CVE-2021-28417

A cross-site scripting XSS issue in Seo Panel 4.8.0 allows remote attackers to inject JavaScript via archive.php and the "searchname" parameter...

CVE-2021-28417

A cross-site scripting XSS issue in Seo Panel 4.8.0 allows remote attackers to inject JavaScript via archive.php and the "searchname" parameter...

Sql injection

The "ordercol" parameter in archive.php of SEO Panel 4.8.0 is vulnerable to time-based blind SQL injection, which leads to the ability to retrieve all databases...

Cross site scripting

A cross-site scripting XSS issue in Seo Panel 4.8.0 allows remote attackers to inject JavaScript via archive.php and the "searchname" parameter...

CVE-2021-28419

SEO Panel 4.8.0 is affected by CVE-2021-28419 due to a time-based blind SQL injection in the order_col parameter of archive.php. The vulnerability can allow an attacker to retrieve all databases and potentially expose sensitive data. Public evidence includes PoC/exploit activity and references (e...

CVE-2021-28417

A cross-site scripting XSS issue in Seo Panel 4.8.0 allows remote attackers to inject JavaScript via archive.php and the "searchname" parameter...

SEO Panel 4.8.0 - (order_col) Blind SQL Injection Vulnerability

Exploit Title: SEO Panel 4.8.0 - 'ordercol' Blind SQL Injection Exploit Author: Piyush Patil Vendor Homepage: https://www.seopanel.org/ Software Link: https://github.com/seopanel/Seo-Panel/releases/tag/4.8.0 Version: 4.8.0 Reference - https://github.com/seopanel/Seo-Panel/issues/209 Step 1 - Logi...

PT-2021-17861 · Seo Panel · Seo Panel

Name of the Vulnerable Software and Affected Versions: SEO Panel version 4.8.0 Description: The issue concerns a time-based blind SQL injection vulnerability in the order col parameter of the archive.php file. This vulnerability allows an attacker to retrieve all databases. Recommendations: For S...

stemarie.nl XSS vulnerability

Open Bug Bounty ID: OBB-623117 Description| Value ---|--- Affected Website:| stemarie.nl Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

reactfeminism.de XSS vulnerability

Open Bug Bounty ID: OBB-564985 Description| Value ---|--- Affected Website:| reactfeminism.de Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

theirishfield.ie XSS vulnerability

Vulnerable URL: https://www.theirishfield.ie/archive.php Details: Description| Value ---|--- Patched:| No Latest check for patch:| 20.12.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 861094 VIP website status:| No Check theirishfield.ie SSL connection:| Grade...

spydom.de XSS vulnerability

Open Bug Bounty ID: OBB-277329 Description| Value ---|--- Affected Website:| spydom.de Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

phuongmin.fall.vn XSS vulnerability

Vulnerable URL: http://phuongmin.fall.vn/chatbox/archive.php?page= Details: Description| Value ---|--- Patched:| No Latest check for patch:| 28.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated VIP website status:| No Check...

atabe.ir XSS vulnerability

Open Bug Bounty ID: OBB-192308 Description| Value ---|--- Affected Website:| atabe.ir Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

poems.com XSS vulnerability

Open Bug Bounty ID: OBB-77446 Description| Value ---|--- Affected Website:| poems.com Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat Sheet...

iwea.org XSS vulnerability

Vulnerable URL: http://www.iwea.org/projects/project-archive.php!prettyPhoto/0,%3Cimg%20src=x%20onerror=alert%28/XSSPOSED/%29%3E/ Details: Description| Value ---|--- Patched:| No Latest check for patch:| 25.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank|...

XlentProjects SphereCMS 1.1 'archive.php' SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/38309/info SphereCMS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...

Simplog 0.9.3 BlogID Parameter Multiple SQL Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/20899/info Simplog is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to...

phplist 2.8.11 - SQL Injection Vulnerability

No description provided by source. ----------------------------------------------------------------------------------------------------------------------- phplist version 2.8.11 SQL Injection Vulnerability http://www.phplist.com/...

Chipmunk Blog archive.php membername Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/29883/info Chipmunk Blog is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in th...