21 matches found
CVE-2025-13275
A security vulnerability has been detected in Iqbolshoh php-business-website up to 10677743a8dfc281f85291a27cf63a0bce043c24. This affects an unknown part of the file /admin/about.php. The manipulation leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has be...
CVE-2025-13275
A security vulnerability has been detected in Iqbolshoh php-business-website up to 10677743a8dfc281f85291a27cf63a0bce043c24. This affects an unknown part of the file /admin/about.php. The manipulation leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has be...
CVE-2025-13275 Iqbolshoh php-business-website about.php unrestricted upload
A security vulnerability has been detected in Iqbolshoh php-business-website up to 10677743a8dfc281f85291a27cf63a0bce043c24. This affects an unknown part of the file /admin/about.php. The manipulation leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has be...
CVE-2025-13275
CVE-2025-13275 concerns the Iqbolshoh php-business-website up to a rolling release build. All connected sources describe an issue in the file /admin/about.php that permits unrestricted file upload, with exploitation possible remotely. The vulnerability is widely reported as already disclosed publ...
CVE-2025-12224
A flaw has been found in Iqbolshoh php-business-website up to 10677743a8dfc281f85291a27cf63a0bce043c24. This vulnerability affects unknown code of the file admin/contact.php. This manipulation of the argument twitter causes cross site scripting. The attack may be initiated remotely. The exploit h...
CVE-2025-12224
A flaw has been found in Iqbolshoh php-business-website up to 10677743a8dfc281f85291a27cf63a0bce043c24. This vulnerability affects unknown code of the file admin/contact.php. This manipulation of the argument twitter causes cross site scripting. The attack may be initiated remotely. The exploit h...
CVE-2025-12224 Iqbolshoh php-business-website contact.php cross site scripting
A flaw has been found in Iqbolshoh php-business-website up to 10677743a8dfc281f85291a27cf63a0bce043c24. This vulnerability affects unknown code of the file admin/contact.php. This manipulation of the argument twitter causes cross site scripting. The attack may be initiated remotely. The exploit h...
CVE-2025-12224
The CVE concerns Iqbolshoh php-business-website (up to version 10677743a8dfc281f85291a27cf63a0bce043c24). The vulnerability is in admin/contact.php where manipulation of the twitter parameter enables cross-site scripting. The attack can be initiated remotely, and exploits have been published. Pro...
PHP Business Website 代码注入漏洞
PHP Business Website is a PHP business website by the individual developer Iqbolshoh Ilhomjonov. PHP Business Website suffers from a code injection vulnerability that stems from the incorrect manipulation of the parameter twitter in the file admin/contact.php, which could lead to a cross-site...
Discover Why Proactive Web Security Outsmarts Traditional Antivirus Solutions
In a rapidly evolving digital landscape, it's crucial to reevaluate how we secure web environments. Traditional antivirus-approach solutions have their merits, but they're reactive. A new report delves into the reasons for embracing proactive web security solutions, ensuring you stay ahead of...
File Upload Vulnerability in OKLite
OKLite is an enterprise website system, the main target group is the display enterprise website users, so that the traditional small business quickly deploy the website. A file upload vulnerability exists in OKLite, which can be exploited by attackers to upload a webshell and gain server privileg...
The Company Business Website CMS - Multiple Vulnerabilities
Exploit for php platform in category web applications Exploit Title: The Company Business Website CMS - 'username' SQL Injection Exploit Author: Ahmet Ümit BAYRAM Vendor Homepage: https://www.codester.com/items/6806/the-company-business-website-cms Demo Site: http://thecompany.morkocbilisim.com...
negocioextraordinario.com XSS vulnerability
Vulnerable URL: http://www.negocioextraordinario.com/opngch/MensajeVr1.asp?msg=%22%3E%3Csvg/onload=alert%27OPENBUGBOUNTY%27%3E%3C Details: Description| Value ---|--- Patched:| No Latest check for patch:| 29.11.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank|...
business.louisville.edu Open Redirect vulnerability
...
business.33z.net Open Redirect vulnerability
Vulnerable URL: http://business.33z.net/go.pl?go=www.openbugbounty.org Details: Description| Value ---|--- Patched:| No Latest check for patch:| 28.07.2017 Vulnerability type:| Open Redirect Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated VIP website status:| No Che...
rd.business.com Open Redirect vulnerability
Open Bug Bounty ID: OBB-199770 Description| Value ---|--- Affected Website:| rd.business.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| Open Redirect / CWE-601 CVSSv3 Score:| 3.4...
WP Security Audit Log - The Ultimate WordPress Audit Trail Plugin
The WP Security Audit Log plugin is a WordPress plugin that keeps an audit trail of everything that happens on your WordPress and WordPress multisite network. There are several WordPress audit trail / log plugins available, tough we chose to review WP Security Audit Log because it is has the most...
Weak Password Vulnerability in Ecommerce Network Technology Website System
Easy Business Network Technology website system is a comprehensive website building system. A weak password vulnerability exists in EaseUS website system. An attacker can use the vulnerability to log into the system to obtain system information, which constitutes sensitive information leakage...
PHPOK3 business website built Station program injection-vulnerability warning-the black bar safety net
Author: jsbug original: http://lcx.cc/?FoxNews=1077.html Friends always stepping on my body to embark on DOTA Super God of the road, see the forum someone said phpok, taking advantage of the weekend, send on the head a gold, hope you can also be super-God. “phpok3/app/www/models/upfile.php”: the...
PHPCMS2008 1 0 0 5 2 7 version website management system to download an arbitrary file vulnerability-vulnerability warning-the black bar safety net
Phpcms is a PHP-based+Mysql architecture of the web content management system, it is an open-source PHP development platform. Phpcms uses a modular approach to the development, functional and easy to use to facilitate the expansion, for medium to large sites provide heavyweight website Building...