Lucene search
K

85 matches found

Patchstack
Patchstack
added 2011/04/26 12:0 a.m.9 views

WordPress Ajax Recent Posts Plugin 1.0.1 - Cross-Site Scripting

WordPress Ajax Recent Posts plugin's "do" parameter is prone to a cross-site scripting vulnerability. It fails to properly clean up user-supplied input. An attacker may execute arbitrary script code in the browser of an user in the context of the affected site. In this way the attacker can steal...

2.9AI score
Exploits0References1Affected Software1
htbridge
htbridge
added 2011/04/12 12:0 a.m.30 views

Cross-site Scripting (XSS) Vulnerability in WP-Ajax-Recent-Posts

High-Tech Bridge SA Security Research Lab has discovered vulnerability in WP-Ajax-Recent-Posts which could be exploited to perform cross-site scripting attacks. 1 Cross-site scripting XSS vulnerability in WP-Ajax-Recent-Posts The vulnerability exists due to input sanitation error in the "number"...

4.3CVSS6AI score
Exploits0Affected Software1
Packet Storm
Packet Storm
added 2010/08/11 12:0 a.m.35 views

MyBB TagCloud 2.0 Cross Site Scripting

==================================================== MYBB TagCloud 2.0 cross site scripting vulnerability ==================================================== Author: http://www.3ethicalhackers.com Discovered by: http://www.3ethicalhackers.com Original post: http://www.3ethicalhackers.com...

0.1AI score
Exploits0
Prion
Prion
added 2007/08/20 10:17 p.m.25 views

Code injection

The Drupal Project module before 5.x-1.0, 4.7.x-2.3, and 4.7.x-1.3 and Project issue tracking module before 5.x-1.0, 4.7.x-2.4, and 4.7.x-1.4 do not properly enforce permissions, which allows remote attackers to 1 obtain sensitive via the Tracker Module and the Recent posts page; 2 obtain project...

5CVSS6.7AI score0.01284EPSS
Exploits0References5Affected Software2
Drupal
Drupal
added 2007/08/20 12:0 a.m.10 views

Project and Project issue tracking - Access bypass

The Project and Project issue tracking modules provide a series of permissions to control access to projects and issues: "access projects", "access own projects", "access project issues" and "access own project issues". While these permissions correctly prevent users from viewing the entire proje...

6.6AI score
Exploits0References2
Rows per page
Query Builder