Lucene search
+L

1125 matches found

Packet Storm
Packet Storm
added 2015/07/30 12:0 a.m.24 views

WordPress Admin Pack By Site Caseiro 1.1 Cross Site Scripting

Title: WordPress 'Admin Pack by SITE CASEIRO' Plugin Version: 1.1 Author: Morten Nørtoft, Kenneth Jepsen & Mikkel Vej Date: 2015-06-14 Download: - https://wordpress.org/plugins/admin-pack-by-site-caseiro/ - https://plugins.svn.wordpress.org/admin-pack-by-site-caseiro/ Notified WordPress: 2015-06-...

Exploits0
exploitpack
exploitpack
added 2015/02/23 12:0 a.m.12 views

Zeuscart 4.0 - Multiple Vulnerabilities

Zeuscart 4.0 - Multiple Vulnerabilities Advisory: Multiple reflecting XSS-, SQLi and InformationDisclosure-vulnerabilities in Zeuscart v.4 Advisory ID: SROEADV-2015-12 Author: Steffen Rösemann Affected Software: Zeuscart v.4 Vendor URL: http://zeuscart.com/ Vendor Status: pending CVE-ID: will ask...

0.4AI score
Exploits0
Packet Storm
Packet Storm
added 2014/12/12 12:0 a.m.31 views

WordPress WP-FB-AutoConnect 4.0.5 CSRF / XSS

Title: WordPress 'WP-FB-AutoConnect' plugin - XSS/CSRF Version: 4.0.5 Author: Morten Nørtoft, Kenneth Jepsen, Mikkel Vej Date: 2014/12/12 Download: https://wordpress.org/plugins/wp-fb-autoconnect/ Contacted WordPress: 2014/11/27 ----------------------------------------------------------------...

Exploits0
Packet Storm
Packet Storm
added 2014/12/12 12:0 a.m.22 views

WordPress Timed Popup 1.3 CSRF / XSS

Title: WordPress 'Timed Popup' plugin - CSRF/XSS Version: 1.3 Author: Morten Nørtoft, Kenneth Jepsen, Mikkel Vej Date: 2014/12/12 Download: https://wordpress.org/plugins/wp-timed-popup/ Notified WordPress: 2014/11/27 ---------------------------------------------------------------- Description:...

Exploits0
Prion
Prion
added 2014/12/05 3:59 p.m.25 views

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in the CreativeMinds CM Downloads Manager plugin before 2.0.7 for WordPress allows remote attackers to hijack the authentication of administrators for requests that conduct cross-site scripting XSS attacks via the addonstitle parameter in the...

6.8CVSS6.7AI score0.01533EPSS
Exploits2References4Affected Software1
Positive Technologies
Positive Technologies
added 2014/12/05 12:0 a.m.10 views

PT-2014-8839 · Creative Mind · Cm Download Manager

Name of the Vulnerable Software and Affected Versions: CreativeMinds CM Downloads Manager plugin versions prior to 2.0.7 Description: A cross-site request forgery CSRF issue allows remote attackers to hijack the authentication of administrators for requests that conduct cross-site scripting XSS...

6.8CVSS6.2AI score0.01533EPSS
Exploits2References6
myhack58
myhack58
added 2014/09/16 12:0 a.m.15 views

Portable router storage 0 DAY vulnerability that hackers can steal the privacy-vulnerability warning-the black bar safety net

Tenda router 4G301 model the presence of memory-typeXSScross-site scripting vulnerability vulnerability number: RSV-2 0 1 4-0 0 1 River. Rising security experts, the vulnerability is currently no official patch, belonging to the 0 DAY vulnerability, an attacker can carefully construct a malicious...

0.2AI score
Exploits0
WPVulnDB
WPVulnDB
added 2014/08/01 10:59 a.m.11 views

Subscribe To Comments Reloaded 140204 - options/index.php Admin Settings Manipulation CSRF

The Subscribe To Comments Reloaded WordPress plugin was affected by an options/index.php Admin Settings Manipulation CSRF security vulnerability...

1.8AI score
Exploits0References1Affected Software1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.23 views

Kandidat CMS 1.4.2 Stored Cross Site Scripting Vulnerability

No description provided by source. Vulnerability ID: HTB22648 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinkandidatcms.html Product: Kandidat CMS Vendor: Kan-Studio http://www.kan-studio.ru/ Vulnerable Version: 1.4.2 and probably prior versions Vendor Notification: 19 October 2010...

6.7AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.11 views

mini Hosting Panel - CSRF Change Admin Settings

No description provided by source. ----------------------------------------------------------------------------------------------- Title: mini Hosting Panel XSRF Change Admin Settings Author: Milos Zivanovic Email: milosz.securityatgmail.com Date: 14. December 2009...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.26 views

Chipmunk Board Script 1.x - Multiple CSRF Vulnerabilities

No description provided by source. ------------------------------------------------------------------------------------------------- Title: Chipmunk Board Script 1.x Multiple XSRF Vulnerabilities Author: Milos Zivanovic Email: milosz.securityatgmail.comhttp://gmail.com Date: 11. December 2009...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.38 views

e107 <= 0.7.8 - (photograph) Arbitrary File Upload Vulnerability

No description provided by source. / \ / \ | | | | | | | | | | | / | | | | | | | ' / | | ' \ / \ | | | | || | || | | | \ | | | | / | , |/ /|| ||| |||| / | |/ INFO: Program Title e107 = 0.7.8 - Arbitrary File Upload Description e107 is a content management system written in PHP and using the...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.12 views

AccStatistics 1.1 - CSRF Vulnerability (Change Admin Settings)

No description provided by source. ------------------------------------------------------------------------------------------------- Title: AccStatistics v1.1 XSRF Vulnerability Change Admin Settings Author: Milos Zivanovic Date: 13. December 2009...

7.1AI score
Exploits0
NVD
NVD
added 2014/01/16 9:55 p.m.25 views

CVE-2012-6621

Multiple cross-site scripting XSS vulnerabilities in GetSimple CMS 3.1, 3.1.2, 3.2.3, and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 Email Address or 2 Custom Permalink Structure fields in admin/settings.php; 3 path parameter to admin/upload.php; 4 err paramet...

4.3CVSS6.1AI score0.01432EPSS
Exploits4References7
Prion
Prion
added 2014/01/16 9:55 p.m.20 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in GetSimple CMS 3.1, 3.1.2, 3.2.3, and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 Email Address or 2 Custom Permalink Structure fields in admin/settings.php; 3 path parameter to admin/upload.php; 4 err paramet...

4.3CVSS6AI score0.01432EPSS
Exploits4References7Affected Software1
NVD
NVD
added 2013/05/13 11:55 p.m.27 views

CVE-2013-3535

Multiple cross-site scripting XSS vulnerabilities in CMSLogik 1.2.0 and 1.2.1 allow remote attackers to inject arbitrary web script or HTML via the 1 adminemail, 2 headertitle, 3 sitetitle parameter to admin/settings; 4 recaptchaprivate or 5 recaptchapublic parameter to admin/captchasettings; 6...

4.3CVSS5.8AI score0.04179EPSS
Exploits2References10
Prion
Prion
added 2013/05/13 11:55 p.m.19 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in CMSLogik 1.2.0 and 1.2.1 allow remote attackers to inject arbitrary web script or HTML via the 1 adminemail, 2 headertitle, 3 sitetitle parameter to admin/settings; 4 recaptchaprivate or 5 recaptchapublic parameter to admin/captchasettings; 6...

4.3CVSS6.1AI score0.04179EPSS
Exploits2References10Affected Software1
Packet Storm
Packet Storm
added 2013/04/13 12:0 a.m.22 views

Free Monthly Websites 2.0 Administrator Remote Password Change

========================================================================================== Title : Free Monthly Websites 2.0 Administrator Remote Password Change Date : 10/04/2013 Name : Free Monthly Websites Affected Version : 2.0 Vendor : http://www.freemonthlywebsites2.com/ Category : Web...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2013/04/12 12:0 a.m.18 views

Free Monthly Websites 2.0 - Admin Password Change

Free Monthly Websites 2.0 - Admin Password Change ========================================================================================== Title : Free Monthly Websites 2.0 Administrator Remote Password Change Date : 10/04/2013 Name : Free Monthly Websites Affected Version : 2.0 Vendor :...

0.1AI score
Exploits0
Exploit DB
Exploit DB
added 2013/04/12 12:0 a.m.25 views

Free Monthly Websites 2.0 - Admin Password Change

========================================================================================== Title : Free Monthly Websites 2.0 Administrator Remote Password Change Date : 10/04/2013 Name : Free Monthly Websites Affected Version : 2.0 Vendor : http://www.freemonthlywebsites2.com/ Category : Web...

7AI score
Exploits0
Rows per page
Query Builder