86 matches found
ParsaWeb CMS (Search) Remote SQL Injection Vulnerability
No description provided by source. www.BugReport.ir AmnPardaz Security Research Team Title: ParsaWeb CMS SQL Injection Vendor: http://www.parsagostar.com Demo: http://cms.parsagostar.com/ Exploit: Available Impact: High Fix: N/A Original advisory: http://www.bugreport.ir/index53.htm 1. Descriptio...
ParsaWeb CMS - Search SQL Injection
ParsaWeb CMS - Search SQL Injection www.BugReport.ir AmnPardaz Security Research Team Title: ParsaWeb CMS SQL Injection Vendor: http://www.parsagostar.com Demo: http://cms.parsagostar.com/ Exploit: Available Impact: High Fix: N/A Original advisory: http://www.bugreport.ir/index53.htm 1...
parsawebcms-sql.txt
www.BugReport.ir AmnPardaz Security Research Team Title: ParsaWeb CMS SQL Injection Vendor: http://www.parsagostar.com Demo: http://cms.parsagostar.com/ Exploit: Available Impact: High Fix: N/A Original advisory: http://www.bugreport.ir/index53.htm 1. Description: ParsaWeb is a commercial ASP.NET...
Masir Camp E-Shop Module <= 3.0 (ordercode) SQL Injection Vuln
No description provided by source. www.BugReport.ir AmnPardaz Security Research Team Title: Masir Camp E-Shop Module = 3.0 SQL Injection Vendor: www.masir.net Vulnerable Version: 3.0 and prior versions Exploit: Available Impact: Medium Fix: N/A Original Advisory: http://bugreport.ir/index52.htm 1...
Masir Camp E-Shop Module 3.0 - 'ordercode' SQL Injection
www.BugReport.ir AmnPardaz Security Research Team Title: Masir Camp E-Shop Module = 3.0 SQL Injection Vendor: www.masir.net Vulnerable Version: 3.0 and prior versions Exploit: Available Impact: Medium Fix: N/A Original Advisory: http://bugreport.ir/index52.htm 1. Description: Masir Camp is an...
TransLucid 1.75 - FCKeditor Arbitrary File Upload
TransLucid 1.75 - FCKeditor Arbitrary File Upload www.BugReport.ir AmnPardaz Security Research Team Title: TransLucid 1.75 fckeditor Remote Arbitrary File Upload Vendor: www.translucidonline.com Vulnerable Version: 1.75 prior versions also may be affected Exploitation: Remote with browser Exploit...
TransLucid 1.75 - 'FCKeditor' Arbitrary File Upload
www.BugReport.ir AmnPardaz Security Research Team Title: TransLucid 1.75 fckeditor Remote Arbitrary File Upload Vendor: www.translucidonline.com Vulnerable Version: 1.75 prior versions also may be affected Exploitation: Remote with browser Exploit: Available Impact: Medium Fix: N/A Original...
IGES CMS <=2.0 Multiple Vulnerabilities
www.BugReport.ir AmnPardaz Security Research Team Title: IGES CMS =2.0 Multiple Vulnerabilities Vendor: www.iges.nl Exploit: Available Vulnerable Version: 2.0 Impact: High Fix: N/A 1. Description: IGES CMS is a complete, fully featured CMS in PHP language with SQL and became a powerful CMS having...
iges CMS 2.0 - Cross-Site Scripting SQL Injection
iges CMS 2.0 - Cross-Site Scripting SQL Injection www.BugReport.ir AmnPardaz Security Research Team Title: IGES CMS =2.0 Multiple Vulnerabilities Vendor: www.iges.nl Exploit: Available Vulnerable Version: 2.0 Impact: High Fix: N/A 1. Description: IGES CMS is a complete, fully featured CMS in PHP...
iges CMS 2.0 - Cross-Site Scripting / SQL Injection
www.BugReport.ir AmnPardaz Security Research Team Title: IGES CMS =2.0 Multiple Vulnerabilities Vendor: www.iges.nl Exploit: Available Vulnerable Version: 2.0 Impact: High Fix: N/A 1. Description: IGES CMS is a complete, fully featured CMS in PHP language with SQL and became a powerful CMS having...
MyBlog <=0.9.8 Multiple Vulnerabilities
www.BugReport.ir AmnPardaz Security Research Team Title: MyBlog =0.9.8 Multiple Vulnerabilities Vendor: http://crewdesign.co.uk & http://sourceforge.net/projects/myblog Exploit: Available Vulnerable Version: 0.9.8 Impact: High Fix: N/A Original Advisory: www.bugreport.ir/?/49 1. Description:...
Pluck Local File inclusion
www.BugReport.ir AmnPardaz Security Research Team Title: Pluck Local File inclusion Vendor: http://www.pluck-cms.org Bug: Local File Inclusion Vulnerable Version: 4.5.1 prior versions also may be affected Exploitation: Remote with browser Fix: N/A - Description: Pluck is a content management...
Pluck CMS 4.5.1 (Windows) - blogpost Local File Inclusion
Pluck CMS 4.5.1 Windows - blogpost Local File Inclusion www.BugReport.ir AmnPardaz Security Research Team Title: Pluck Local File inclusion Vendor: http://www.pluck-cms.org Bug: Local File Inclusion Vulnerable Version: 4.5.1 prior versions also may be affected Exploitation: Remote with browser Fi...
Pluck CMS 4.5.1 (Windows) - 'blogpost' Local File Inclusion
www.BugReport.ir AmnPardaz Security Research Team Title: Pluck Local File inclusion Vendor: http://www.pluck-cms.org Bug: Local File Inclusion Vulnerable Version: 4.5.1 prior versions also may be affected Exploitation: Remote with browser Fix: N/A - Description: Pluck is a content management...
pooya-sql.txt
www.BugReport.ir AmnPardaz Security Research Team Title: Pooya Site Builder PSB SQL Injection Vulnerabilities Vendor: www.paridel.com Vulnerable Version: 6.0 Assembly Version Exploit: Available Impact: High Fix: N/A Original Advisory: www.bugreport.ir/?/42 1. Description: Pooya site builder psb i...
Pooya Site Builder (PSB) 6.0 - Multiple SQL Injections
Pooya Site Builder PSB 6.0 - Multiple SQL Injections www.BugReport.ir AmnPardaz Security Research Team Title: Pooya Site Builder PSB SQL Injection Vulnerabilities Vendor: www.paridel.com Vulnerable Version: 6.0 Assembly Version Exploit: Available Impact: High Fix: N/A Original Advisory:...
realm CMS 2.3 - Multiple Vulnerabilities
www.BugReport.ir AmnPardaz Security Research Team Title: Realm CMS Multiple Vulnerabilities Lead to Admin Access. Vendor: www.realmproject.com Vulnerable Version: 2.3 and prior versions Exploit: Available Impact: High Fix: N/A Original Advisory: http://bugreport.ir/index.php?/40 1. Description:...
Dot Net Nuke (DNN) <= 4.8.3 XSS Vulnerability
www.BugReport.ir AmnPardaz Security Research Team Title: Dot Net Nuke DNN XSS Vulnerability. Vendor: www.dotnetnuke.com Vulnerable Version: 4.8.3 and prior versions Exploit: N/A Impact: Low Fix: N/A Original Advisory: http://bugreport.ir/index.php?/38 1. Description: DotNetNuke is an open source...
Megabbs Forum 2.2 - SQL Injection Cross-Site Scripting
Megabbs Forum 2.2 - SQL Injection Cross-Site Scripting www.BugReport.ir AmnPardaz Security Research Team Title: MegaBBS Forum Multiple Vulnerabilities. Vendor: http://www.pd9soft.com/ Vulnerable Version: 2.2 Exploit: Available Impact: Medium Fix: N/A Original Advisory:...
Megabbs Forum 2.2 - SQL Injection / Cross-Site Scripting
www.BugReport.ir AmnPardaz Security Research Team Title: MegaBBS Forum Multiple Vulnerabilities. Vendor: http://www.pd9soft.com/ Vulnerable Version: 2.2 Exploit: Available Impact: Medium Fix: N/A Original Advisory: http://bugreport.ir/index.php?/37 1. Description: A complete, fully featured ASP...