Lucene search
+L

25 matches found

Packet Storm
Packet Storm
added 2015/03/22 12:0 a.m.30 views

WordPress Ajax Search Pro Remote Code Execution

------------------------------------------------------------------------------ WordPress ajax-search-pro Plugin Remote Code Execution ------------------------------------------------------------------------------ - Plugin Link:...

0.3AI score
Exploits0
wpexploit
wpexploit
added 2015/03/18 12:0 a.m.17 views

Ajax Search Pro <= 3.5 - Cross-Site Request Forgery (CSRF) Add User

The ajax-search-pro WordPress plugin was affected by a Cross-Site Request Forgery CSRF Add User security vulnerability. This will register an administrator with username "xADMIN" and password "xPASS": POST request to:...

1.8AI score
Exploits0References2
Patchstack
Patchstack
added 2015/03/18 12:0 a.m.14 views

WordPress Ajax Search Pro Plugin - Remote Code Execution

Because of this vulnerability, any registered user to execute any function he wants with 1st param set to array$POST. Solution Update the plugin...

3.2AI score
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
added 2015/03/18 12:0 a.m.11 views

Ajax Search Pro <= 3.5 - Cross-Site Request Forgery (CSRF) Add User

The ajax-search-pro WordPress plugin was affected by a Cross-Site Request Forgery CSRF Add User security vulnerability. PoC This will register an administrator with username "xADMIN" and password "xPASS": POST request to:...

2AI score
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2004/07/27 12:0 a.m.6 views

PT-2004-2957 · Isearch · Isearch +1

Name of the Vulnerable Software and Affected Versions: RiSearch version 1.0.01 RiSearch Pro version 3.2.06 Description: The issue allows remote attackers to use the show.pl script as an open proxy or read arbitrary local files by setting the url parameter to a http://, ftp://, or file:// URL...

9.8CVSS6.5AI score0.05703EPSS
Exploits1References11
Rows per page
Query Builder