EUVD-2011-4730

Malware in sbrugna...

EUVD-2011-4729

Malware in sbrugna...

CVE-2011-4811

SQL injection vulnerability in pokazpodkat.php in BestShopPro allows remote attackers to execute arbitrary SQL commands via the str parameter...

CVE-2011-4812

Cross-site scripting XSS vulnerability in nowosci.php in BestShopPro allows remote attackers to inject arbitrary web script or HTML via the str parameter...

BST - BestShopPro (nowosci.php) Multiple Vulnerabilities

No description provided by source. Exploit Title: BST - BestShopPro nowosci.php Multiple Vulnerabilities Author : CoBRa21 E-Mail : uykucu at windowslive.com Google Dork : Powered By BST Script Page : http://www.bst.pl XSS: http://127.0.0.1/nowosci.php?a=1&str=scriptalert/CoBRa21//script HTML:...

CVE-2011-4811

SQL injection vulnerability in pokazpodkat.php in BestShopPro allows remote attackers to execute arbitrary SQL commands via the str parameter...

CVE-2011-4812

Cross-site scripting XSS vulnerability in nowosci.php in BestShopPro allows remote attackers to inject arbitrary web script or HTML via the str parameter...

Sql injection

SQL injection vulnerability in pokazpodkat.php in BestShopPro allows remote attackers to execute arbitrary SQL commands via the str parameter...

Cross site scripting

Cross-site scripting XSS vulnerability in nowosci.php in BestShopPro allows remote attackers to inject arbitrary web script or HTML via the str parameter...

CVE-2011-4811

SQL injection vulnerability in pokazpodkat.php in BestShopPro allows remote attackers to execute arbitrary SQL commands via the str parameter...

CVE-2011-4811

The vulnerability CVE-2011-4811 affects BestShopPro, specifically the PHP file pokaz_podkat.php. The root cause is a SQL injection flaw allowing attackers to inject arbitrary SQL via the str parameter, leading to remote command execution as described in the CVE records. Exploitation details or a ...

CVE-2011-4812

Cross-site scripting XSS vulnerability in nowosci.php in BestShopPro allows remote attackers to inject arbitrary web script or HTML via the str parameter...

BestShopPro 'str' Parameter Cross Site Scripting and SQL Injection Vulnerabilities

BestShopPro is prone to cross-site scripting and SQL-injection vulnerabilities because it fails to sufficiently sanitize user- supplied data. Exploiting these issues could allow an attacker to steal cookie- based authentication credentials, compromise the application, access or modify data, or...

BST (BestShopPro) - nowosci.php Multiple Vulnerabilities

BST BestShopPro - nowosci.php Multiple Vulnerabilities Exploit Title: BST - BestShopPro nowosci.php Multiple Vulnerabilities Author : CoBRa21 E-Mail : uykucu at windowslive.com Google Dork : "Powered By BST" Script Page : http://www.bst.pl XSS: http://127.0.0.1/nowosci.php?a=1&str=alert/CoBRa21/...

BestShopPro SQL Injection / Cross Site Scripting

Exploit Title: BST - BestShopPro nowosci.php Multiple Vulnerabilities Author : CoBRa21 E-Mail : uykucu at windowslive.com Google Dork : "Powered By BST" Script Page : http://www.bst.pl XSS: http://127.0.0.1/nowosci.php?a=1&str=alert/CoBRa21/ HTML: http://127.0.0.1/nowosci.php?a=1&str=CoBRa21 SQL ...

BST (BestShopPro) - 'nowosci.php' Multiple Vulnerabilities

Exploit Title: BST - BestShopPro nowosci.php Multiple Vulnerabilities Author : CoBRa21 E-Mail : uykucu at windowslive.com Google Dork : "Powered By BST" Script Page : http://www.bst.pl XSS: http://127.0.0.1/nowosci.php?a=1&str=alert/CoBRa21/ HTML: http://127.0.0.1/nowosci.php?a=1&str=CoBRa21 SQL ...

BST - BestShopPro (nowosci.php) Multiple Vulnerabilities

Exploit for php platform in category web applications Exploit Title: BST - BestShopPro nowosci.php Multiple Vulnerabilities Author : CoBRa21 E-Mail : uykucu at windowslive.com Google Dork : "Powered By BST" Script Page : http://www.bst.pl XSS: http://127.0.0.1/nowosci.php?a=1&str=alert/CoBRa21/...