CVE-2024-4336

Adive Framework 2.0.8, does not sufficiently encode user-controlled inputs, resulting in a persistent Cross-Site Scripting XSS vulnerability via the /adive/admin/tables/add, in multiple parameters. An attacker could retrieve the session details of an authenticated user...

PT-2024-30528 · Unknown · Adive Framework

Name of the Vulnerable Software and Affected Versions: Adive Framework version 2.0.8 Description: The issue is related to insufficient encoding of user-controlled inputs, resulting in a persistent Cross-Site Scripting XSS vulnerability. This vulnerability can be exploited via the...

WordPress WordPress Admin Tables Extra Columns : Easy way to create custom columns on WordPress post, page & user admin tables Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS)

Software WordPress Admin Tables Extra Columns : Easy way to create custom columns on WordPress post, page & user admin tables Type Plugin Vulnerable versions = 1.0.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS...

singapore-database.txt

Singapore 0.10.1 Directory Traversal vulnerability/Database credential exploit Discovered by: e.wiZz! Site: madspot.org Info: no info today,sorry :D / Script site: http://www.sgal.org/ Download:...

paBugs 2.0 Beta 3 - main.php?cid SQL Injection

paBugs 2.0 Beta 3 - main.php?cid SQL Injection !/usr/bin/perl use LWP::UserAgent; use HTTP::Cookies; if@ARGV get$sql or err; $res - content = /0-9,a-f32/ or err; print "\n + Admin Passwordmd5=$usid is: $1 \n\n"; sub usage print "---------------------------------------------------------\n"; print ...