CVE-2019-3965

In OpenEMR 5.0.1 and earlier, controller.php contains a reflected XSS vulnerability in the documentid parameter. This could allow an attacker to execute arbitrary code in the context of a user's session...

CVE-2019-3963

In OpenEMR 5.0.1 and earlier, controller.php contains a reflected XSS vulnerability in the patientid parameter. This could allow an attacker to execute arbitrary code in the context of a user's session...

Cross site request forgery (csrf)

School Event Management System 1.0 allows CSRF via user/controller.php?action=edit...

CVE-2018-18799

School Attendance Monitoring System 1.0 has CSRF via event/controller.php?action=photos...

Directory traversal

statics/ueditor/php/vendor/Local.class.php in YUNUCMS 1.1.5 allows arbitrary file deletion via the statics/ueditor/php/controller.php?action=remove key parameter, as demonstrated by using directory traversal to delete the install.lock file...

stockex.co.tt XSS vulnerability

Open Bug Bounty ID: OBB-605007 Description| Value ---|--- Affected Website:| stockex.co.tt Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Joomla! Zh YandexMap 6.2.1.0 SQL Injection

input name="id" value="-11 UNION ALL SELECT...

ImpressPages CMS 3.6 - Arbitrary File Deletion

ImpressPages CMS 3.6 - Arbitrary File Deletion ImpressPages CMS v3.6 Remote Arbitrary File Deletion Vulnerability Vendor: ImpressPages UAB Product web page: http://www.impresspages.org Affected version: 3.6 Summary: ImpressPages CMS is an open source web content management system with...

WordPress Plugin ProPlayer 4.7.7 - SQL Injection

Exploit Title: ProPlayer plugin tablePrefix."proplayerplaylist WHERE POSTID='$id'"; $playlistRow = mysqlfetchrow$query; return $this-withBackwardCompatibility$playlistRow2; ... if !empty$GET"ppplaylistid" header"Content-type: application/xml"; $xml =...

Path traversal

Metaways Tine 2.0 allows remote attackers to obtain sensitive information via unknown vectors in 1 Crm/Controller.php, 2 Crm/Export/Csv.php, or 3 Calendar/Model/Attender.php, which reveal the full installation path...

Sql injection

SQL injection vulnerability in the submitSurvey function in controller.php in JQuarks4s comjquarks4s component 1.0.0 for Joomla!, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the q parameter in a submitSurvey action to index.php...

OpenEMR 3.2.0 SQL Injection / Cross Site Scripting

Exploit Title: OpenEMR v3.2.0 Multiple Vulnerabilities Date: December 26, 2010 Author: Blake Software Link: http://sourceforge.net/projects/openemr/ Version: 3.2.0 Tested on: Windows XP SP3 Description: Open Source Practice Management, Electronic Medical Record, Prescription Writing and Medical...

CVE-2010-4330

Directory traversal vulnerability in includes/controller.php in Pulse CMS Basic before 1.2.9 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the p parameter to index.php...

Pulse CMS Basic Local File Inclusion Vulnerability

Exploit for php platform in category web applications ================================================== Pulse CMS Basic Local File Inclusion Vulnerability ================================================== I. DESCRIPTION --------------------------------------- A vulnerability exists in the...

PBBooking 1.0.4_3 Joomla Component Multiple Blind SQL Injection

PBBooking 1.0.43 Joomla Component Multiple Blind SQL Injection Name PBBooking Vendor http://sourceforge.net/projects/pbbooking/ Versions Affected 1.0.43 Author Salvatore Fresta aka Drosophila Website http://www.salvatorefresta.net Contact salvatorefresta at gmail dot com Date 2010-07-29 X. INDEX ...

Joomla Component PhotoMap Gallery 1.6.0 Multiple Blind SQL Injection

Exploit for php platform in category web applications ==================================================================== Joomla Component PhotoMap Gallery 1.6.0 Multiple Blind SQL Injection ==================================================================== PhotoMap Gallery 1.6.0 Joomla...

Joomla! Component com_photomapgallery 1.6.0 - Multiple Blind SQL Injections

Joomla! Component comphotomapgallery 1.6.0 - Multiple Blind SQL Injections PhotoMap Gallery 1.6.0 Joomla Component Multiple Blind SQL Injection Name PhotoMap Gallery Vendor http://extensions.joomla.org/extensions/photos-a-images/photo-gallery/10658 Versions Affected 1.6.0 Author Salvatore Fresta...

Sql injection

SQL injection vulnerability in the updateOnePage function in components/combfsurveypro/controller.php in BF Survey Pro Free combfsurveyprofree 1.2.4, and other versions before 1.2.6, a component for Joomla!, allows remote attackers to execute arbitrary SQL commands via the table parameter in an...

CVE-2009-4625

The CVE-2009-4625 entry concerns BF Survey Pro Free (com_bfsurvey_profree) for Joomla! where the updateOnePage action (table parameter) is vulnerable to SQL injection. Affected versions include 1.2.4 and other versions prior to 1.2.6. The vulnerability arises from improper validation of the table...

Unfixed XSS vulnerability at www.jamstockex.com

Security researcher xylitol, has submitted on 29/10/2008 a cross-site-scripting XSS vulnerability affecting www.jamstockex.com, which at the time of submission ranked 1539444 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 13/09/2009. It is...