Dotclear 2.5 Cross Site Scripting

Exploit Title: Dotclear 2.5 Cms Cross Site Scripting Vulnerabilities Date: 06/04/2013 Author: Nikhalesh Singh Bhadoria Twitter: @nikhaleshsingh Download Link:http://dotclear.org/ Versions Affected: Dotclear 2.5. Category:Xss...

Massive Brute-force attack Targets Wordpress sites worldwide

A large distributed brute force attack against WordPress sites is understood to be occurring. A large botnet with more than 90,000 servers is attempting to log in by cycling through different usernames and passwords. According to a blog update on IXWebHosting, they are currently experiencing issu...

Funeral Script PHP Cross Site Scripting / SQL Injection

Exploit for php platform in category web applications Funeral Script PHP - Multiple Web Vulnerabilites Introduction: ============= At your request and for a reasonable price, we may add or change features on the Funeral Script PHP. Funeral Script PHP requires PHP 4.3 or higher and MySQL 3 or high...

Classified Ads Script PHP v1.1 - SQL Injection Vulnerabilities

Title: ====== Classified Ads Script PHP v1.1 - SQL Injection Vulnerabilities Date: ===== 2012-06-13 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=605 VL-ID: ===== 605 Common Vulnerability Scoring System: ==================================== 5.5 Introduction:...

Event Calendar PHP 1.2 - Multiple Web Vulnerabilities

Document Title: =============== Event Calendar PHP 1.2 - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=607 Release Date: ============= 2012-06-18 Vulnerability Laboratory ID VL-ID: ==================================== 607...

Event Calendar PHP 1.2 - Multiple Web Vulnerabilities

Document Title: =============== Event Calendar PHP 1.2 - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=607 Release Date: ============= 2012-06-18 Vulnerability Laboratory ID VL-ID: ==================================== 607...

Funeral Script PHP - Multiple Web Vulnerabilities

Document Title: =============== Funeral Script PHP - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=604 Release Date: ============= 2012-06-16 Vulnerability Laboratory ID VL-ID: ==================================== 604 Commo...

News Script PHP 1.2 - Multiple Vulnerabilities

Title: ====== News Script PHP v1.2 - Multiple Web Vulnerabilites Date: ===== 2012-06-07 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=600 VL-ID: ===== 600 Common Vulnerability Scoring System: ==================================== 7.5 Introduction: ============= Visitor...

Simple Forum PHP 2.1 SQL Injection

Title: ====== Simple Forum PHP 2.1 - SQL Injection Vulnerabilities Date: ===== 2012-06-10 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=599 VL-ID: ===== 599 Common Vulnerability Scoring System: ==================================== 7.5 Introduction: ============= Simpl...

Classified Ads Script PHP v1.1 - SQL Injection Vulnerabilities

Document Title: =============== Classified Ads Script PHP v1.1 - SQL Injection Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=605 Release Date: ============= 2012-06-12 Vulnerability Laboratory ID VL-ID:...

Classified Ads Script PHP v1.1 - SQL Injection Vulnerabilities

Document Title: =============== Classified Ads Script PHP v1.1 - SQL Injection Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=605 Release Date: ============= 2012-06-12 Vulnerability Laboratory ID VL-ID:...

News Script PHP v1.2 - Multiple Web Vulnerabilities

Document Title: =============== News Script PHP v1.2 - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=600 Release Date: ============= 2012-06-06 Vulnerability Laboratory ID VL-ID: ==================================== 600...

iNeat - SQL Injection Vulnerability

Exploit for php platform in category web applications 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 x...

Asterisk2Billing v1.9.4 - Multiple Web Vulnerabilities

Document Title: =============== Asterisk2Billing v1.9.4 - Multiple Web Vulnerabilities Release Date: ============= 2011-08-10 Vulnerability Laboratory ID VL-ID: ==================================== 5 Abstract Advisory Information: ============================== The Vulnerability-Lab Team discover...

REstate Real Estate Script Cross Site Scripting

========================================================= REstate Real Estate Script Persistent Xss Vulnerability ========================================================= 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=1 3 3 3 3 7 /' \ /'\ /'\ /\ \ /\ /\ \ 7 1 /, /\L\ ...

Snipe Photo Gallery - Bypass Arbitrary File Upload

======================================================================================== | Title : Snipe Photo Gallery by Pass Remote Upload Vulnerability | Author : indoushka | Home : www.dz-blackhat.com | Tested on: Lunix Français v.9.4 Ubuntu | Bug : Remote Upload ====================== Exploi...

Snipe Photo Gallery - Bypass Arbitrary File Upload

Snipe Photo Gallery - Bypass Arbitrary File Upload ======================================================================================== | Title : Snipe Photo Gallery by Pass Remote Upload Vulnerability | Author : indoushka | Home : www.dz-blackhat.com | Tested on: Lunix Français v.9.4 Ubuntu ...

Jevci Siparis Formu Scripti Database Disclosure

======================================================================================== | Title : Jevci Siparis Formu Scripti = Guestbook DB Vulnerability | Author : indoushka | email : [email protected] | Home : www.sec-war.com | Web Site : http://scripti.org/i/jevcisiparisformu.zip | Dork ...

saspcms 0.9 - Multiple Vulnerabilities

www.BugReport.ir AmnPardaz Security Research Team Title: SASPCMS Multiple Vulnerabilities Vendor: http://www.lgasoft.com Vulnerable Version: 0.9 prior versions also may be affected Exploitation: Remote with browser Fix: N/A - Description: SASPCMS is an ASP Content Management System . SASPCMS witc...

Magento 1.2 - '/app/code/core/Mage/Adminhtml/controllers/IndexController.php?email' Cross-Site Scripting

source: https://www.securityfocus.com/bid/33872/info Magento is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. Attacker-supplied HTML and script code would execute in the context of the affected site, potentially allowing the...