146 matches found
HTB22794: Path disclousure in Pixelpost
Vulnerability ID: HTB22794 Reference: http://www.htbridge.ch/advisory/pathdisclousureinpixelpost.html Product: Pixelpost Vendor: Pixelpost http://www.pixelpost.org/ Vulnerable Version: 1.7.3 Vendor Notification: 11 January 2011 Vulnerability Type: Path disclousure Status: Awaiting Vendor Response...
Multiple Vulnerabilities in Pixelpost
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in Pixelpost which could be exploited to perform cross-site scripting attacks and disclose potentially sensitive information. 1 Cross-site scripting vulnerability in Pixelpost The vulnerability exists due to input...
PixelPost 1.7.3 Cross Site Request Forgery / Cross Site Scripting
1 +Exploit Title: pixelpostv1.7.3 Multiple vulnerabilities 0 0 +Date: 15/09/2010 1 1 +Author: Sweet 0 0 +Contact : [email protected] 0 1 +Software Link: http://www.pixelpost.org/ 0 0 +Download: http://www.pixelpost.org/ 1 1 +Version: 1.7.3 0 0 +Tested on: WinXp sp3 1 1 +Risk :Hight 0 0...
pixelpost v1.7.3 CSRF change admin password
Exploit for php platform in category web applications =========================================== pixelpost v1.7.3 CSRF change admin password =========================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\...
PixelPost 1.7.3 - Multiple Vulnerabilities
PixelPost 1.7.3 - Multiple Vulnerabilities 1 +Exploit Title: pixelpostv1.7.3 Multiple vulnerabilities 0 0 +Date: 15/09/2010 1 1 +Author: Sweet 0 0 +Contact : [email protected] 0 1 +Software Link: http://www.pixelpost.org/ 0 0 +Download: http://www.pixelpost.org/ 1 1 +Version: 1.7.3 0 0 +Tested...
PixelPost 1.7.3 - Multiple Vulnerabilities
1 +Exploit Title: pixelpostv1.7.3 Multiple vulnerabilities 0 0 +Date: 15/09/2010 1 1 +Author: Sweet 0 0 +Contact : [email protected] 0 1 +Software Link: http://www.pixelpost.org/ 0 0 +Download: http://www.pixelpost.org/ 1 1 +Version: 1.7.3 0 0 +Tested on: WinXp sp3 1 1 +Risk :Hight 0 0...
Pixelpost Add Admin Exploit (html)
Exploit for php platform in category web applications ================================== Pixelpost Add Admin Exploit html ================================== Exploit Title: Add Admin Exploit html Date: 06-06-2010 Author:Copyright 2006 Pixelpost.org Software Link: www.Pixelpost.org...
PixelPost 1.7.1 SQL Injection / XSS
=========================================== PixelPost Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 0 -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-1 + Discovered By : Inj3ct0r + Site : Inj3ct0r.com + support e-mail : submitatinj3ct0r.com...
CVE-2008-3365
Directory traversal vulnerability in index.php in Pixelpost 1.7.1 on Windows, when registerglobals is enabled, allows remote attackers to include and execute arbitrary local files via a .. dot dot in the languagefull parameter...
Directory traversal
Directory traversal vulnerability in index.php in Pixelpost 1.7.1 on Windows, when registerglobals is enabled, allows remote attackers to include and execute arbitrary local files via a .. dot dot in the languagefull parameter...
CVE-2008-3365
Directory traversal vulnerability in index.php in Pixelpost 1.7.1 on Windows, when registerglobals is enabled, allows remote attackers to include and execute arbitrary local files via a .. dot dot in the languagefull parameter...
CVE-2008-3365
Pixelpost 1.7.1 on Windows is affected by a directory traversal vulnerability in index.php that, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via a .. in the language_full parameter. Root cause is a path traversal in input handling; impact...
CVE-2008-3365
Directory traversal vulnerability in index.php in Pixelpost 1.7.1 on Windows, when registerglobals is enabled, allows remote attackers to include and execute arbitrary local files via a .. dot dot in the languagefull parameter...
[DSECRG-08-033] Local File Include Vulnerability in Pixelpost 1.7.1
Digital Security Research Group DSecRG Advisory DSECRG-08-033 Application: Pixelpost photoblog Versions Affected: 1.7.1 Vendor URL: http://www.pixelpost.org/ Bug: Local File Include Exploits: YES Reported: 22.07.2008 Vendor response: 23.07.2008 Solution: YES Date of Public Advisory: 28.07.2008...
PixelPost 1.7.1 (language_full) Local File Inclusion Vulnerability
No description provided by source. Digital Security Research Group DSecRG Advisory DSECRG-08-033 Application: Pixelpost photoblog Versions Affected: 1.7.1 Vendor URL: http://www.pixelpost.org/ Bug: Local File Include Exploits: YES Reported: 22.07.2008 Vendor response: 23.07.2008 Solution: YES Dat...
PixelPost 1.7.1 (language_full) Local File Inclusion Vulnerability
Exploit for unknown platform in category web applications ================================================================== PixelPost 1.7.1 languagefull Local File Inclusion Vulnerability ================================================================== Digital Security Research Group DSecRG...
DSECRG-08-033.txt
Digital Security Research Group DSecRG Advisory DSECRG-08-033 Application: Pixelpost photoblog Versions Affected: 1.7.1 Vendor URL: http://www.pixelpost.org/ Bug: Local File Include Exploits: YES Reported: 22.07.2008 Vendor response: 23.07.2008 Solution: YES Date of Public Advisory: 28.07.2008...
PixelPost 1.7.1 - language_full Local File Inclusion
PixelPost 1.7.1 - languagefull Local File Inclusion Digital Security Research Group DSecRG Advisory DSECRG-08-033 Application: Pixelpost photoblog Versions Affected: 1.7.1 Vendor URL: http://www.pixelpost.org/ Bug: Local File Include Exploits: YES Reported: 22.07.2008 Vendor response: 23.07.2008...
PixelPost 1.7.1 - 'language_full' Local File Inclusion
Digital Security Research Group DSecRG Advisory DSECRG-08-033 Application: Pixelpost photoblog Versions Affected: 1.7.1 Vendor URL: http://www.pixelpost.org/ Bug: Local File Include Exploits: YES Reported: 22.07.2008 Vendor response: 23.07.2008 Solution: YES Date of Public Advisory: 28.07.2008...
Pixelpost cross-site scripting vulnerability
Overview Pixelpost, an open source content management system used for photo albums, etc., contains a cross-site scripting vulnerability. Daiki Fukumori of Secure Sky Technology, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the vendors under Information Security Early Warnin...