EUVD-2014-5680

Malware in sbrugna...

EUVD-2022-34540

Malicious code in bioql PyPI...

EUVD-2022-34541

Malicious code in bioql PyPI...

CVE-2022-2266

CVE-2022-2266 involves the University Library Automation System from Yordam Bilgi Teknolojileri, with versions prior to 19.2 vulnerable to an unauthenticated Reflected XSS vulnerability. The flaw is documented across multiple sources (NVD, CVE lists, and third-party advisories) and is described a...

CVE-2022-2266

University Library Automation System developed by Yordam Bilgi Teknolojileri before version 19.2 has an unauthenticated Reflected XSS vulnerability. This has been fixed in the version 19.2...

CVE-2022-2265

CVE-2022-2265 affects the Identity and Directory Management System from Çekino Bilgi Teknolojileri prior to version 2.1.25, which contains an unauthenticated path traversal vulnerability. The issue is fixed in version 2.1.25. According to NVD, CVSS 3.1 base score is 7.5 (HIGH) with AV:N/AC:L/PR:N...

CVE-2022-2265 Path traversal in Identity and Directory Management System

The Identity and Directory Management System developed by Çekino Bilgi Teknolojileri before version 2.1.25 has an unauthenticated Path traversal vulnerability. This has been fixed in the version 2.1.25...

Milyoner Bilgi Yarışı - Base64 encoded String, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Milyoner Bilgi Yarışı published at the 'play' market has multiple vulnerabilities...

Milyoner:Bilgi Yarışması - Dynamic Code Loading, External URLs, SD-card access vulnerabilities

HackApp vulnerability scanner discovered that application Milyoner:Bilgi Yarışması published at the 'play' market has multiple vulnerabilities...

İslami Bilgi Yarışması - Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application İslami Bilgi Yarışması published at the 'play' market has multiple vulnerabilities...

Proticaret E-Commerce Script 3.0 SQL Injection

Document Title: ============ Proticaret E-Commerce Script v3.0 = SQL Injection Release Date: =========== 13 Nov 2014 Product & Service Introduction: ======================== Proticaret is a free e-commerce script. Abstract Advisory Information: ======================= BGA Security Team discovered...

Proticaret E-Commerce Script 3.0 - SQL Injection (1)

Proticaret E-Commerce Script 3.0 - SQL Injection 1 Document Title: ============ Proticaret E-Commerce Script v3.0 = SQL Injection Release Date: =========== 13 Nov 2014 Product & Service Introduction: ======================== Proticaret is a free e-commerce script. Abstract Advisory Information:...

CVE-2014-5793

The Bilgi Yarisi aka net.mobilecraft.bilgiyarisi application 1.8 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

Information disclosure

The Bilgi Yarisi aka net.mobilecraft.bilgiyarisi application 1.8 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

CVE-2014-5793

The Bilgi Yarisi aka net.mobilecraft.bilgiyarisi application 1.8 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

CVE-2014-5793

The CVE-2014-5793 issue affects the Bilgi Yarisi (net.mobilecraft.bilgiyarisi) Android app version 1.8. The root cause is that the app does not verify X.509 certificates from SSL servers, enabling a man-in-the-middle to spoof servers and exfiltrate sensitive data via a crafted certificate. The vu...

Wordpress Zingiri Web Shop Plugin <= 2.4.2 Persistent XSS

No description provided by source. Wordpress Zingiri Web Shop Plugin = 2.4.2 Stored XSS Exploit Title: Wordpress Zingiri Web Shop Plugin = 2.4.0 Stored XSS Google Dork: Date: 30 Apr 2012 Author: Mehmet Ince Twitter: https://twitter.com/!/mmetince Company: Bilgi Guvenligi Akademisi www.bga.com.tr...

Megabirlik Bilgi Islem Cross Site Scripting

---------------------------------------------------------------- Megabirlik Bilgi Islem Cross Site Scripting ---------------------------------------------------------------- Exploit Title : Megabirlik Bilgi Islem alert/0/ Greets To : | Amir | B3HZ4D | Packetstormsecurity.org | Exploit-db.com | |...

AlstraSoft E-Friends Social Networking Script Cross Site Scripting

Exploit Title: AlstraSoft E-Friends Social Networking Script Stored XSS Date: 2011 Author: Eyup CELIK Version: All Version Tested on: All versions are Vulnerability ISSUE Cross Site Scripting can be done using the command input Vulnerable Page: Article Modules Exploit: "/ POC:...

eShopping Madness Cross Site Scripting

Exploit Title: eShopping Madness Stored XSS Date: 2011 Author: Eyup CELIK Version: All Version Tested on: All versions are Vulnerability ISSUE Cross Site Scripting can be done using the command input Vulnerable Page: search.php Search Modules Exploit: "/ Demo:...