Lucene search
K

5 matches found

NVD
NVD
added 2018/05/29 7:29 a.m.27 views

CVE-2018-11535

An issue was discovered in SITEMAKIN SLAC Site Login and Access Control v1.0. The parameter "myitemsearch" in users.php is exploitable using SQL injection...

9.8CVSS9.9AI score0.0328EPSS
Exploits5References2
CVE
CVE
added 2018/05/29 7:0 a.m.60 views

CVE-2018-11535

CVE-2018-11535 – SITEMAKIN SLAC v1.0 SQL Injection in the parameter my_item_search of users.php (SITEMAKIN SLAC) is documented with a SQL injection vulnerability. Connected CNVD-2018-10676 confirms a remote attacker can exploit this to execute arbitrary SQL commands in the backend. The vulnerabil...

9.8CVSS9.8AI score0.0328EPSS
Exploits5References2Affected Software1
Packet Storm
Packet Storm
added 2018/05/29 12:0 a.m.36 views

Sitemakin SLAC 1.0 SQL Injection

Exploit Title: SLAC v1.0: Blind SQL Injection / XPath Injection Date: 29-05-2018 Vendor Homepage: https://sitemakin.com/login-script-demo Exploit Author: Divya Jain Version: v1.0 CVE: CVE-2018-11535 Category: Webapps Severity: High Tested on: KaLi LinuXx64 Proof of Concept:...

0.0328EPSS
Exploits5
exploitpack
exploitpack
added 2018/05/29 12:0 a.m.70 views

Sitemakin SLAC 1.0 - my_item_search SQL Injection

Sitemakin SLAC 1.0 - myitemsearch SQL Injection Exploit Title: SLAC v1.0: Blind SQL Injection / XPath Injection Date: 29-05-2018 Vendor Homepage: https://sitemakin.com/login-script-demo Exploit Author: Divya Jain Version: v1.0 CVE: CVE-2018-11535 Category: Webapps Severity: High Tested on: KaLi...

7.5CVSS0.0328EPSS
Exploits5
Exploit DB
Exploit DB
added 2018/05/29 12:0 a.m.46 views

Sitemakin SLAC 1.0 - 'my_item_search' SQL Injection

Exploit Title: SLAC v1.0: Blind SQL Injection / XPath Injection Date: 29-05-2018 Vendor Homepage: https://sitemakin.com/login-script-demo Exploit Author: Divya Jain Version: v1.0 CVE: CVE-2018-11535 Category: Webapps Severity: High Tested on: KaLi LinuXx64 Proof of Concept:...

9.8CVSS9.7AI score0.0328EPSS
Exploits5
Rows per page
Query Builder