Simple Download Monitor < 3.9.5 - Reflected Cross-Site Scripting

The plugin does not escape the 1 sdmactivetab GET parameter and 2 sdmstatsstartdate/sdmstatsenddate POST parameters before outputting them back in attributes, leading to Reflected Cross-Site Scripting issues PoC 1: This requires Firefox due to onclick+accesskey trick on hidden input. There is...

Lk Scraper - An Fully Configurable Linkedin Scrape (Scrape Anything Within Linkedin)

Scrapes Any Linkedin Data Installation $ pip install git+git://github.com/jqueguiner/lkscraper Setup Using Docker compose $ docker-compose up -d $ docker-compose run lkscraper python3 Using Docker only forselenium server First, you need to run a selenium server $ docker run -d -p 4444:4444...

Adobe AIR for Mac Installed

Adobe AIR for Mac is installed on the remote host. It is a browser- independent runtime environment that supports HTML, JavaScript, and Flash code and provides for Rich Internet Applications RIAs. TRUSTED...

Polopoly XSS vuln.

Polopoly XSS vuln. Vuln. discovered by : r0t Date: 21 dec. 2005 orginal advisory:http://pridels.blogspot.com/2005/12/polopoly-xss-vuln.html vendor:http://www.polopoly.com/ affected version:9 and prior Product Description: Polopoly is 100 Java since 1996 and embraces standards and open architectur...