Soul-Collector

Windows Post-Exploitation & Credential Hunting Tool Uma ferra...

EUVD-2020-4595

Malware in sbrugna...

CVE-2024-41503

Jetimob Plataforma Imobiliaria 20240627-0 is vulnerable to Cross Site Scripting XSS in the field "Ttulo" title inside the filter Save option in the "Busca" search function...

Jetimob Plataforma Imobiliaria 跨站脚本漏洞

Jetimob Plataforma Imobiliaria is a real estate platform from Jetimob Brazil. A cross-site scripting vulnerability exists in Jetimob Plataforma Imobiliaria version 20240627-0, which stems from a cross-site scripting vulnerability in the Ttulo field of the Busca function, which could lead to the...

iSmartgate PRO Cross-Site Request Forgery Vulnerability (CNVD-2021-01047)

The iSmartgate PRO is a smart garage door opening system. A cross-site request forgery vulnerability exists in iSmartgate PRO 1.5.9. An attacker can exploit this vulnerability to conduct a cross-site request forgery attack via the busca parameter in a form used to search for users...

CVE-2020-12282

iSmartgate PRO 1.5.9 is vulnerable to CSRF via the busca parameter in the form used for searching for users, accessible via /index.php. This can be combined with reflected XSS...

CVE-2020-12282

iSmartgate PRO 1.5.9 is vulnerable to CSRF via the busca parameter in the form used for searching for users, accessible via /index.php. This can be combined with reflected XSS...

Cross site request forgery (csrf)

iSmartgate PRO 1.5.9 is vulnerable to CSRF via the busca parameter in the form used for searching for users, accessible via /index.php. This can be combined with reflected XSS...

CVE-2020-12282

CVE-2020-12282 affects iSmartgate PRO 1.5.9. The issue is a CSRF vulnerability in the form used to search for users, via the busca parameter in /index.php, which can be combined with a reflected XSS vulnerability. The connected Red Hat/CNVD/CVE entries reiterate the same description. The document...

CVE-2018-18963

Busca.aspx.cs in Degrau Publicidade e Internet Plataforma de E-commerce allows SQL Injection via the busca/ URI...

CVE-2018-18963

Busca.aspx.cs in Degrau Publicidade e Internet Plataforma de E-commerce allows SQL Injection via the busca/ URI...

CVE-2018-17410

Horus CMS allows SQL Injection, as demonstrated by a request to the /busca or /home URI...

CVE-2018-17410

Horus CMS allows SQL Injection, as demonstrated by a request to the /busca or /home URI...

bocasantaofertas.com.br XSS vulnerability

Open Bug Bounty ID: OBB-654792 Description| Value ---|--- Affected Website:| bocasantaofertas.com.br Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

revistamonolito.com.br XSS vulnerability

Open Bug Bounty ID: OBB-571958 Description| Value ---|--- Affected Website:| revistamonolito.com.br Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

orealizacoes.com.br XSS vulnerability

Vulnerable URL: http://www.orealizacoes.com.br/busca?qu=Reserva+do+Paivaa';";;---- infosec.com.br --;'"...

disal.com.br XSS vulnerability

Vulnerable URL: https://www.disal.com.br/busca/index.asp?TipoLoja="...

clam.org.br XSS vulnerability

Vulnerable URL: http://www.clam.org.br/busca/default.asp?q=";...

portalmatogrosso.com.br XSS vulnerability

Vulnerable URL: http://portalmatogrosso.com.br/busca-matopedia.php?keyword=" Details: Description| Value ---|--- Patched:| No Latest check for patch:| 27.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 7798870 VIP website status:| No Check...

Unfixed XSS vulnerability at www.lacoctelera.com

Security researcher s E t H - X-C3LL, has submitted on 14/02/2009 a cross-site-scripting XSS vulnerability affecting www.lacoctelera.com, which at the time of submission ranked 50937 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 27/06/2010. I...