EUVD-2010-0722

Malware in sbrugna...

CVE-2010-0695

Cross-site scripting XSS vulnerability in pages/index.php in BASIC-CMS allows remote attackers to inject arbitrary web script or HTML via the navid parameter...

SweetRice 1.5.1 - Arbitrary File Upload

/usr/bin/python -- Coding: utf-8 -- Exploit Title: SweetRice 1.5.1 - Unrestricted File Upload Exploit Author: Ashiyane Digital Security Team Date: 03-11-2016 Vendor: http://www.basic-cms.org/ Software Link: http://www.basic-cms.org/attachment/sweetrice-1.5.1.zip Version: 1.5.1 Platform: WebApp -...

Basic-CMS 'nav_id' Parameter Cross Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/38235/info Basic-CMS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

Basic CMS 'q' Parameter Cross Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/32531/info Basic CMS is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

Basic-CMS - 'index.php' SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/29771/info Basic-CMS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...

Cross site scripting

Cross-site scripting XSS vulnerability in pages/index.php in BASIC-CMS allows remote attackers to inject arbitrary web script or HTML via the navid parameter...

CVE-2010-0695

Cross-site scripting XSS vulnerability in pages/index.php in BASIC-CMS allows remote attackers to inject arbitrary web script or HTML via the navid parameter...

CVE-2010-0695

CVE-2010-0695 is an XSS vulnerability in BASIC-CMS, specifically in pages/index.php where the nav_id parameter can be exploited to inject arbitrary web script/HTML. The vulnerability affects BASIC-CMS as described in multiple feeds (NVD, Red Hat, CVE list, PRION, etc.). The available documents id...

CVE-2010-0695

Cross-site scripting XSS vulnerability in pages/index.php in BASIC-CMS allows remote attackers to inject arbitrary web script or HTML via the navid parameter...

BaSiC-CMS Script (SQL Blind/XSS) Multiple Remote Vulnerabilities

Exploit for unknown platform in category web applications ================================================================ BaSiC-CMS Script SQL Blind/XSS Multiple Remote Vulnerabilities ================================================================ ? Script: BaSiC-CMS ? Home Scirpt...

BaSiC-CMS SQL Injection / Cross Site Scripting

+===================================================================================+ ./SEC-R1Z / / / / /\ \ |/ / \ \ / / / / | | / | | / / \ / / / / | || / | | / / \ \ \ \2010 | \ | | / / / \ /\ / ||\ \ ||/ \ R.I.P MichaelJackson !!!!!...

Basic-CMS - nav_id Cross-Site Scripting

Basic-CMS - navid Cross-Site Scripting source: https://www.securityfocus.com/bid/38235/info Basic-CMS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of ...

Basic-CMS - 'nav_id' Cross-Site Scripting

source: https://www.securityfocus.com/bid/38235/info Basic-CMS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of...

BaSiC-CMS (acm2000.mdb) Remote Database Disclosure Vulnerability

No description provided by source. --------------------------------------------------------- Portal Name: Basic-cms ASP D0wn : http://www.basic-cms.com/download-basiccms.zip Author : Mountassif Moad Evil Finger / v4 Team Vulnerability : Database Disclosure Vulnerability...

basiccms-disclose.txt

--------------------------------------------------------- Portal Name: Basic-cms ASP D0wn : http://www.basic-cms.com/download-basiccms.zip Author : Mountassif Moad Evil Finger / v4 Team Vulnerability : Database Disclosure Vulnerability ---------------------------------------------------------...

Basic-CMS - q Cross-Site Scripting

Basic-CMS - q Cross-Site Scripting source: https://www.securityfocus.com/bid/32531/info Basic CMS is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of a...

Basic-CMS - 'q' Cross-Site Scripting

source: https://www.securityfocus.com/bid/32531/info Basic CMS is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context ...

basiccms-xss.txt

--------------------------------------------------------- Portal Name: Basic Cms Vendor : http://basic-cms.de Author : PouyaServer , [email protected] Vulnerability : XSS --------------------------------------------------------- XSS: http://site.com/pages/index.php?q=alert1369...

Basic-CMS - Remote Database Disclosure

Basic-CMS - Remote Database Disclosure --------------------------------------------------------- Portal Name: Basic-cms ASP D0wn : http://www.basic-cms.com/download-basiccms.zip Author : Mountassif Moad Evil Finger / v4 Team Vulnerability : Database Disclosure Vulnerability...