5 matches found
Vulnerabilities in Cetera CMS
Здравствуйте 3APA3A! Сообщаю вам о найденных мною Insufficient Anti-automation и Cross-Site Scripting уязвимостях в Cetera CMS. Insufficient Anti-automation: http://site/support/default.php?project=1 Отсутствует защита от автоматизированных запросов капча. XSS:...
Cetera CMS SQL Injection vulnerability
---------------------------------------------------------------------- PT-2009-18 Positive Technologies Security Advisory Cetera CMS SQL Injection vulnerability ---------------------------------------------------------------------- --- Affected Software Cetera CMS Versions up to 14 inclusive...
Cross-Site Scripting vulnerability in Cetera CMS
Здравствуйте 3APA3A! Сообщаю вам о найденной мною Cross-Site Scripting уязвимости в системе Cetera CMS. XSS: http://site/misc/picture/?src=3C/title3E3Cscript3Ealertdocument.cookie3C/script3E Дополнительная информация о данной уязвимости у меня на сайте: http://websecurity.com.ua/2925/ Best wishes...
Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. Cetera CMS: crossite scripting...
PT-2009-18: Cetera CMS SQL Injection Vulnerability
Cetera CMS is a content management system CMS software, usually implemented as a Web application, for creating and managing HTML content. It is used to manage and control a large, dynamic collection of Web material HTML documents and their associated images. Vulnerability Description Positive...