Lucene search
K

103 matches found

Cvelist
Cvelist
added 2018/04/16 5:0 p.m.21 views

CVE-2018-10135

iScripts eSwap v2.4 has Reflected XSS via the "catwiseproducts.php" catid parameter in the User Panel...

6AI score0.00692EPSS
Exploits1References1
CVE
CVE
added 2018/04/16 5:0 p.m.44 views

CVE-2018-10135

iScripts eSwap v2.4 contains a Reflected Cross-Site Scripting (XSS) vulnerability in the User Panel, exploitable via the catid parameter of catwiseproducts.php. The root cause is the lack of input sanitization/reflection of user-controlled data in server responses, enabling injection of arbitrary...

6.1CVSS5.9AI score0.00692EPSS
Exploits1References1Affected Software1
CNVD
CNVD
added 2017/12/28 12:0 a.m.3 views

PHP Scripts Mall Single Theater Booking Cross-Site Request Forgery Vulnerability

PHP Scripts Mall Single Theater Booking is an open source theater script. A cross-site request forgery vulnerability exists in PHP Scripts Mall Single Theater Booking. A remote attacker can use the admin/sitesettings.php file to change sensitive settings on the user panel, or even inject web scri...

8.8CVSS6.8AI score0.00456EPSS
Exploits1References1
NVD
NVD
added 2017/12/27 5:8 p.m.12 views

CVE-2017-17903

FS Lynda Clone has CSRF via user/editprofile, as demonstrated by adding content to the user panel...

8.8CVSS8.7AI score0.00456EPSS
Exploits1References1
Prion
Prion
added 2017/12/27 5:8 p.m.12 views

Cross site request forgery (csrf)

FS Lynda Clone has CSRF via user/editprofile, as demonstrated by adding content to the user panel...

6.8CVSS8.6AI score0.00456EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2017/12/26 10:0 p.m.45 views

CVE-2017-17930

The affected software is PHP Scripts Mall Professional Service Script. It contains a Cross-Site Request Forgery (CSRF) vulnerability exploitable via admin/general_settingupd.php, demonstrated by changing a setting in the user panel. The root cause and specific impact details are described across ...

8.8CVSS8.6AI score0.00505EPSS
Exploits1References1Affected Software1
0day.today
0day.today
added 2017/08/22 12:0 a.m.102 views

Bitcoin / Dogecoin Mining 1.0 SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Bitcoin,Dogecoin Mining 1.0 - Authentication Bypass Dork: N/A Date: 21.08.2017 Vendor Homepage: https://codecanyon.net/user/bousague Software Link: https://codecanyon.net/item/bitcoindogecoin-mining-php-script/20315581 Demo:...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2017/08/21 12:0 a.m.70 views

Bitcoin / Dogecoin Mining 1.0 SQL Injection

Exploit Title: Bitcoin,Dogecoin Mining 1.0 - Authentication Bypass Dork: N/A Date: 21.08.2017 Vendor Homepage: https://codecanyon.net/user/bousague Software Link: https://codecanyon.net/item/bitcoindogecoin-mining-php-script/20315581 Demo: http://test.z-files.site/ Version: 1.0 Category: Webapps...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2017/08/21 12:0 a.m.25 views

(Bitcoin Dogecoin) PHP Cloud Mining Script - Authentication Bypass

Bitcoin Dogecoin PHP Cloud Mining Script - Authentication Bypass Exploit Title: Bitcoin,Dogecoin Mining 1.0 - Authentication Bypass Dork: N/A Date: 21.08.2017 Vendor Homepage: https://codecanyon.net/user/bousague Software Link: https://codecanyon.net/item/bitcoindogecoin-mining-php-script/2031558...

0.1AI score
Exploits0
Packet Storm
Packet Storm
added 2017/08/19 12:0 a.m.27 views

Online Quiz Project 1.0 SQL Injection

Exploit Title: Online Quiz Project 1.0 - Multiple Vulnerabilities Dork: N/A Date: 17.08.2017 Vendor Homepage : http://surajkumar.in/ Software Link: http://surajkumar.in/product/online-quiz-project-php/ Demo: http://surajkumar.in/ Version: 1.0 Category: Webapps Tested on: WiN7x64/KaLiLinuXx64 CVE:...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2017/08/17 12:0 a.m.19 views

Online Quiz Project 1.0 - SQL Injection

Online Quiz Project 1.0 - SQL Injection Exploit Title: Online Quiz Project 1.0 - Multiple Vulnerabilities Dork: N/A Date: 17.08.2017 Vendor Homepage : http://surajkumar.in/ Software Link: http://surajkumar.in/product/online-quiz-project-php/ Demo: http://surajkumar.in/ Version: 1.0 Category:...

8.7AI score
Exploits0
Exploit DB
Exploit DB
added 2017/08/17 12:0 a.m.27 views

Online Quiz Project 1.0 - SQL Injection

Exploit Title: Online Quiz Project 1.0 - Multiple Vulnerabilities Dork: N/A Date: 17.08.2017 Vendor Homepage : http://surajkumar.in/ Software Link: http://surajkumar.in/product/online-quiz-project-php/ Demo: http://surajkumar.in/ Version: 1.0 Category: Webapps Tested on: WiN7x64/KaLiLinuXx64 CVE:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2015/08/24 12:0 a.m.118 views

Pligg CMS 2.0.2 - Cross-Site Request Forgery (Add Admin)

Admin input typ...

6.8CVSS6.6AI score0.01982EPSS
Exploits5
seebug.org
seebug.org
added 2014/11/13 12:0 a.m.16 views

X7 Chat 2.0.5 lib/message.php preg_replace() PHP Code Execution

No description provided by source. This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 Msf::Exploit::Remote Rank = ExcellentRanking include Msf::Exploit::Remote::HttpClient include...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/09/18 12:0 a.m.12 views

PhpOnlineChat 3.0 - XSS

No description provided by source. Exploit Title: phponlinechat xss Date: 5/9/2014 Exploit Author: N0 Feel Vendor Homepage: http://phponlinechat.com/phpchat Software Link: http://phponlinechat.com/chat-free-download.php Version: 3.0 Tested on: win7 php online chat suffer from xss in user panel -...

7.1AI score
Exploits0
0day.today
0day.today
added 2014/09/08 12:0 a.m.18 views

PhpOnlineChat 3.0 - XSS Vulnerability

Exploit for php platform in category web applications Exploit Title: phponlinechat xss Date: 5/9/2014 Exploit Author: N0 Feel Vendor Homepage: http://phponlinechat.com/phpchat Software Link: http://phponlinechat.com/chat-free-download.php Version: 3.0 Tested on: win7 php online chat suffer from x...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2014/09/07 12:0 a.m.9 views

PhpOnlineChat 3.0 - Cross-Site Scripting

PhpOnlineChat 3.0 - Cross-Site Scripting Exploit Title: phponlinechat xss Date: 5/9/2014 Exploit Author: N0 Feel Vendor Homepage: http://phponlinechat.com/phpchat Software Link: http://phponlinechat.com/chat-free-download.php Version: 3.0 Tested on: win7 php online chat suffer from xss in user...

6.8AI score
Exploits0
Packet Storm
Packet Storm
added 2014/09/07 12:0 a.m.17 views

PhpOnlineChat 3.0 Cross Site Scripting

Exploit Title: phponlinechat xss Date: 5/9/2014 Exploit Author: N0 Feel Vendor Homepage: http://phponlinechat.com/phpchat Software Link: http://phponlinechat.com/chat-free-download.php Version: 3.0 Tested on: win7 php online chat suffer from xss in user panel - register as user - go to :...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2014/09/07 12:0 a.m.19 views

PhpOnlineChat 3.0 - Cross-Site Scripting

Exploit Title: phponlinechat xss Date: 5/9/2014 Exploit Author: N0 Feel Vendor Homepage: http://phponlinechat.com/phpchat Software Link: http://phponlinechat.com/chat-free-download.php Version: 3.0 Tested on: win7 php online chat suffer from xss in user panel - register as user - go to :...

7AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.14 views

Ez Poll Hoster - Multiple XSS and CSRF Vulnerabilities

No description provided by source. ----------------------------------------------------------------------------------------------- Title: Ez Poll Hoster Multiple XSS and XSRF Vulnerabilities Author: Milos Zivanovic Email: milosz.securityatgmail.com Date: 14. December 2009...

7.1AI score
Exploits0
Rows per page
Query Builder