14 matches found
CVE-2026-5828 code-projects Simple IT Discussion Forum addcomment.php sql injection
A vulnerability was found in code-projects Simple IT Discussion Forum 1.0. The affected element is an unknown function of the file /functions/addcomment.php. The manipulation of the argument postid results in sql injection. The attack may be launched remotely. The exploit has been made public and...
Shimbi CMS Multiple SQL Injection Vulnerabilities
No description provided by source. Title : Shimbi CMS Vulnerable to Multiple SQL Injections Vendor : http://www.shimbi.in/ Found by : p0pc0rn Dork : intext:Powered By Shimbi CMS SQL Injection in details.php parameter --------------------------------------- http://site.com/details.php?id=sql POC -...
Shimbi CMS SQL Injection
Title : Shimbi CMS Vulnerable to Multiple SQL Injections Vendor : http://www.shimbi.in/ Found by : p0pc0rn Dork : intext:"Powered By Shimbi CMS" SQL Injection in details.php parameter --------------------------------------- http://site.com/details.php?id=sql POC ---...
Shimbi CMS Multiple SQL Injection Vulnerabilities
Exploit for php platform in category web applications Title : Shimbi CMS Vulnerable to Multiple SQL Injections Vendor : http://www.shimbi.in/ Found by : p0pc0rn Dork : intext:"Powered By Shimbi CMS" SQL Injection in details.php parameter ---------------------------------------...
Shimbi CMS - Multiple SQL Injections
Title : Shimbi CMS Vulnerable to Multiple SQL Injections Vendor : http://www.shimbi.in/ Found by : p0pc0rn Dork : intext:"Powered By Shimbi CMS" SQL Injection in details.php parameter --------------------------------------- http://site.com/details.php?id=sql POC ---...
Shimbi CMS - Multiple SQL Injections
Shimbi CMS - Multiple SQL Injections Title : Shimbi CMS Vulnerable to Multiple SQL Injections Vendor : http://www.shimbi.in/ Found by : p0pc0rn Dork : intext:"Powered By Shimbi CMS" SQL Injection in details.php parameter --------------------------------------- http://site.com/details.php?id=sql P...
mBlogger 1.0.04 (addcomment.php) Persistent XSS Exploit
Exploit for python platform in category web applications ======================================================= mBlogger 1.0.04 addcomment.php Persistent XSS Exploit ======================================================= !/usr/bin/python Exploit Title: mBlogger v1.0.04 addcomment.php Persistent...
mBlogger 1.0.04 - addcomment.php Persistent Cross-Site Scripting
mBlogger 1.0.04 - addcomment.php Persistent Cross-Site Scripting !/usr/bin/python Exploit Title: mBlogger v1.0.04 addcomment.php Persistent XSS Exploit Date : 04 September 2010 Author : Ptrace Security Gianni Gnesa gnix Contact : researchatptrace-securitydotcom Software Link:...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in onlinetools.org EasyImageCatalogue 1.3.1 allow remote attackers to inject arbitrary web script or HTML via the 1 search and 2 d index.php parameters to index.php, 3 dir parameter to thumber.php, and the d parameter to 4 describe.php and 5...
CVE-2008-7133
Multiple cross-site scripting XSS vulnerabilities in onlinetools.org EasyImageCatalogue 1.3.1 allow remote attackers to inject arbitrary web script or HTML via the 1 search and 2 d index.php parameters to index.php, 3 dir parameter to thumber.php, and the d parameter to 4 describe.php and 5...
CVE-2008-7133
CVE-2008-7133 affects the online tools package EasyImageCatalogue 1.3.1 from onlinetools.org. The provided documents describe multiple cross-site scripting (XSS) vulnerabilities that allow remote attackers to inject arbitrary web script or HTML via the (1) search and (2) d parameter to index.php,...
Cross site scripting
Cross-site scripting XSS vulnerability in addcomment.php in Bit 5 Blog 8.01 allows remote attackers to inject arbitrary web script or HTML via a javascript URI in an tag in the comment parameter, which strips most tags but not...
CVE-2006-0361
Cross-site scripting XSS vulnerability in addcomment.php in Bit 5 Blog 8.01 allows remote attackers to inject arbitrary web script or HTML via a javascript URI in an tag in the comment parameter, which strips most tags but not...
CVE-2006-0361
The CVE-2006-0361 entry concerns Bit 5 Blog 8.01. The vulnerability is a cross-site scripting (XSS) flaw in addcomment.php, where an attacker can inject arbitrary script/HTML by supplying a javascript URI within an tag in the comment parameter. The filter reportedly strips most tags but not , en...