60 matches found
WordPress Car Seller - Auto Classifieds Script - SQL Injection
The requestlistrequest AJAX call of the Car Seller - Auto Classifieds Script WordPress plugin through 2.1.0, available to both authenticated and unauthenticated users, does not sanitize, validate or escape the orderid POST parameter before using it in a SQL statement, leading to a SQL injection...
EUVD-2008-6904
Malware in sbrugna...
EUVD-2008-6618
Malware in sbrugna...
PHPJabbers Auto Classifieds Script 3.2 Cross Site Scripting
┌┌───────────────────────────────────────────────────────────────────────────────────────┐ ││ C r a C k E r ┌┘ ┌┘ T H E C R A C K O F E T E R N A L M I G H T ││ └───────────────────────────────────────────────────────────────────────────────────────┘┘ ┌──── From The Ashes and Dust Rises An...
Sql injection
The requestlistrequest AJAX call of the Car Seller - Auto Classifieds Script WordPress plugin through 2.1.0, available to both authenticated and unauthenticated users, does not sanitise, validate or escape the orderid POST parameter before using it in a SQL statement, leading to a SQL Injection...
CVE-2021-24285
CVE-2021-24285 concerns the WordPress plugin Car Seller - Auto Classifieds Script (versions ≤ 2.1.0). The vulnerability is a SQL injection in the request_list_request AJAX handler: the order_id parameter is not sanitised/validated/escaped before being interpolated into a SQL statement, and the en...
Car Seller - Auto Classifieds Script <= 2.1.0 - Unauthenticated SQL Injection
The requestlistrequest AJAX call of the plugin, available to both authenticated and unauthenticated users, does not sanitise, validate or escape the orderid POST parameter before using it in a SQL statement, leading to a SQL Injection issue. curl 'https://example.com/wp-admin/admin-ajax.php' ...
XYZ Auto Classifieds 1.0 SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: XYZ Auto Classifieds v1.0 - SQL Injection Date: 2017-09-12 Exploit Author: 8bitsec Vendor Homepage: http://xyzscripts.com/ Software Link: https://xyzscripts.com/php-scripts/xyz-auto-classifieds/details Version: 1.0 Tested on: Ka...
XYZ Auto Classifieds 1.0 - SQL Injection
XYZ Auto Classifieds 1.0 - SQL Injection Exploit Title: XYZ Auto Classifieds v1.0 - SQL Injection Date: 2017-09-12 Exploit Author: 8bitsec Vendor Homepage: http://xyzscripts.com/ Software Link: https://xyzscripts.com/php-scripts/xyz-auto-classifieds/details Version: 1.0 Tested on: Kali Linux 2.0 ...
Car CMS v3.00.30 - Search Cross Site Scripting Vulnerability
Product & Service Introduction: =============================== Car Portal is a php software product for running auto classifieds websites. It provides functionality for the private sellers to sign up, list their car for sale and make changes in their ads online using the private sellers...
Subrion Auto Classifieds Persistent Xss Vulnerability
No description provided by source...
open auto classifieds <= 1.5.9 - Multiple Vulnerabilities
No description provided by source. MorningStar Security - Advisory http://www.morningstarsecurity.com/ Multiple security issues in Open Auto Classifieds 1. Advisory Information ---------------------------------------------------------------------------------------------- Title: Multiple security...
Bs Auto_Classifieds Script - (articlesdetails.php) SQL Injection Vulnerability
No description provided by source. 1 1 0 I'm Sid3^effects member from Inj3ct0r Team 1 1 0 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1 Name : Bs AutoClassifieds Scriptarticlesdetails.php Sqli Vulnerability Date : july 5,2010 Critical Level : HIGH vendor URL...
Auto Classifieds Script 2.0添加管理员CSRF漏洞
No description provided by source. Auto Classifieds Script v2.0 - CSRF Vulnerabilty Add Admin ==================================================================== .:. Author : HackXBack .:. Contact : [email protected] .:. Home : http://www.iphobos.com/blog/ .:. Script :...
Auto Classifieds Script 2.0 - Add Admin CSRF Vulnerability
Auto Classifieds Script version 2.0 suffers from a cross site request forgery vulnerability. Auto Classifieds Script v2.0 - CSRF Vulnerabilty Add Admin ==================================================================== .:. Author : HackXBack .:. Contact : email protected .:. Home :...
Auto Classifieds Script 2.0 Cross Site Request Forgery
Auto Classifieds Script v2.0 - CSRF Vulnerabilty Add Admin ==================================================================== .:. Author : HackXBack .:. Contact : [email protected] .:. Home : http://www.iphobos.com/blog/ .:. Script : http://www.phpjabbers.com/preview/auto-classifieds-script/ .:. Test...
Car Portal CMS 3.0 - Multiple Vulnerabilities
Car Portal CMS 3.0 - Multiple Vulnerabilities Title: ====== Car Portal CMS v3.0 - Multiple Web Vulnerabilities Date: ===== 2012-04-24 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=502 VL-ID: ===== 502 Introduction: ============= Car Portal is a php software product fo...
Car Portal CMS 3.0 - Multiple Vulnerabilities
Title: ====== Car Portal CMS v3.0 - Multiple Web Vulnerabilities Date: ===== 2012-04-24 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=502 VL-ID: ===== 502 Introduction: ============= Car Portal is a php software product for running auto classifieds websites. It provid...
Car Portal CMS v3.0 - Multiple Vulnerabilities
Exploit for php platform in category web applications Title: ====== Car Portal CMS v3.0 - Multiple Web Vulnerabilities Introduction: ============= Car Portal is a php software product for running auto classifieds websites. It provides functionality for the private sellers to sign up, list their c...
Car Portal CMS 3.0 CSRF / XSS / Shell Upload
Title: ====== Car Portal CMS v3.0 - Multiple Web Vulnerabilities Date: ===== 2012-04-24 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=502 VL-ID: ===== 502 Introduction: ============= Car Portal is a php software product for running auto classifieds websites. It provid...