Lucene search
K

39 matches found

OSV
OSV
added 2024/09/03 7:38 p.m.6 views

MAL-2024-8709 Malicious code in e2e-testa (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 8ec4ca79a77c2b399e79be39ab60a8eab42926e9c82f1b14b6a8997038281030 The OpenSSF Package Analysis project identified 'e2e-testa' @ 1.0.0 npm as malicious. It is considered malicious because: - The package...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2022/09/23 12:0 a.m.276 views

Testa 3.5.1 Cross Site Scripting

Exploit Title: Testa 3.5.1 Online Test Management System - Reflected Cross-Site Scripting XSS Date: 28/08/2022 Exploit Author: Ashkan Moghaddas Vendor Homepage: https://testa.cc Software Link: https://download.aftab.cc/products/testa/Testawos2.0.1.zip Version: 3.5.1 Tested on: Windows/Linux Proof...

7.4AI score
Exploits0
0day.today
0day.today
added 2022/09/23 12:0 a.m.298 views

Testa 3.5.1 Online Test Management System - Reflected Cross-Site Scripting Vulnerability

Exploit Title: Testa 3.5.1 Online Test Management System - Reflected Cross-Site Scripting XSS Exploit Author: Ashkan Moghaddas Vendor Homepage: https://testa.cc Software Link: https://download.aftab.cc/products/testa/Testawos2.0.1.zip Version: 3.5.1 Tested on: Windows/Linux Proof of Concept: 1-...

0.2AI score
Exploits0
Exploit DB
Exploit DB
added 2022/09/23 12:0 a.m.97 views

Testa 3.5.1 Online Test Management System - Reflected Cross-Site Scripting (XSS)

Exploit Title: Testa 3.5.1 Online Test Management System - Reflected Cross-Site Scripting XSS Date: 28/08/2022 Exploit Author: Ashkan Moghaddas Vendor Homepage: https://testa.cc Software Link: https://download.aftab.cc/products/testa/Testawos2.0.1.zip Version: 3.5.1 Tested on: Windows/Linux Proof...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2020/12/04 12:0 a.m.876 views

Testa Online Test Management System 3.4.7 SQL Injection

Exploit Title: Testa Online Test Management System 3.4.7 - 'q' SQL Injection Date: 2020-07-21 Google Dork: N/A Exploit Author: Ultra Security Team Team Members: Ashkan Moghaddas , AmirMohammad Safari , Behzad Khalifeh , Milad Ranjbar Vendor Homepage: https://testa.cc Version: v3.4.7 Tested on:...

0.6AI score
Exploits0
Exploit DB
Exploit DB
added 2020/12/04 12:0 a.m.948 views

Testa Online Test Management System 3.4.7 - 'q' SQL Injection

Exploit Title: Testa Online Test Management System 3.4.7 - 'q' SQL Injection Date: 2020-07-21 Google Dork: N/A Exploit Author: Ultra Security Team Team Members: Ashkan Moghaddas , AmirMohammad Safari , Behzad Khalifeh , Milad Ranjbar Vendor Homepage: https://testa.cc Version: v3.4.7 Tested on:...

7.4AI score
Exploits0
Kitploit
Kitploit
added 2019/11/14 9:0 p.m.96 views

Rainbow Crackalack - Rainbow Table Generation And Lookup Tools

This project produces open-source code to generate rainbow tables as well as use them to look up password hashes. While the current release only supports NTLM, future releases aim to support MD5, SHA-1, SHA-256, and possibly more. Both Linux and Windows are supported! For more information, see th...

7.6AI score
Exploits0References1
NVD
NVD
added 2013/11/26 4:55 p.m.7 views

CVE-2013-6873

SQL injection vulnerability in Testa Online Test Management System OTMS 2.0.0.2 allows remote attackers to execute arbitrary SQL commands via the testid parameter...

7.5CVSS8.4AI score0.02292EPSS
Exploits1References4
Prion
Prion
added 2013/11/26 4:55 p.m.9 views

Sql injection

SQL injection vulnerability in Testa Online Test Management System OTMS 2.0.0.2 allows remote attackers to execute arbitrary SQL commands via the testid parameter...

7.5CVSS9.1AI score0.02292EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2013/11/26 4:0 p.m.15 views

CVE-2013-6873

SQL injection vulnerability in Testa Online Test Management System OTMS 2.0.0.2 allows remote attackers to execute arbitrary SQL commands via the testid parameter...

8.4AI score0.02292EPSS
Exploits1References4
CVE
CVE
added 2013/11/26 4:0 p.m.42 views

CVE-2013-6873

CVE-2013-6873 affects Testa Online Test Management System (OTMS) 2.0.0.2. The vulnerability is an SQL injection in the test_id parameter that allows remote attackers to execute arbitrary SQL commands. Evidence in multiple feeds confirms the same description, including NVD entries. A CIRCL sightin...

7.5CVSS8.7AI score0.02292EPSS
Exploits1References4Affected Software1
0day.today
0day.today
added 2013/11/17 12:0 a.m.29 views

Testa Online Test Management SQL Injection Vulnerability

Testa Online Test Management suffers from a remote SQL injection vulnerability that allows for login bypass. Note that this advisory has site-specific information. Exploit Title : Testa Online Test Management Sql Injection / Login page Bypass Exploit Author : Ashiyane Digital Security Team Vendor...

8.1AI score
Exploits0
Packet Storm
Packet Storm
added 2013/11/15 12:0 a.m.23 views

Testa Online Test Management SQL Injection

Exploit Title : Testa Online Test Management Sql Injection / Login page Bypass Exploit Author : Ashiyane Digital Security Team Vendor Homepage : http://testa.cc/ Software Link Download : http://download.aftab.cc/products/testa/Testawos2.0.0.2.zip Google Dork : intitle:Testa Online Test Management...

0.5AI score
Exploits0
exploitpack
exploitpack
added 2013/11/13 12:0 a.m.14 views

Testa OTMS - Multiple SQL Injections

Testa OTMS - Multiple SQL Injections source: https://www.securityfocus.com/bid/63773/info Testa OTMS is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied input before using it in an SQL query. An attacker can exploit these issues by manipulati...

0.5AI score
Exploits0
Exploit DB
Exploit DB
added 2013/11/13 12:0 a.m.24 views

Testa OTMS - Multiple SQL Injections

source: https://www.securityfocus.com/bid/63773/info Testa OTMS is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied input before using it in an SQL query. An attacker can exploit these issues by manipulating the SQL query logic to carry out...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2006/04/22 12:0 a.m.51 views

Rapid7 Advisory R7-0023: Symantec Scan Engine File Disclosure Vulnerability

Rapid7, LLC Security Advisory Rapid7 Advisory R7-0023 Symantec Scan Engine File Disclosure Vulnerability Published: April 21, 2006 Revision: 1.0 http://www.rapid7.com/advisories/R7-0023.html CVE: CVE-2006-0232 1. Affected systems: KNOWN VULNERABLE: o Symantec Scan Engine v5.0.0.24 KNOWN FIXED: o...

5CVSS6.7AI score0.02402EPSS
Exploits1
CVE
CVE
added 2005/08/05 4:0 a.m.48 views

CVE-2002-2095

CVE-2002-2095 affects the Joe Testa hellbent 01 webserver. The vulnerability allows attackers to read files listed in the hellbent.prefs by creating a similarly named file in the web root (e.g., using index.webroot or index.ipallow). The NVD entry reports a network-accessible issue with partial c...

5CVSS6.9AI score0.01774EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2005/08/05 4:0 a.m.19 views

CVE-2002-2095

Joe Testa hellbent 01 webserver allows attackers to read files that are specified in the hellbent.prefs file by creating a file with a similar name in the web root, as demonstrated using 1 index.webroot and 2 index.ipallow...

6.5AI score0.01774EPSS
Exploits1References3
NVD
NVD
added 2002/12/31 5:0 a.m.15 views

CVE-2002-2095

Joe Testa hellbent 01 webserver allows attackers to read files that are specified in the hellbent.prefs file by creating a file with a similar name in the web root, as demonstrated using 1 index.webroot and 2 index.ipallow...

5CVSS6.5AI score0.01774EPSS
Exploits1References3
Rows per page
Query Builder