EUVD-2020-11016

Malware in sbrugna...

EUVD-2023-48120

Malicious code in bioql PyPI...

CVE-2020-19109

SQL Injection vulnerability in Online Book Store v1.0 via the bookisbn parameter to adminedit.php, which could let a remote malicious user execute arbitrary code...

CVE-2023-43740 Online Book Store Project v1.0 - Insecure File Upload

Online Book Store Project v1.0 is vulnerable to an Insecure File Upload vulnerability on the 'image' parameter of adminedit.php page, allowing an authenticated attacker to obtain Remote Code Execution on the server hosting the application...

CVE-2020-19109

SQL Injection vulnerability in Online Book Store v1.0 via the bookisbn parameter to adminedit.php, which could let a remote malicious user execute arbitrary code...

Sql injection

SQL Injection vulnerability in Online Book Store v1.0 via the bookisbn parameter to adminedit.php, which could let a remote malicious user execute arbitrary code...

CVE-2011-5302

Cross-site request forgery CSRF vulnerability in adm/adminedit.php in PHPDug 2.0.0 allows remote attackers to hijack the authentication of administrators for requests that modify credentials...

CVE-2011-5302

PHPDug 2.0.0 is affected by CVE-2011-5302, a CSRF flaw in adm/admin_edit.php that can allow an attacker to hijack administrator sessions and modify credentials. Root cause is a Cross-site request forgery vulnerability in the admin_edit.php endpoint. Multiple sources document the affected componen...

HTB22971: XSRF (CSRF) in PHPDug

Vulnerability ID: HTB22971 Reference: http://www.htbridge.ch/advisory/xsrfcsrfinphpdug.html Product: PHPDug Vendor: Kubelabs.com http://www.kubelabs.com/ Vulnerable Version: 2.0.0 and probably prior versions Vendor Notification: 21 April 2011 Vulnerability Type: CSRF Cross-Site Request Forgery Ri...

PHPDug CSRF/XSS multiple vulnerability-vulnerability warning-the black bar safety net

Vulnerability description: PHPDug 2.0.0 cross-site request forgery vulnerabilityCSRFandXSScross-site vulnerability, successfully exploited this vulnerability could cause the application of a compromise, and cookie-based authentication credentials, disclosure or theft of sensitive data is modified...

CMS Chainuk <= 1.2 Multiple Remote Vulnerabilities

No description provided by source. CMS Chainuk = v.1.2 Vulns Home: Cms.tut.su Dork: "Cms.tut.su, 2009 g." eLwauxc 14.06.2 LFI /index.php --------------------------------------------------------------------------- 6: if isset$GET 'id' 7: 8: color=white$id = $GET 'id';/color 9: 10: else 11: 12: $id...

Remote file inclusion

Multiple PHP remote file inclusion vulnerabilities in ScozNews 1.2.1 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the CONFIGmainpath parameter in 1 functions.php, 2 template.php, 3 news.php, 4 help.php, 5 mail.php, 6 Admin/admincats.php, 8 Admin/adminedit.php, 9...

ScozNews 1.2.1 - mainpath Remote File Inclusion

ScozNews 1.2.1 - mainpath Remote File Inclusion DEVIL TEAM THE BEST POLISH TEAM ScozNews v1.2.1 - Remote File Include Find by Kacper Rahim. Greetings For ALL DEVIL TEAM members, Special DragonHeart : Contact: [email protected] or http://www.devilteam.yum.pl dork: "Powered By ScozNews"...