Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in eXtplorer 2.1.3, when used as a component for Joomla!, allow remote attackers to inject arbitrary web script or HTML via the PATHINFO to 1 application.js.php in scripts/ or 2 admin.php, 3 copymove.php, 4 functions.php, 5 header.php, or 6...

Debian: Security Advisory (DSA-2882-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Joomla Freichat Cross Site Scripting

Hello, Multiple cross-site scripting XSS vulnerabilities in Freichat component for Joomla! allow remote attackers to inject arbitrary web script or HTML code via 1 the id or xhash parameters to /client/chat.php or 2 the toname parameter to /client/plugins/upload/upload.php. File: /client/chat.php...

WordPress < 3.3.3 / 3.4.0 Multiple Vulnerabilities

According to its version number, the WordPress install hosted on the remote web server is affected by the following vulnerabilities : - A cross-site scripting flaw exists in the 'edit-tags.php' script where it does not validate the 'slug' parameter upon submission. This could allow a remote...

FlashChat 6.0.2 &lt; 6.0.8 - Arbitrary File Upload

Exploit Title: FlashChat File Upload Vulnerability Google Dork: intitle:FlashChat v6.0.8 Date: 02.10.2013 Exploit Author: x-hayben21 Vendor Homepage: www.punish3r.com Software Link: http://www.tufat.com/script2.htm Version: v6.0.8, v6.0.2, v6.0.4, v6.0.5, v6.0.6, v6.0.7, Tested on: Windows, PHP 5...

Western Digital Arkeia Remote Code Execution Vulnerability

This Metasploit module exploits a vulnerability found in Western Digital Arkeia Appliance version 10.0.10 and lower. By abusing the upload.php file from the scripts directory, a malicious user can upload arbitrary code to the ApplianceUpdate file in the temp directory without any authentication...

PolarPearCms PHP File Upload Vulnerability

Exploit for php platform in category web applications This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...

StartMarketplace File Upload Vulnerability

Exploit for php platform in category web applications 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 +...

Magix CMS 'upload.php'arbitrary file upload vulnerability-vulnerability warning-the black bar safety net

Magix CMS 'upload.php'arbitrary file upload vulnerability Release date: 2012-06-29 Update date: 2012-07-03 Affected system: Magix CMS Magix CMS 2.3.5 Description: -------------------------------------------------------------------------------- BUGTRAQ ID: 5 4 2 5 4 Magix CMS is open source conten...

CVE-2012-3814

CVE-2012-3814 affects the Font Uploader WordPress plugin (version 1.2.4). The vulnerability is an unrestricted file upload in font-upload.php, enabling remote attackers to upload a PHP file with a .php.ttf extension and then access it under font-uploader/fonts, leading to arbitrary PHP code execu...

CVE-2012-3576

The CVE-2012-3576 issue affects the WordPress wpStoreCart plugin (notably versions 2.5.27–2.5.29). It is an Arbitrary File Upload vulnerability in upload.php that allows an attacker to upload a file with an executable extension and then access it via uploads/wpstorecart to execute code on the ser...

Joomla Art Uploader 1.0.1 Shell Upload

1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : 1337day.com 0 1 + Support e-mail :...

WordPress Omni Secure Files Plugin 'upload.php' Arbitrary File Upload Vulnerability

WordPress Omni Secure Files Plugin is prone to file upload vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

WordPress Plugin Content Flow 3D 1.0.0 - Arbitrary File Upload

WordPress Plugin Content Flow 3D 1.0.0 - Arbitrary File Upload Exploit Title: Wordpress content-flow3d Arbitrary File Upload Google Dork: inurl:plugins/content-flow3d/ Date: 10June2012 Exploit Author: g11tch Vendor Homepage: http://wordpress.org/extend/plugins/content-flow3d/ Software Link:...

WordPress Plugin Content Flow 3D 1.0.0 - Arbitrary File Upload

Exploit Title: Wordpress content-flow3d Arbitrary File Upload Google Dork: inurl:plugins/content-flow3d/ Date: 10June2012 Exploit Author: g11tch Vendor Homepage: http://wordpress.org/extend/plugins/content-flow3d/ Software Link: downloads.wordpress.org/plugin/content-flow3d.zip Version: 1.0.0...

Wordpress Plugins - Yet Another Simple Slideshow (YASS) Arbitrary File Upload

Exploit for php platform in category web applications 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 +...

fckeditor 2.4.3 upload.php PHP环境下任意文件上传漏洞

No description provided by source...

WordPress PDF And Print Button Joliprint 1.3.0 Cross Site Scripting

Hi We have used our tool, THAPS, to identify vulnerabilities in this WordPress plugin. We have confirmed at least one of the reported vulnerabilities and created a working exploit located below. Attached is one or more log files containing the output of our tool, identifying the location of the...

WordPress 3.3.1 Post-Auth Information Disclosure

TITLE ....... Wordpress 3.3.1 post-auth information disclosure .... DATE ........ 17.02.2012 .......................................... AUTOHR ...... http://hauntit.blogspot.com ......................... SOFT LINK ... http://wordpress.org ................................ VERSION ..... 1.0.0...

ewebeditor(PHP) Ver 3.8 present an arbitrary file upload 0day-vulnerability warning-the black bar safety net

titleeWebeditoR3. 8 for php any file on the EXP/title form action=”" method=post enctype=”multipart/form-data” INPUT TYPE="hidden" name="MAXFILESIZE" value="5 1 2 0 0 0" URL:input type=text name=url value=”http://www.sitedirsec.com/ewebeditor/” size=1 0 0br INPUT TYPE=”hidden” name=”aStyle1 2”...