13 matches found
EUVD-2009-1759
Malware in sbrugna...
EUVD-2013-3195
Malware in sbrugna...
digg.com XSS vulnerability
Vulnerable URL: http://digg.com/search?format=rss=1%3Csvg%2fonload%3Dalert%28%27XSSPOSED%27%29%3E Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 1231 VIP website status:| Yes Check digg.com SSL connection:| Grad...
Pligg CMS 2.0.2 - Stored XSS
Hi Team, Affected Vendor: http://pligg.com/ Date: 23/04/2015 Discovered by: Joel Vadodil Varghese Type of vulnerability: Persistent XSS Tested on: Windows 8.1 Product: Pligg CMS Version: 2.0.2 Tested Link: http://localhost/pligg/admin/adminpage.php Description: Pligg CMS is a content management...
CVE-2013-3258
Cross-site request forgery CSRF vulnerability in he Digg Digg plugin before 5.3.5 for WordPress allows remote attackers to hijack the authentication of users for requests that modify settings via unspecified vectors...
CVE-2013-3258
The CVE concerns the Digg Digg WordPress plugin (versions before 5.3.5). A Cross‑Site Request Forgery (CSRF) vulnerability could allow an attacker to hijack a user’s authenticated session and cause authenticated requests that modify plugin settings via unspecified vectors. The root cause details ...
WordPress Digg Digg Plugin <= 5.3.4 - CSRF
Because of this vulnerability, the attackers can hijack the authentication of users for requests that modify settings via unspecified vectors. Solution Update the plugin...
Joomla Countries SQL Injection
Joomla Component comcountries SQL Injection Vulnerability Author : FL0RiX Name : comcountries Greez : Deep-Power, PyskE,Septemb0x,KaCaK Bug Type : SQL Injection Infection : Admin login bilgileri alinabilir. Demo Vuln. : http://www.gocvg.com/index.php?option=comcountries&locat=SQL INJ. Bug Fix...
phpcms 2007sp6 digg-add.php Sql注入漏洞
No description provided by source...
[SECURITY] Fedora 11 Update: drupal-service_links-6.x.1.0-5.fc11
The service links module enables admins to add links to a number of social bookmarking sites, blog search sites etc. Includes sites are del.icio.us, Digg, Reddit, ma.gnolia.com, Newsvine, Furl, Google, Yahoo, Technorati and IceRocket...
Sql injection
SQL injection vulnerability in inc/ajax.asp in MaxCMS 2.0 allows remote attackers to execute arbitrary SQL commands via the id parameter in a digg action...
WoDig community program wodig. asp page the filter is not strict lead to SQL injection vulnerabilities-vulnerability warning-the black bar safety net
System number: WAVDB-0 1 4 2 1 Affected version: WoDig 4.1.2 Program description: WODIG is a refined design of Chinese DIGG community open source program is a Windows NT Service environment under the DIGG community program the best solution. Vulnerability analysis: In the file wodig. asp: tagsnam...
WoDig社区程序wodig.asp页面过滤不严导致SQL注入漏洞
WODIG是一套经过完善设计的中文DIGG社区开源程序,是Windows NT服务环境下DIGG社区程序的最佳解决方案。 在文件wodig.asp中: tagsname = Request"tagsname" //第13行 …… %Call Default.GetMainContent"wodig.asp"% //第105行 GetMainContent过程在文件/WoLib/ClsClass.asp中: Public Sub GetMainPPpageurl //第827行 …… if tagsname "" then //第839行 Sql = Sql & " and SrcID...