4 matches found
CVE-2025-53642 haxcms-nodejs and haxcms-php Improperly Terminate Sessions
haxcms-nodejs and haxcms-php are backends for HAXcms. The logout function within the application does not terminate a user's session or clear their cookies. Additionally, the application issues a refresh token when logging out. This vulnerability is fixed in 11.0.6...
cswithandroid.withgoogle.com Open Redirect vulnerability
Open Bug Bounty ID: OBB-624221 Description| Value ---|--- Affected Website:| cswithandroid.withgoogle.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| Open Redirect / CWE-601 CVSSv3 Score:| 3.4...
[Pinpoint] Enumerates WebPage Components to help identify the Infected Files
Pinpoint works like wget/curl in that it just fetches a webpage without rendering any script. Pinpoint will then try to determine which links are used to make up the webpage such as Javascript, CSS, frames, and iframes and downloads those files too some Javascript content will produce incorrect...
IF-CMS 2.07 - Local File Inclusion (1)
IF-CMS 2.07 - Local File Inclusion 1 !/usr/bin/python INFORMATION Exploit Title: If-CMS 2.07 Pre-Auth Local File Inclusion 0day Exploit Author: TecR0c Date: 13/3/2011 Software link: http://bit.ly/hh9ZB4 Tested on: Linux bt Version: 2.07 PHP.ini Settings: gpcmagicquotes = Off import...