32 matches found
CVE-2013-1744
IRIS citations management tool through 1.3 allows remote attackers to execute arbitrary commands...
babelio.com XSS vulnerability
Vulnerable URL: https://www.babelio.com/auteur/mile-Nelligan/24873/citations?pageN=4%22%3E%3Csvg%20onload=alert/XSSPOSED/%3E Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 15253 VIP website status:| Yes Check...
e-citations.ethz.ch XSS vulnerability
Vulnerable URL: http://www.e-citations.ethz.ch/list/author/"--!" Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated VIP website status:| No Check e-citations.ethz.ch SSL connection:| Grade: ...
IRIS Citations Management Tool (post auth) Remote Command Execution
No description provided by source. Here is a bug that I finally found time to write about :- https://infosecabsurdity.wordpress.com/2013/02/09/iris-citations-management-tool-post-auth-remote-command-execution/ The attached contains my mini framework, exploit and screenshot. Cheers! aeon I Read It...
CVE-2012-6138
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2012-6536, CVE-2012-6537, CVE-2012-6538, CVE-2012-6539, CVE-2012-6540, CVE-2012-6541, CVE-2012-6542, CVE-2012-6543, CVE-2012-6544, CVE-2012-6545, CVE-2012-6546, CVE-2012-6547, CVE-2012-6548, CVE-2012-6549. Reason: This candidate i...
I Read It Somewhere (IRIS) citations management tool <= v1.3 (post auth) Remote Command Execution
A vulnerability exists in IRIS citations management tool which allows a low privileged attacker to execute arbitrary commands. Details can be found on my blog: https://infosecabsurdity.wordpress.com/2013/02/09/iris-citations-management-tool-post-auth-remote-command-execution/ PoC:...
IRIS Citations Management Tool - (Authenticated) Remote Command Execution
IRIS Citations Management Tool - Authenticated Remote Command Execution Here is a bug that I finally found time to write about :- https://infosecabsurdity.wordpress.com/2013/02/09/iris-citations-management-tool-post-auth-remote-command-execution/ The attached contains my mini framework, exploit a...
IRIS Citations Management Tool Command Execution
A vulnerability exists in IRIS citations management tool which allows a low privileged attacker to execute arbitrary commands. Details can be found on my blog: https://infosecabsurdity.wordpress.com/2013/02/09/iris-citations-management-tool-post-auth-remote-command-execution/ PoC:...
IRIS Citations Management Tool - (Authenticated) Remote Command Execution
Here is a bug that I finally found time to write about :- https://infosecabsurdity.wordpress.com/2013/02/09/iris-citations-management-tool-post-auth-remote-command-execution/ The attached contains my mini framework, exploit and screenshot. Cheers! aeon I Read It Somewhere IRIS = v1.3 post auth...
tlm-rfi.txt
/\ Citations Alatoires v1.1 ========================================================= Published : 2007-01-12 Remote: Yes Site: ftp://ftp1.comscripts.com/PHP/1809citation-11.zip Author: GolDM = Mahmoodali Contact: [email protected] ===================================================== ThanX =All My...
TLM CMS 1.1 - i-accueil.php?chemin Remote File Inclusion
TLM CMS 1.1 - i-accueil.php?chemin Remote File Inclusion /\ Citations Aléatoires v1.1 ========================================================= Published : 2007-01-12 Remote: Yes Site: ftp://ftp1.comscripts.com/PHP/1809citation-11.zip Author: GolDM = Mahmoodali Contact: [email protected]...
TLM CMS <= 1.1 (i-accueil.php chemin) Remote File Include Vulnerability
/ Citations Alatoires v1.1 ========================================================= Published : 2007-01-12 Remote: Yes Site: ftp://ftp1.comscripts.com/PHP/1809citation-11.zip Author: GolDM = Mahmoodali Contact: [email protected] ===================================================== ThanX =All My...