4 matches found
Improper Neutralization of Special Elements in Data Query Logic
Overview Affected versions of this package are vulnerable to Improper Neutralization of Special Elements in Data Query Logic via the token search. An attacker can exhaust system resources and disrupt service availability by submitting specially crafted search patterns containing SQL wildcard...
CVE-2022-26111
The BeanShell components of IRISNext through 9.8.28 allow execution of arbitrary commands on the target server by creating a custom search or editing an existing/predefined search of the documents. The search components permit adding BeanShell expressions that result in Remote Code Execution in t...
CVE-2022-26111
The BeanShell components of IRISNext through 9.8.28 allow execution of arbitrary commands on the target server by creating a custom search or editing an existing/predefined search of the documents. The search components permit adding BeanShell expressions that result in Remote Code Execution in t...
Web Glory CMS Cross Site Scripting
Exploit Title: Web Glory CMS Cross Site Scripting Vulnerability Google Dork:intext:"Powered By Web Glory" Date: 08/24/2012 Author: Crim3R Vendor Home : http://www.webglory.pk/ Tested on: all $ $ ----Author will be not responsible for any damage---- $ ======================================== HTTP...