3 0 0 +Tested...

7.6AI score
Exploits0
Exploit DB
Exploit DB
added 2010/09/15 12:0 a.m.22 views

PixelPost 1.7.3 - Multiple Vulnerabilities

1 +Exploit Title: pixelpostv1.7.3 Multiple vulnerabilities 0 0 +Date: 15/09/2010 1 1 +Author: Sweet 0 0 +Contact : [email protected] 0 1 +Software Link: http://www.pixelpost.org/ 0 0 +Download: http://www.pixelpost.org/ 1 1 +Version: 1.7.3 0 0 +Tested on: WinXp sp3 1 1 +Risk :Hight 0 0...

7AI score
Exploits0
0day.today
0day.today
added 2010/06/06 12:0 a.m.39 views

Pixelpost Add Admin Exploit (html)

Exploit for php platform in category web applications ================================== Pixelpost Add Admin Exploit html ================================== Exploit Title: Add Admin Exploit html Date: 06-06-2010 Author:Copyright 2006 Pixelpost.org Software Link: www.Pixelpost.org...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2009/09/01 12:0 a.m.36 views

PixelPost 1.7.1 SQL Injection / XSS

=========================================== PixelPost Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 0 -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-1 + Discovered By : Inj3ct0r + Site : Inj3ct0r.com + support e-mail : submitatinj3ct0r.com...

7.4AI score
Exploits0
UbuntuCve
UbuntuCve
added 2008/07/30 5:41 p.m.20 views

CVE-2008-3365

Directory traversal vulnerability in index.php in Pixelpost 1.7.1 on Windows, when registerglobals is enabled, allows remote attackers to include and execute arbitrary local files via a .. dot dot in the languagefull parameter...

6.8CVSS6.1AI score0.03796EPSS
Exploits1References1
Prion
Prion
added 2008/07/30 5:41 p.m.13 views

Directory traversal

Directory traversal vulnerability in index.php in Pixelpost 1.7.1 on Windows, when registerglobals is enabled, allows remote attackers to include and execute arbitrary local files via a .. dot dot in the languagefull parameter...

6.8CVSS7.6AI score0.03796EPSS
Exploits1References8Affected Software1
NVD
NVD
added 2008/07/30 5:41 p.m.16 views

CVE-2008-3365

Directory traversal vulnerability in index.php in Pixelpost 1.7.1 on Windows, when registerglobals is enabled, allows remote attackers to include and execute arbitrary local files via a .. dot dot in the languagefull parameter...

6.8CVSS7.1AI score0.03796EPSS
Exploits1References8
CVE
CVE
added 2008/07/30 5:0 p.m.42 views

CVE-2008-3365

Pixelpost 1.7.1 on Windows is affected by a directory traversal vulnerability in index.php that, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via a .. in the language_full parameter. Root cause is a path traversal in input handling; impact...

6.8CVSS7.1AI score0.03796EPSS
Exploits1References8Affected Software1
Cvelist
Cvelist
added 2008/07/30 5:0 p.m.22 views

CVE-2008-3365

Directory traversal vulnerability in index.php in Pixelpost 1.7.1 on Windows, when registerglobals is enabled, allows remote attackers to include and execute arbitrary local files via a .. dot dot in the languagefull parameter...

7.1AI score0.03796EPSS
Exploits1References8
securityvulns
securityvulns
added 2008/07/29 12:0 a.m.53 views

[DSECRG-08-033] Local File Include Vulnerability in Pixelpost 1.7.1

Digital Security Research Group DSecRG Advisory DSECRG-08-033 Application: Pixelpost photoblog Versions Affected: 1.7.1 Vendor URL: http://www.pixelpost.org/ Bug: Local File Include Exploits: YES Reported: 22.07.2008 Vendor response: 23.07.2008 Solution: YES Date of Public Advisory: 28.07.2008...

Exploits0
seebug.org
seebug.org
added 2008/07/29 12:0 a.m.80 views

PixelPost 1.7.1 (language_full) Local File Inclusion Vulnerability

No description provided by source. Digital Security Research Group DSecRG Advisory DSECRG-08-033 Application: Pixelpost photoblog Versions Affected: 1.7.1 Vendor URL: http://www.pixelpost.org/ Bug: Local File Include Exploits: YES Reported: 22.07.2008 Vendor response: 23.07.2008 Solution: YES Dat...

7.1AI score
Exploits0
0day.today
0day.today
added 2008/07/28 12:0 a.m.53 views

PixelPost 1.7.1 (language_full) Local File Inclusion Vulnerability

Exploit for unknown platform in category web applications ================================================================== PixelPost 1.7.1 languagefull Local File Inclusion Vulnerability ================================================================== Digital Security Research Group DSecRG...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2008/07/28 12:0 a.m.38 views

DSECRG-08-033.txt

Digital Security Research Group DSecRG Advisory DSECRG-08-033 Application: Pixelpost photoblog Versions Affected: 1.7.1 Vendor URL: http://www.pixelpost.org/ Bug: Local File Include Exploits: YES Reported: 22.07.2008 Vendor response: 23.07.2008 Solution: YES Date of Public Advisory: 28.07.2008...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2008/07/28 12:0 a.m.29 views

PixelPost 1.7.1 - language_full Local File Inclusion

PixelPost 1.7.1 - languagefull Local File Inclusion Digital Security Research Group DSecRG Advisory DSECRG-08-033 Application: Pixelpost photoblog Versions Affected: 1.7.1 Vendor URL: http://www.pixelpost.org/ Bug: Local File Include Exploits: YES Reported: 22.07.2008 Vendor response: 23.07.2008...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2008/07/28 12:0 a.m.48 views

PixelPost 1.7.1 - 'language_full' Local File Inclusion

Digital Security Research Group DSecRG Advisory DSECRG-08-033 Application: Pixelpost photoblog Versions Affected: 1.7.1 Vendor URL: http://www.pixelpost.org/ Bug: Local File Include Exploits: YES Reported: 22.07.2008 Vendor response: 23.07.2008 Solution: YES Date of Public Advisory: 28.07.2008...

7.4AI score
Exploits0
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2008/06/10 4:57 a.m.1 views

Pixelpost cross-site scripting vulnerability

Overview Pixelpost, an open source content management system used for photo albums, etc., contains a cross-site scripting vulnerability. Daiki Fukumori of Secure Sky Technology, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the vendors under Information Security Early Warnin...

2.6CVSS6AI score
Exploits0References2
Rows per page
Query Builder