PHPJabbers Auto Classifieds Script 3.2 Cross Site Scripting

┌┌───────────────────────────────────────────────────────────────────────────────────────┐ ││ C r a C k E r ┌┘ ┌┘ T H E C R A C K O F E T E R N A L M I G H T ││ └───────────────────────────────────────────────────────────────────────────────────────┘┘ ┌──── From The Ashes and Dust Rises An...

Sql injection

The requestlistrequest AJAX call of the Car Seller - Auto Classifieds Script WordPress plugin through 2.1.0, available to both authenticated and unauthenticated users, does not sanitise, validate or escape the orderid POST parameter before using it in a SQL statement, leading to a SQL Injection...

CVE-2021-24285

CVE-2021-24285 concerns the WordPress plugin Car Seller - Auto Classifieds Script (versions ≤ 2.1.0). The vulnerability is a SQL injection in the request_list_request AJAX handler: the order_id parameter is not sanitised/validated/escaped before being interpolated into a SQL statement, and the en...

Auto Classifieds Script 2.0添加管理员CSRF漏洞

No description provided by source. Auto Classifieds Script v2.0 - CSRF Vulnerabilty Add Admin ==================================================================== .:. Author : HackXBack .:. Contact : [email protected] .:. Home : http://www.iphobos.com/blog/ .:. Script :...

Auto Classifieds Script 2.0 - Add Admin CSRF Vulnerability

Auto Classifieds Script version 2.0 suffers from a cross site request forgery vulnerability. Auto Classifieds Script v2.0 - CSRF Vulnerabilty Add Admin ==================================================================== .:. Author : HackXBack .:. Contact : email protected .:. Home :...

Auto Classifieds Script 2.0 Cross Site Request Forgery

Auto Classifieds Script v2.0 - CSRF Vulnerabilty Add Admin ==================================================================== .:. Author : HackXBack .:. Contact : [email protected] .:. Home : http://www.iphobos.com/blog/ .:. Script : http://www.phpjabbers.com/preview/auto-classifieds-script/ .:. Test...