1050 matches found
Cryptographp Local File Inclusion / HTTP Response Splitting
Exploit for php platform in category web applications During a security assessment, I’ve found that my target was using Cryptographp which is a PHP script used for generate « captchas ». It was easily noticeable when I’ve found the following URL: http://WWWW/cryptographp.inc.php?cfg=XX&sn=YYYY&ZZ...
WEB MART from KENT-WEB vulnerable to cross-site scripting
Overview WEB MART provided by KENT-WEB contains a cross-site scripting vulnerability. WEB MART provided by KENT-WEB is a system for creating shopping websites. WEB MART contains a vulnerability in handling cookies, which may result in cross-site scripting. ISHIBASHI,Tsuyoshi of Mitsui Bussan Secu...
Jogjacamp - Presistent XSS Vulnerability
Exploit for php platform in category web applications 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 x...
Crea-Boutique - Persistent XSS Vulnerability
Exploit for php platform in category web applications 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 x...
TomatoCart 1.2.0 Alpha 2 - json.php Local File Inclusion
TomatoCart 1.2.0 Alpha 2 - json.php Local File Inclusion source: https://www.securityfocus.com/bid/52766/info TomatoCart is prone to a local file-include vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially...
Open Realty 'select_users_template' Parameter Local File Include Vulnerability
Open Realty is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information or to execute arbitrary local scripts in the context of the webserver process. This may allo...
Open Realty 'select_users_template' Parameter Local File Include Vulnerability
Open Realty is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
Joomla! Component com_xvs - Controller Local File Inclusion
Joomla! Component comxvs - Controller Local File Inclusion source: https://www.securityfocus.com/bid/52091/info The 'comxvs' component for Joomla! is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability t...
Joomla! Component com_xcomp - Local File Inclusion
Joomla! Component comxcomp - Local File Inclusion source: https://www.securityfocus.com/bid/52078/info The Xcomp component for Joomla! is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain...
Joomla! Component com_xcomp - Local File Inclusion
source: https://www.securityfocus.com/bid/52078/info The Xcomp component for Joomla! is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information and execute arbitra...
Joomla! Component com_boss - Controller Local File Inclusion
Joomla! Component comboss - Controller Local File Inclusion source: https://www.securityfocus.com/bid/51619/info The 'comboss' component for Joomla! is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability...
osCommerce Multiple Local File Include Vulnerabilities
osCommerce is prone to multiple local file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information and execute arbitrary local scripts in the context of the webserver process. This ma...
Shockwave.com Cross Site Scripting
Exploit Title: shockwave.com Cross Site Scripting Vulnerability Date: 12/11/2011 - 04:00am Author: Ryuzaki Lawlet Website: http://jusryuz.blogspot.com Tested On: WinXP Platform: - Email: [email protected] $ Vulnerable : http://www.domain.com/search.jsp?q= $ Preview Sites:...
ECshop 2.7.2 XSS
简要描述: 过滤不严 详细说明: 缺货登记-联系人处可保存任意脚本 漏洞证明: 脚本可利用privilege.php中update管理员的邮箱,通过找回密码,获取邮箱...
BaserCMS vulnerable to cross-site scripting
Overview BaserCMS contains a cross-site scripting vulnerability. BaserCMS is an open-source Contents Management System CMS. BaserCMS contains a cross-site scripting vulnerability. Masako Ohno reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security...
StarDevelop LiveHelp 2.0 - 'index.php' Local File Inclusion
source: https://www.securityfocus.com/bid/49650/info StarDevelop LiveHelp is prone to a local file-include vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information and to execute arbitrary...
Joomla! JoomTouch Component 'controller' Parameter Local File Include Vulnerability
The JoomTouch component for Joomla! is prone to a local file- include vulnerability because it fails to properly sanitize user- supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information and execute arbitrary local scripts in the context of the webserve...
awiki 20100125 - Multiple Local File Inclusions
awiki 20100125 - Multiple Local File Inclusions source: https://www.securityfocus.com/bid/49187/info awiki is prone to multiple local file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive...
awiki 20100125 - Multiple Local File Inclusions
source: https://www.securityfocus.com/bid/49187/info awiki is prone to multiple local file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information and execute arbitrary local scripts ...
Joomla! Component com_jr_tfb - Controller Local File Inclusion
Joomla! Component comjrtfb - Controller Local File Inclusion source: https://www.securityfocus.com/bid/48558/info The 'comjrtfb' component for Joomla! is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerabili...