Lucene search
+L

157 matches found

seebug.org
seebug.org
added 2014/07/01 12:0 a.m.26 views

WoW Roster <= 1.70 (/lib/phpbb.php) Remote File Include Vulnerability

No description provided by source. -------------------------------------------------------------------------------- Title : WoW Roster /lib/phpbb.php Remote File Include Vulnerability -------------------------------------------------------------------------------- Affected software description :...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.29 views

WoW Roster 1.5 hsList.php subdir Parameter Remote File Inclusion

No description provided by source. source: http://www.securityfocus.com/bid/19269/info WoW Roster is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. A successful exploit may allow unauthorized users to execute remote PHP scripts;...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.15 views

Joomla S5 Clan Roster com_s5clanroster (index.php, id param) - SQL Injection

No description provided by source. Joomla Component coms5clanroster Sql Injection Vulnerability ============================================================== .:. Author : AtT4CKxT3rR0r1ST [email protected] .:. Dork : inurl:coms5clanroster .:. Script :...

7.1AI score
Exploits0
RedHat Linux
RedHat Linux
added 2014/06/30 8:51 p.m.6 views

smack: IQ response spoofing

It was found that the ParseRoster component in the Smack XMPP API did not verify the From attribute of a roster-query IQ stanza. A remote attacker could use this flaw to spoof IQ responses...

5CVSS5.8AI score0.06242EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2014/06/30 8:51 p.m.8 views

smack: IQ response spoofing

It was found that the ParseRoster component in the Smack XMPP API did not verify the From attribute of a roster-query IQ stanza. A remote attacker could use this flaw to spoof IQ responses...

5CVSS5.8AI score0.06242EPSS
Exploits0References4
CVE
CVE
added 2014/04/30 10:0 a.m.64 views

CVE-2014-0364

CVE-2014-0364 affects Ignite Realtime Smack XMPP API: the ParseRoster component does not verify the From attribute of a roster-query IQ stanza, enabling remote spoofing of IQ responses. Documented in multiple sources (NVD entry and vendor advisories) and corroborated by Red Hat and IBM security b...

5CVSS8.8AI score0.06242EPSS
Exploits0References6Affected Software1
Hacker One
Hacker One
added 2014/04/07 11:30 p.m.32 views

Khan Academy: Stored XSS {dangerous?} https://www.khanacademy.org/coach/roster/?listId=allStudents

Hi, when you go to https://www.khanacademy.org/coach/roster/?listId=allStudents and press on add class you have the possebility to add a class obvious. when you name it " it will stay persistent. quite dangerous Best regards, Olivier Beg...

1.1AI score
Exploits0
OpenVAS
OpenVAS
added 2013/05/17 12:0 a.m.23 views

Joomla S5 Clan Roster com_s5clanroster 'id' Parameter SQLi Vulnerability

The S5 Clan Roster component for Joomla is prone to an SQL injection SQLi vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit late...

5.7AI score
Exploits0References2
exploitpack
exploitpack
added 2013/05/13 12:0 a.m.18 views

Joomla! Component com_s5clanroster - id SQL Injection

Joomla! Component coms5clanroster - id SQL Injection Joomla Component coms5clanroster Sql Injection Vulnerability ============================================================== .:. Author : AtT4CKxT3rR0r1ST [email protected] .:. Dork : inurl:"coms5clanroster" .:. Script :...

0.3AI score
Exploits0
Exploit DB
Exploit DB
added 2013/05/13 12:0 a.m.33 views

Joomla! Component com_s5clanroster - &#039;id&#039; SQL Injection

Joomla Component coms5clanroster Sql Injection Vulnerability ============================================================== .:. Author : AtT4CKxT3rR0r1ST [email protected] .:. Dork : inurl:"coms5clanroster" .:. Script : http://www.shape5.com/productdetails/clubextensions/s5clanroster.html === Exploit =...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2012/08/22 12:0 a.m.19 views

NBA.com Cross Site Scripting

Exploit Title: nba.com xss Date: 22.08.2012 Author: TayfunBasoglu Tested: BackTrack 5 Platform: Php ------------------------------------------------------------------ http://www.nba.com/games/gameInfo/teamRoster.html?team=XSS alert"TayfunBasoglu"...

Exploits0
Exploit DB
Exploit DB
added 2011/01/05 12:0 a.m.31 views

Openfire 3.6.4 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/45682/info Openfire is prone to multiple cross-site-scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2010/04/16 12:0 a.m.31 views

Joomla S5 Clan Roster Local File Inclusion

================================================================================================================== o Joomla Component S5 Clan Roster Local File Inclusion Vulnerability Software : coms5clanroster Vendor : http://www.shape5.com Author : AntiSecurity s4va Vrs-hCk NoGe OoNBoY Paman zx...

Exploits0
securityvulns
securityvulns
added 2007/02/15 12:0 a.m.32 views

ejabberd roster ODBC module vulnerability

No description provided...

10CVSS1.9AI score0.01808EPSS
Exploits0
OSV
OSV
added 2007/02/13 8:28 p.m.4 views

DEBIAN-CVE-2007-0903

Unspecified vulnerability in the modrosterodbc module in ejabberd before 1.1.3 has unknown impact and attack vectors...

10CVSS7AI score0.01808EPSS
Exploits0References1
Cvelist
Cvelist
added 2007/01/03 2:0 a.m.20 views

CVE-2006-6850

PHP remote file inclusion vulnerability in include.php in the Roster Module characterroster in Shadowed Portal 5.7 allows remote attackers to execute arbitrary PHP code via a URL in the modroot parameter...

7.5AI score0.02797EPSS
Exploits0References5
NVD
NVD
added 2006/12/31 5:0 a.m.14 views

CVE-2006-6850

PHP remote file inclusion vulnerability in include.php in the Roster Module characterroster in Shadowed Portal 5.7 allows remote attackers to execute arbitrary PHP code via a URL in the modroot parameter...

7.5CVSS7.5AI score0.02797EPSS
Exploits0References5
seebug.org
seebug.org
added 2006/12/26 12:0 a.m.12 views

Shadowed Portal Module Character Roster (mod_root) RFI Vulnerability

No description provided by source. =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Shadowed Portal 5.7. Roster Module modroot Remote File Include =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Found:...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2006/12/25 12:0 a.m.13 views

Shadowed Portal Module Character Roster - mod_root Remote File Inclusion

Shadowed Portal Module Character Roster - modroot Remote File Inclusion =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Shadowed Portal 5.7. Roster Module modroot Remote File Include...

0.1AI score
Exploits0
securityvulns
securityvulns
added 2006/12/25 12:0 a.m.45 views

Shadowed Portal 5.7. Roster Module &#40;mod_root&#41; Remote File Include

=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Shadowed Portal 5.7. Roster Module modroot Remote File Include =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Found: Cyber-Security.Org...

0.9AI score
Exploits0
Rows per page
Query Builder