Design/Logic Flaw

includes/User.php in MediaWiki before 1.19.12, 1.20.x and 1.21.x before 1.21.6, and 1.22.x before 1.22.3 terminates validation of a user token upon encountering the first incorrect character, which makes it easier for remote attackers to obtain access via a brute-force attack that relies on timin...

CVE-2014-2243

includes/User.php in MediaWiki before 1.19.12, 1.20.x and 1.21.x before 1.21.6, and 1.22.x before 1.22.3 terminates validation of a user token upon encountering the first incorrect character, which makes it easier for remote attackers to obtain access via a brute-force attack that relies on timin...

CVE-2014-2243

includes/User.php in MediaWiki before 1.19.12, 1.20.x and 1.21.x before 1.21.6, and 1.22.x before 1.22.3 terminates validation of a user token upon encountering the first incorrect character, which makes it easier for remote attackers to obtain access via a brute-force attack that relies on timin...

ecshop绕过原密码校验直接修改用户密码（安全隐患）

简要描述： 最新版本也存在此问题 详细说明： 该漏洞有个前提，需要会员系统整合ucenter 问题出在 user.php $action == 'acteditpassword' $oldpassword = isset$POST'oldpassword' ? trim$POST'oldpassword' : ''; $newpassword = isset$POST'newpassword' ? trim$POST'newpassword' : ''; $userid = isset$POST'uid' ? intval$POST'uid' : $userid; $code =...

Cells Blog 3.3跨站脚本和SQL注入漏洞

No description provided by source. 1 Reflective XSS on 'msg=' PoC: http://localhost/cells-v3-3/errmsg.php?msg= %3C%2Fp%3E%3Cscript%3Ealert%28%27XSS%27%29%3B%3C%2Fscript%3E%3Cp%3E Vulnerable Code: + errmsg.php ? echo "img src='images/error.gif'"; if isset$GET"msg"$msg=$GET"msg";else$msg=""; if...

Cells Blog 3.3 - XSS Reflected & Blind SQLite Injection Vulnerabilities

Exploit for php platform in category web applications + Exploit: Cells v3.3 XSS Reflected & Blind SQLite Injection + Author: vinicius777 + Contact: vinicius777 AT gmail @vinicius777 + version: Cells Blog 3.3 + Vendor Homepage: http://cells.tw + 14/01/2014 vendor contacted + 17/01/2014 no response...

Cells Blog 3.3 - Reflected Cross-Site Scripting / Blind SQLite Injection

Exploit: Cells v3.3 XSS Reflected & Blind SQLite Injection + Author: vinicius777 + Contact: vinicius777 AT gmail @vinicius777 + version: Cells Blog 3.3 + Vendor Homepage: http://cells.tw + 14/01/2014 vendor contacted + 17/01/2014 no response from vendor + 20/01/2014 no response from vendor +...

CVE-2012-6626

The CVE-2012-6626 entry concerns a SQL injection in verify-user.php of b2ePMS 1.0 where the username field can be exploited to execute arbitrary SQL commands. Affected software: b2ePMS 1.0 (verify-user.php). Underlying cause: input from the username field is not properly sanitized, enabling injec...

HDWiki 5.1 user.php SQL注入漏洞

No description provided by source...

Basic Forum by JM LLC - Multiple Vulnerabilities

Basic Forum by JM LLC - Multiple Vulnerabilities Dear Offensive Security, I have discovered some vulnerabilities in Basic Forum, developed by JM LLC. Best regards, Sp3ctrecore ADVISORY ================================================ Basic Forum by JM LLC - Multiple Vulnerabilities...

EASETHINK 1.4 /user.php SQL注入漏洞

易想团购是国内一款流行的团购管理系统软件，其v1.4版本/user.php文件代码第294行$REQUEST变量获取$id变量值，执行295行代码，拼接sql语句，执行sql语句，返回查询结果，执行代码第296-299行，判断返回结果是否为真，如果为真则执行代码第301-305行，登陆成功，执行代码第305行，拼接sql语句，其中的getclientip方法在，/system/common.php文件中定义，getclientip方法没有将值进行过滤。此过程导致任意用户登陆与SQL注入漏洞。 EASETHINK 1.4...

HDWiki 5.1 /control/user.php SQL注入漏洞

No description provided by source...

The latest wordpress proof absolute path method-vulnerability warning-the black bar safety net

Vulnerability file: /wp-includes/user.php...

Ecshop 2.7.3 user.php Sql注入

No description provided by source...

CVE-2011-5234

SQL injection vulnerability in user.php in Social Network Community 2 allows remote attackers to execute arbitrary SQL commands via the userId parameter...

Sql injection

SQL injection vulnerability in user.php in Social Network Community 2 allows remote attackers to execute arbitrary SQL commands via the userId parameter...

CVE-2011-5234

CVE-2011-5234 describes a SQL injection vulnerability in the file user.php of Social Network Community 2, exploitable via the userId parameter to allow remote execution of arbitrary SQL commands. The connected documents confirm the vulnerability type and affected component but do not provide reme...

CVE-2012-1602

user.php in NextBBS 0.6 allows remote attackers to bypass authentication and gain administrator access by setting the userkey cookie to 1...

CVE-2012-1602

CVE-2012-1602 affects NextBBS 0.6: a vulnerability in user.php allows remote attackers to bypass authentication and gain administrator access by setting the userkey cookie to 1. This is an authentication bypass in the web app, enabling privilege escalation without user interaction beyond manipula...

CVE-2011-5168

SQL injection vulnerability in user.php in Banana Dance before B.1.5 allows remote attackers to execute arbitrary SQL commands via the id parameter...