9 matches found
WordPress NextGen Cu3er Gallery Plugin - Information Disclosure
This plugin is prone to an Iinformation disclosure vulnerability. Solution Update plugin...
WordPress NextGen Cu3er Gallery Plugin - Information Disclosure
This plugin is prone to an Iinformation disclosure vulnerability. Solution Update plugin...
WordPress Flexolio XSS / Disclosure / File Upload
Hello list! There are Content Spoofing, Cross-Site Scripting, Full path disclosure, Abuse of Functionality, Denial of Service and Arbitrary File Upload vulnerabilities in Flexolio for WordPress. Which contains TimThumb and CU3ER. In April 2011 I wrote about vulnerabilities in TimThumb...
CS and XSS vulnerabilities in CU3ER
Hello 3APA3A! These are Content Spoofing and Cross-Site Scripting vulnerabilities in CU3ER. Which I found in October 2013 at one web site. This is popular flash file and in Google's index there are up to million web sites with it near 1060000 sites in October, now near 717000 sites. In last years...
CS, XSS and FPD vulnerabilities in multiple plugins with CU3ER for WordPress
Hello 3APA3A! Recently I disclosed vulnerabilities in CU3ER http://seclists.org/fulldisclosure/2014/Apr/244 and vulnerabilities in plugins with CU3ER for WordPress, Joomla, SilverStripe and Plone http://seclists.org/fulldisclosure/2014/Apr/251. This is popular flash file and in Google's index the...
Multiple vulnerabilities in Flexolio for WordPress
Hello 3APA3A! There are Content Spoofing, Cross-Site Scripting, Full path disclosure, Abuse of Functionality, Denial of Service and Arbitrary File Upload vulnerabilities in Flexolio for WordPress. Which contains TimThumb and CU3ER. In April 2011 I wrote about vulnerabilities in TimThumb...
Vulnerabilities in plugins with CU3ER for WordPress, Joomla, SilverStripe and Plone
Hello 3APA3A! Recently I disclosed vulnerabilities in CU3ER http://seclists.org/fulldisclosure/2014/Apr/244. This is popular flash file and in Google's index there are up to million web sites with it inurl:cu3er.swf filetype:swf - now Google shows 994000 results. There are any plugins for differe...
CU3ER 1.24 Cross Site Scripting / Content Spoofing
Hello list! These are Content Spoofing and Cross-Site Scripting vulnerabilities in CU3ER. Which I found in October 2013 at one web site. This is popular flash file and in Google's index there are up to million web sites with it near 1060000 sites in October, now near 717000 sites. In last years I...
WordPress NextGen Cu3er Gallery Information Disclosure
1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 x Official Website: http://www.1337day.com 0 1 x...