HTTP Commander AJS 3.1.9 Exception Cross Site Scripting

Document Title: =============== HTTP Commander AJS v3.1.9 - Client Side Exception Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1329 Release Date: ============= 2014-10-02 Vulnerability Laboratory ID VL-ID:...

SpagoBI 4.0 - Arbitrary XSS File Upload

Exploit for php platform in category web applications Introduction SpagoBI1 is an Open Source Business Intelligence suite, belonging to the free/open source SpagoWorld initiative, founded and supported by Engineering Group2. It offers a large range of analytical functions, a highly functional...

SpagoBI 4.0 - Arbitrary Cross-Site Scripting Arbitrary File Upload

SpagoBI 4.0 - Arbitrary Cross-Site Scripting Arbitrary File Upload 01. Advisory Information Title: XSS File Upload Date published: 2014-03-01 Date of last update: 2014-03-01 Vendors contacted: Engineering Group Discovered by: Christian Catalano Severity: Medium 02. Vulnerability Information CVE...

NetCat CMS v5.0.1 - Multiple Web Vulnerabilities

Document Title: =============== NetCat CMS v5.0.1 - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=738 Release Date: ============= 2012-10-31 Vulnerability Laboratory ID VL-ID: ==================================== 738 Common...

CMSQLite 1.3.2 - Multiple Vulnerabilities

Title: ====== CMSQLITE v1.3.2 - Multiple Web Vulnerabiltiies Date: ===== 2012-10-18 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=726 VL-ID: ===== 726 Common Vulnerability Scoring System: ==================================== 4.3 Introduction: ============= CMSQLite is...

Mail.RU Group eMail - Persistent Web Vulnerability

Document Title: =============== Mail.RU Group eMail - Persistent Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=709 Release Date: ============= 2012-10-09 Vulnerability Laboratory ID VL-ID: ==================================== 709 Comm...

Social Engine 4.2.5 Cross Site Scripting

Title: ====== Social Engine v4.2.5 - Multiple Web Vulnerabilities Date: ===== 2012-07-31 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=672 VL-ID: ===== 672 Common Vulnerability Scoring System: ==================================== 3 Abstract: ========= A Laboratory...

Flynax General Classifieds v4.0 CMS Multiple Vulnerabilities

Flynax General Classifieds v4.0 CMS - Multiple Vulnerabilities Details: ======== 1.1 A SQL Injection vulnerability is detected in the Flynax General Classifieds v4.0 Content Management System. Remote attackers without privileged user accounts can execute/inject own sql commands to compromise the...

iAuto Mobile Application 2012 Multiple Vulnerabilities

Exploit for php platform in category web applications iAuto Mobile Application 2012 - Multiple Web Vulnerabilities Introduction: ============= With Internet on mobile devices booming, having a desktop-oriented version is just not enough anymore. Empower your visitors with content designed for...

Distimo Monitor 6.0 Cross Site Scripting

Title: ====== Distimo Monitor 6.0 - Multiple Cross Site Vulnerabilities Date: ===== 2012-07-05 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=631 VL-ID: ===== 631 Common Vulnerability Scoring System: ==================================== 2 Introduction: =============...

Strato FAQ Center 2012 - Cross Site Scripting Vulnerability

Document Title: =============== Strato FAQ Center 2012 - Cross Site Scripting Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=372 Release Date: ============= 2012-01-06 Vulnerability Laboratory ID VL-ID: ====================================...