450 matches found
PT-2020-13530 · Magento · Form Builder +1
Name of the Vulnerable Software and Affected Versions: Form Builder version 2.1.0 for Magento Description: The issue concerns multiple XSS problems that can be exploited against Magento 2 admin accounts. This can be achieved via the Current url or email field, or the User-Agent HTTP header...
Victor CMS 1.0 - 'add_user' Persistent Cross-Site Scripting
Exploit Title: Victor CMS 1.0 - 'adduser' Persistent Cross-Site Scripting Google Dork: N/A Date: 2020-05-23 Exploit Author: Nitya Nand Vendor Homepage: https://github.com/VictorAlagwu/CMSsite Software Link: https://github.com/VictorAlagwu/CMSsite/archive/master.zip Version: 1.0 Tested on: Linux C...
Denial Of Service (DoS)
uap-core is vulnerable to denial of service. A remote attacker is able to crash the application from excess resource consumption due to overlapping capture groups, by passing malicious values within the User-Agent header in a HTTP request for parsing...
PT-2020-18339 · Uap · Uap-Core
Name of the Vulnerable Software and Affected Versions: uap-core versions prior to 0.7.3 Description: The issue allows remote attackers to overload a server by setting the User-Agent header in an HTTPS request to maliciously crafted long strings. This is due to some regexes being vulnerable to...
TP-Link Wi-Fi extender User-Agent Header Injection CVE-2019-7406
A pre-authentication command injection vulnerability in TP-Link Wi-Fi extenders allows commands to be executed as root. The injection occurs when the User-Agent header of a request is passed to an execve system call. TP-Link RE365 Wi-Fi extender with firmware version 1.0.2, build 20180213 Rel...
Design/Logic Flaw
FUDForum 3.0.9 is vulnerable to Stored XSS via the User-Agent HTTP header. This may result in remote code execution. An attacker can use a user account to fully compromise the system via a GET request. When the admin visits user information under "User Manager" in the control panel, the payload...
CVE-2019-17488
b3log Symphony aka Sym before 3.6.0 has XSS via the HTTP User-Agent header...
CVE-2019-17488
b3log Symphony aka Sym before 3.6.0 has XSS via the HTTP User-Agent header...
CVE-2015-9430
The crazy-bone plugin before 0.6.0 for WordPress has XSS via the User-Agent HTTP header...
CVE-2016-10964
The dwnldr plugin before 1.01 for WordPress has XSS via the User-Agent HTTP header...
CVE-2016-10964
The dwnldr plugin before 1.01 for WordPress has XSS via the User-Agent HTTP header...
UBUNTU-CVE-2019-16197
In htdocs/societe/card.php in Dolibarr 10.0.1, the value of the User-Agent HTTP header is copied into the HTML document as plain text between tags, leading to XSS...
CVE-2016-10964
The dwnldr plugin before 1.01 for WordPress has XSS via the User-Agent HTTP header...
PT-2019-14573 · Dolibarr · Dolibarr
Name of the Vulnerable Software and Affected Versions: Dolibarr version 10.0.1 Description: The issue concerns the copying of the User-Agent HTTP header value into an HTML document as plain text between tags, leading to a potential XSS issue. Recommendations: For Dolibarr version 10.0.1, consider...
CVE-2014-10394
The rich-counter plugin before 1.2.0 for WordPress has JavaScript injection via a User-Agent header...
Code injection
The rich-counter plugin before 1.2.0 for WordPress has JavaScript injection via a User-Agent header...
CVE-2014-10394
The rich-counter plugin before 1.2.0 for WordPress has JavaScript injection via a User-Agent header...
CVE-2014-10394
The CVE-2014-10394 entry affects the WordPress Rich Counter plugin prior to version 1.2.0. The vulnerability is a JavaScript injection resulting from a crafted User-Agent header, as documented across multiple sources (NVD entry and vendor/Red Hat references). The practical impact is an injection ...
CVE-2019-13086
core/MYSecurity.php in CSZ CMS 1.2.2 before 2019-06-20 has member/login/check SQL injection by sending a crafted HTTP User-Agent header and omitting the csrfcsz parameter...
Sql injection
core/MYSecurity.php in CSZ CMS 1.2.2 before 2019-06-20 has member/login/check SQL injection by sending a crafted HTTP User-Agent header and omitting the csrfcsz parameter...