Lucene search
K

86 matches found

Packet Storm
Packet Storm
added 2010/05/30 12:0 a.m.38 views

CMScout Cross Site Scripting

======================================================================= CMScout XSS/HTML Injection Multiple Vulnerabilities ======================================================================= 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2010/05/30 12:0 a.m.34 views

CMScout - Cross-Site Scripting / HTML Injection

======================================================================= CMScout XSS/HTML Injection Multiple Vulnerabilities ======================================================================= 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2010/05/28 12:0 a.m.9 views

CMScout 2.08 - Cross-Site Scripting

CMScout 2.08 - Cross-Site Scripting source: https://www.securityfocus.com/bid/40442/info CMScout is prone to a cross-site scripting vulnerability because the application fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the...

6.8AI score
Exploits0
Exploit DB
Exploit DB
added 2010/05/28 12:0 a.m.19 views

CMScout 2.08 - Cross-Site Scripting

source: https://www.securityfocus.com/bid/40442/info CMScout is prone to a cross-site scripting vulnerability because the application fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in t...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2010/04/27 12:0 a.m.32 views

CMScout 2.08 SQL Injection

Title: CMScout 2.08 SQL Injection Vulnerability EDB-ID: CVE-ID: OSVDB-ID: Author: Dr.0rYX and Cr3w-DZ Published: Verified: Download Exploit Code Download N/A NNNN NNNN AAAAAA SSSSSSSS TTTTTTTTTTTT NNNNNN NNNN AAAAAA SSSSSSSSSSSS TTTTTTTTTTTT NNNNNN NNNN AAAA AAAA SSSS TTTT eeeeee aaaaaa mmmm mm...

0.2AI score
Exploits0
exploitpack
exploitpack
added 2010/04/26 12:0 a.m.21 views

CMScout 2.08 - SQL Injection

CMScout 2.08 - SQL Injection Title: CMScout 2.08 SQL Injection Vulnerability EDB-ID: CVE-ID: OSVDB-ID: Author: Dr.0rYX and Cr3w-DZ Published: Verified: Download Exploit Code Download N/A NNNN NNNN AAAAAA SSSSSSSS TTTTTTTTTTTT NNNNNN NNNN AAAAAA SSSSSSSSSSSS TTTTTTTTTTTT NNNNNN NNNN AAAA AAAA SSSS...

0.2AI score
Exploits0
0day.today
0day.today
added 2010/04/26 12:0 a.m.63 views

CMScout 2.08 SQL Injection Vulnerability

Exploit for php platform in category web applications ======================================== CMScout 2.08 SQL Injection Vulnerability ======================================== Title: CMScout 2.08 SQL Injection Vulnerability EDB-ID: CVE-ID: OSVDB-ID: Author: Dr.0rYX and Cr3w-DZ Published: Verifie...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2010/04/26 12:0 a.m.34 views

CMScout 2.08 - SQL Injection

Title: CMScout 2.08 SQL Injection Vulnerability EDB-ID: CVE-ID: OSVDB-ID: Author: Dr.0rYX and Cr3w-DZ Published: Verified: Download Exploit Code Download N/A NNNN NNNN AAAAAA SSSSSSSS TTTTTTTTTTTT NNNNNN NNNN AAAAAA SSSSSSSSSSSS TTTTTTTTTTTT NNNNNN NNNN AAAA AAAA SSSS TTTT eeeeee aaaaaa mmmm mm...

7.4AI score
Exploits0
NVD
NVD
added 2009/04/17 2:8 p.m.17 views

CVE-2008-6726

Multiple directory traversal vulnerabilities in CMScout 2.06, when registerglobals is enabled, allow remote attackers to include and execute arbitrary local files via a .. dot dot in the bit parameter to 1 admin.php and 2 index.php, different vectors than CVE-2008-3415...

6CVSS7.1AI score0.02125EPSS
Exploits1References7
NVD
NVD
added 2009/04/17 2:8 p.m.17 views

CVE-2008-6725

Multiple SQL injection vulnerabilities in CMScout 2.06 allow remote authenticated users to execute arbitrary SQL commands via the id parameter to 1 index.php in a mythings page mythings.php and 2 the users page in admin.php...

6CVSS8.1AI score0.00952EPSS
Exploits1References6
Prion
Prion
added 2009/04/17 2:8 p.m.14 views

Directory traversal

Multiple directory traversal vulnerabilities in CMScout 2.06, when registerglobals is enabled, allow remote attackers to include and execute arbitrary local files via a .. dot dot in the bit parameter to 1 admin.php and 2 index.php, different vectors than CVE-2008-3415...

6CVSS7.5AI score0.02936EPSS
Exploits2References7Affected Software1
Prion
Prion
added 2009/04/17 2:8 p.m.18 views

Sql injection

Multiple SQL injection vulnerabilities in CMScout 2.06 allow remote authenticated users to execute arbitrary SQL commands via the id parameter to 1 index.php in a mythings page mythings.php and 2 the users page in admin.php...

6CVSS8.8AI score0.00952EPSS
Exploits1References6Affected Software1
CVE
CVE
added 2009/04/17 10:0 a.m.38 views

CVE-2008-6726

CVE-2008-6726 describes multiple directory traversal vulnerabilities in CMScout 2.06. When register_globals is enabled, an attacker can abuse a .. path in the bit parameter to admin.php or index.php to include and execute arbitrary local files. The issue is distinct from CVE-2008-3415. The provid...

6CVSS7.3AI score0.02125EPSS
Exploits1References7Affected Software1
Cvelist
Cvelist
added 2009/04/17 10:0 a.m.26 views

CVE-2008-6726

Multiple directory traversal vulnerabilities in CMScout 2.06, when registerglobals is enabled, allow remote attackers to include and execute arbitrary local files via a .. dot dot in the bit parameter to 1 admin.php and 2 index.php, different vectors than CVE-2008-3415...

7.1AI score0.02125EPSS
Exploits1References7
CVE
CVE
added 2009/04/17 10:0 a.m.95 views

CVE-2008-6725

CVE-2008-6725 describes multiple SQL injection vulnerabilities in CMScout 2.06. The affected components are the mythings page (mythings.php) and the admin users page (admin.php), where the vulnerable input is the id parameter. The issue allows remote authenticated users to run arbitrary SQL comma...

6CVSS8.3AI score0.00952EPSS
Exploits1References6Affected Software1
Cvelist
Cvelist
added 2009/04/17 10:0 a.m.29 views

CVE-2008-6725

Multiple SQL injection vulnerabilities in CMScout 2.06 allow remote authenticated users to execute arbitrary SQL commands via the id parameter to 1 index.php in a mythings page mythings.php and 2 the users page in admin.php...

8.1AI score0.00952EPSS
Exploits1References6
Packet Storm
Packet Storm
added 2008/12/31 12:0 a.m.22 views

CMScout 2.06 SQL Injection / Local File Inclusion

CMScout 2.06 Remote SQL Injection/Local File Inclusion + Discovered By SirGod + Visit : www.mortal-team.org + Visit : www.h4cky0u.org + Greetz : All my friends + Script homepage : http://www.cmscout.co.za/ + Dork : Powered by CMScout c2005 CMScout Group + Remote SQL Injection...

Exploits0
seebug.org
seebug.org
added 2008/12/31 12:0 a.m.26 views

CMScout 2.06 SQL Injection/Local File Inclusion Vulnerabilities

No description provided by source. + CMScout 2.06 Remote SQL Injection/Local File Inclusion + Discovered By SirGod + Visit : www.mortal-team.org + Visit : www.h4cky0u.org + Greetz : All my friends + Script homepage : http://www.cmscout.co.za/ + Dork : Powered by CMScout c2005 CMScout Group + Remo...

7.1AI score
Exploits0
0day.today
0day.today
added 2008/12/30 12:0 a.m.24 views

CMScout 2.06 SQL Injection/Local File Inclusion Vulnerabilities

Exploit for unknown platform in category web applications =============================================================== CMScout 2.06 SQL Injection/Local File Inclusion Vulnerabilities =============================================================== + CMScout 2.06 Remote SQL Injection/Local File...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2008/12/30 12:0 a.m.16 views

CMScout 2.06 - SQL Injection Local File Inclusion

CMScout 2.06 - SQL Injection Local File Inclusion + CMScout 2.06 Remote SQL Injection/Local File Inclusion + Discovered By SirGod + Visit : www.mortal-team.org + Visit : www.h4cky0u.org + Greetz : All my friends + Script homepage : http://www.cmscout.co.za/ + Dork : Powered by CMScout c2005 CMSco...

Exploits0
Rows per page
Query Builder