39 matches found
MAL-2024-8709 Malicious code in e2e-testa (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 8ec4ca79a77c2b399e79be39ab60a8eab42926e9c82f1b14b6a8997038281030 The OpenSSF Package Analysis project identified 'e2e-testa' @ 1.0.0 npm as malicious. It is considered malicious because: - The package...
Testa 3.5.1 Cross Site Scripting
Exploit Title: Testa 3.5.1 Online Test Management System - Reflected Cross-Site Scripting XSS Date: 28/08/2022 Exploit Author: Ashkan Moghaddas Vendor Homepage: https://testa.cc Software Link: https://download.aftab.cc/products/testa/Testawos2.0.1.zip Version: 3.5.1 Tested on: Windows/Linux Proof...
Testa 3.5.1 Online Test Management System - Reflected Cross-Site Scripting Vulnerability
Exploit Title: Testa 3.5.1 Online Test Management System - Reflected Cross-Site Scripting XSS Exploit Author: Ashkan Moghaddas Vendor Homepage: https://testa.cc Software Link: https://download.aftab.cc/products/testa/Testawos2.0.1.zip Version: 3.5.1 Tested on: Windows/Linux Proof of Concept: 1-...
Testa 3.5.1 Online Test Management System - Reflected Cross-Site Scripting (XSS)
Exploit Title: Testa 3.5.1 Online Test Management System - Reflected Cross-Site Scripting XSS Date: 28/08/2022 Exploit Author: Ashkan Moghaddas Vendor Homepage: https://testa.cc Software Link: https://download.aftab.cc/products/testa/Testawos2.0.1.zip Version: 3.5.1 Tested on: Windows/Linux Proof...
Testa Online Test Management System 3.4.7 SQL Injection
Exploit Title: Testa Online Test Management System 3.4.7 - 'q' SQL Injection Date: 2020-07-21 Google Dork: N/A Exploit Author: Ultra Security Team Team Members: Ashkan Moghaddas , AmirMohammad Safari , Behzad Khalifeh , Milad Ranjbar Vendor Homepage: https://testa.cc Version: v3.4.7 Tested on:...
Testa Online Test Management System 3.4.7 - 'q' SQL Injection
Exploit Title: Testa Online Test Management System 3.4.7 - 'q' SQL Injection Date: 2020-07-21 Google Dork: N/A Exploit Author: Ultra Security Team Team Members: Ashkan Moghaddas , AmirMohammad Safari , Behzad Khalifeh , Milad Ranjbar Vendor Homepage: https://testa.cc Version: v3.4.7 Tested on:...
Rainbow Crackalack - Rainbow Table Generation And Lookup Tools
This project produces open-source code to generate rainbow tables as well as use them to look up password hashes. While the current release only supports NTLM, future releases aim to support MD5, SHA-1, SHA-256, and possibly more. Both Linux and Windows are supported! For more information, see th...
CVE-2013-6873
SQL injection vulnerability in Testa Online Test Management System OTMS 2.0.0.2 allows remote attackers to execute arbitrary SQL commands via the testid parameter...
Sql injection
SQL injection vulnerability in Testa Online Test Management System OTMS 2.0.0.2 allows remote attackers to execute arbitrary SQL commands via the testid parameter...
CVE-2013-6873
SQL injection vulnerability in Testa Online Test Management System OTMS 2.0.0.2 allows remote attackers to execute arbitrary SQL commands via the testid parameter...
CVE-2013-6873
CVE-2013-6873 affects Testa Online Test Management System (OTMS) 2.0.0.2. The vulnerability is an SQL injection in the test_id parameter that allows remote attackers to execute arbitrary SQL commands. Evidence in multiple feeds confirms the same description, including NVD entries. A CIRCL sightin...
Testa Online Test Management SQL Injection Vulnerability
Testa Online Test Management suffers from a remote SQL injection vulnerability that allows for login bypass. Note that this advisory has site-specific information. Exploit Title : Testa Online Test Management Sql Injection / Login page Bypass Exploit Author : Ashiyane Digital Security Team Vendor...
Testa Online Test Management SQL Injection
Exploit Title : Testa Online Test Management Sql Injection / Login page Bypass Exploit Author : Ashiyane Digital Security Team Vendor Homepage : http://testa.cc/ Software Link Download : http://download.aftab.cc/products/testa/Testawos2.0.0.2.zip Google Dork : intitle:Testa Online Test Management...
Testa OTMS - Multiple SQL Injections
Testa OTMS - Multiple SQL Injections source: https://www.securityfocus.com/bid/63773/info Testa OTMS is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied input before using it in an SQL query. An attacker can exploit these issues by manipulati...
Testa OTMS - Multiple SQL Injections
source: https://www.securityfocus.com/bid/63773/info Testa OTMS is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied input before using it in an SQL query. An attacker can exploit these issues by manipulating the SQL query logic to carry out...
Rapid7 Advisory R7-0023: Symantec Scan Engine File Disclosure Vulnerability
Rapid7, LLC Security Advisory Rapid7 Advisory R7-0023 Symantec Scan Engine File Disclosure Vulnerability Published: April 21, 2006 Revision: 1.0 http://www.rapid7.com/advisories/R7-0023.html CVE: CVE-2006-0232 1. Affected systems: KNOWN VULNERABLE: o Symantec Scan Engine v5.0.0.24 KNOWN FIXED: o...
CVE-2002-2095
CVE-2002-2095 affects the Joe Testa hellbent 01 webserver. The vulnerability allows attackers to read files listed in the hellbent.prefs by creating a similarly named file in the web root (e.g., using index.webroot or index.ipallow). The NVD entry reports a network-accessible issue with partial c...
CVE-2002-2095
Joe Testa hellbent 01 webserver allows attackers to read files that are specified in the hellbent.prefs file by creating a file with a similar name in the web root, as demonstrated using 1 index.webroot and 2 index.ipallow...
CVE-2002-2095
Joe Testa hellbent 01 webserver allows attackers to read files that are specified in the hellbent.prefs file by creating a file with a similar name in the web root, as demonstrated using 1 index.webroot and 2 index.ipallow...