419 matches found
Schoolhos CMS v2.29 - Data Siswa SQL injection Vulnerability
Document Title: =============== Schoolhos CMS v2.29 - Data Siswa SQL injection Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1931 Release Date: ============= 2016-11-07 Vulnerability Laboratory ID VL-ID: ==================================...
Schoolhos CMS 2.29 - kelas SQL Injection
Schoolhos CMS 2.29 - kelas SQL Injection Document Title: =============== Schoolhos CMS v2.29 - kelas Data Siswa SQL Injection Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1931 Release Date: ============= 2016-11-07 Vulnerability Laborato...
GIU Gallery File 1.0.2 SQL Injection
GIU Gallery File 1.0.2 Upload SQL Injection Vulnerability ========================================================== Discovered by NA , NAattutanota.com ======================================== Description ============ Output and stored data will be path to image, title of link, link to image,...
RealEstate CMS 3.00.50 - Cross Site Web Vulnerability
RealEstate CMS is a web portal script designed for realty agents , realtor or brokers to sell , buy , trade , rent and letting their client's property through online. It is a web based Content Management System integrated web application platform developed in php, mysql used by real estate...
SQL injection vulnerability in the id parameter of the page of the digital newspaper system /www/index.php?mod=admin&con=adminuser&act=mypwdpost
Joy Reading Kiosk Digital Newspaper System is a digital newspaper WEB management system. There are SQL injection vulnerabilities in this product, the vulnerability URL is: /www/index.php?mod=admin&con=adminuser&act=mypwdpost, the vulnerability parameter is: id, POST method of injection, the...
Sophos XG Firewall (SF01V) Cross Site Scripting
Document Title: =============== Sophos XG Firewall SF01V - Persistent Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1734 ID: 5740075 Release Date: ============= 2016-04-25 Vulnerability Laboratory ID VL-ID:...
Notes v4.5 iOS - Arbitrary File Upload Vulnerability
Document Title: =============== Notes v4.5 iOS - Arbitrary File Upload Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1832 Release Date: ============= 2016-04-25 Vulnerability Laboratory ID VL-ID: ==================================== 1832...
AVAST #13 - Persistent Cross Site Scripting Vulnerability
Document Title: =============== AVAST 13 - Persistent Cross Site Scripting Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1623 Video: https://www.youtube.com/watch?v=08Ux7DUIfNo Release Date: ============= 2016-04-19 Vulnerability Laborato...
Trello: Cross site scripting in blog.trello.com
This is a cross site scripting vulnerability issue found in POST based method payload : post method service is set to be "alert1 vulenrable url : http://blog.trello.com/wp-admin/admin-ajax.php?action=essbselfpostcount&nonce=4ae59c16bc&postid=2460&service="alert1 Change this get request to post...
Uber: Reflected XSS POST method at partners.uber.com
A lack of proper input validation made it possible for an attacker to execute malicious JavaScript code on partners.uber.com. This reflected XSS would execute after making a POST request with an XSS payload in the path of the request. As a result, the server would directly insert the payload into...
SIDU 5.2 Cross Site Scripting
Exploit Title: SIDU 5.2 Database Web GUI Multiple XSS Vulnerabilities Date: 04.04.2016 Exploit Author: Ozer Goker Vendor Homepage: http://topnew.net/sidu/ Software Link: https://sourceforge.net/projects/sidu/files/sidu/sidu52.zip Version: app version 5.2 XSS details: XSS1 URL...
SIDU 5.3 Cross Site Scripting
Exploit Title: SIDU 5.3 Database Web GUI Multiple XSS Vulnerabilities Date: 04.04.2016 Exploit Author: Ozer Goker Vendor Homepage: http://topnew.net/sidu/ Software Link: https://sourceforge.net/projects/sidu/files/sidu/sidu53.zip Version: app version 5.3 XSS details: XSS1 URL...
Docker UI 0.10.0 Cross Site Scripting
Document Title: =============== Docker UI v0.10.0 - Multiple Persistent Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1803 Release Date: ============= 2016-03-29 Vulnerability Laboratory ID VL-ID: ==================================== 18...
WP External Links v1.80 - Cross Site Vulnerabilities
Document Title: =============== WP External Links v1.80 - Cross Site Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1788 Release Date: ============= 2016-03-23 Vulnerability Laboratory ID VL-ID: ==================================== 1788...
PHP local file inclusion vulnerability environment to build and use-vulnerability and early warning-the black bar safety net
0x00 description php local file inclusion vulnerability related to knowledge, the dark clouds on the earlier to have appropriate articles, lfi with phpinfo earliest by large foreign cattle raised, reference the following two articles. The use of the principle is to use the php post to upload file...
Chamlio LMS v1.10.2 - (Profile) Persistent Web Vulnerability
Document Title: =============== Chamlio LMS v1.10.2 - Profile Persistent Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1781 Release Date: ============= 2016-03-13 Vulnerability Laboratory ID VL-ID: ====================================...
eFront Learning CMS 3.6.15.6 Cross Site Scripting
Document Title: =============== eFront Learning 3.6.15.6 CMS - Forum Persistent Title Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1761 Release Date: ============= 2016-02-23 Vulnerability Laboratory ID VL-ID:...
eFront Learning 3.6.15.6 CMS - Persistent Web Vulnerability
Document Title: =============== eFront Learning 3.6.15.6 CMS - Persistent Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1761 Release Date: ============= 2016-02-22 Vulnerability Laboratory ID VL-ID: ===================================...
eFront Learning 3.6.15.6 CMS - Persistent Web Vulnerability
Document Title: =============== eFront Learning 3.6.15.6 CMS - Persistent Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1761 Release Date: ============= 2016-02-22 Vulnerability Laboratory ID VL-ID: ===================================...
InstantCoder 1.0 iOS - Multiple Vulnerabilities
InstantCoder 1.0 iOS - Multiple Vulnerabilities Document Title: =============== InstantCoder v1.0 iOS - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1738 Release Date: ============= 2016-02-22 Vulnerability Laboratory ID...