52 matches found
CVE-2011-3598
Multiple cross-site scripting XSS vulnerabilities in phpPgAdmin before 5.0.3 allow remote attackers to inject arbitrary web script or HTML via 1 a web page title, related to classes/Misc.php; or the 2 returnurl or 3 returndesc parameter to display.php...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in phpPgAdmin before 5.0.3 allow remote attackers to inject arbitrary web script or HTML via 1 a web page title, related to classes/Misc.php; or the 2 returnurl or 3 returndesc parameter to display.php...
CVE-2011-3598
Multiple cross-site scripting XSS vulnerabilities in phpPgAdmin before 5.0.3 allow remote attackers to inject arbitrary web script or HTML via 1 a web page title, related to classes/Misc.php; or the 2 returnurl or 3 returndesc parameter to display.php...
CVE-2011-3598
Multiple cross-site scripting XSS vulnerabilities in phpPgAdmin before 5.0.3 allow remote attackers to inject arbitrary web script or HTML via 1 a web page title, related to classes/Misc.php; or the 2 returnurl or 3 returndesc parameter to display.php...
E-Xoopport v3.1 eCal display.php (katid) SQL Injection Exploit
Exploit for php platform in category web applications ============================================================== E-Xoopport v3.1 eCal display.php katid SQL Injection Exploit ============================================================== = 5 this may take some minutes.. / EXPLOIT /...
Cross site scripting
Cross-site scripting XSS vulnerability in display.php in Obsession-Design Image-Gallery ODIG 1.1 allows remote attackers to inject arbitrary web script or HTML via the folder parameter...
Obsession-Design Image-Gallery 1.1 - display.php Cross-Site Scripting
Obsession-Design Image-Gallery 1.1 - display.php Cross-Site Scripting source: https://www.securityfocus.com/bid/40557/info Obsession-Design Image-Gallery is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue...
CVE-2009-2177
code/display.php in fuzzylime cms 3.03a and earlier, when magicquotesgpc is disabled, allows remote attackers to conduct directory traversal attacks and overwrite arbitrary files via a "....//" dot dot in the s parameter, which is collapsed into a "../" value...
CVE-2009-2176
Multiple directory traversal vulnerabilities in fuzzylime cms 3.03a and earlier, when magicquotesgpc is disabled, allow remote attackers to include and execute arbitrary local files via directory traversal sequences in the 1 list parameter to code/confirm.php and the 2 template parameter to...
fuzzylime cms <= 3.03a Local Inclusion / Arbitrary File Corruption PoC
+------------------------------------------------------------------------+ | fuzzylime cms = 3.03a local inclusion / arbitrary file corruption poc | +-----------+------------------------------------------------------------+ | by staker | +-----------+---------------------+ Author : xhaxkerx Speci...
fuzzylime cms <= 3.03a Local Inclusion / Arbitrary File Corruption PoC
Exploit for unknown platform in category web applications ====================================================================== fuzzylime cms = 3.03a Local Inclusion / Arbitrary File Corruption PoC ======================================================================...
FuzzyLime CMS 3.03a Local File Inclusion
+------------------------------------------------------------------------+ | fuzzylime cms = 3.03a local inclusion / arbitrary file corruption poc | +-----------+------------------------------------------------------------+ | by staker | +-----------+---------------------+ | mail:...
Fuzzylime CMS 3.03a - Local Inclusion / Arbitrary File Corruption
+------------------------------------------------------------------------+ | fuzzylime cms = 3.03a local inclusion / arbitrary file corruption poc | +-----------+------------------------------------------------------------+ | by staker | +-----------+---------------------+ | mail:...
Code injection
Static code injection vulnerability in post.php in Simple PHP News 1.0 final allows remote attackers to inject arbitrary PHP code into news.txt via the post parameter, and then execute the code via a direct request to display.php. NOTE: some of these details are obtained from third party...
Code injection
Multiple static code injection vulnerabilities in post.php in Simple PHP News 1.0 final allow remote attackers to inject arbitrary PHP code into news.txt via the 1 title or 2 date parameter, and then execute the code via a direct request to display.php. NOTE: the provenance of this information is...
CVE-2008-2884
PHP remote file inclusion vulnerability in display.php in RSS-aggregator allows remote attackers to execute arbitrary PHP code via a URL in the path parameter. NOTE: some of these details are obtained from third party information...
Unfixed XSS vulnerability at www.euro-online.org
Security researcher Futility, has submitted on 27/06/2008 a cross-site-scripting XSS vulnerability affecting www.euro-online.org, which at the time of submission ranked 607414 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 08/07/2008. It is...
rssaggregator-rfi.txt
RSS-aggregator display Remote File Inclusion Vulnerability Found : Ghost Hacker R-H TeaM HOME : www.Real-Hack.net Email : [email protected] Script : RSS-aggregator Download Script : http://www.rss-aggregator.com/download.php =========================== Viva IslaM ==========================...
fuzzylime cms <= 3.01 (admindir) Remote File Inclusion Vulnerability
No description provided by source. .-----------------------------------------------------------------------------. | vuln.: fuzzylime cms = 3.01 Remote File Inclusion Vulnerability | | download: http://cms.fuzzylime.co.uk/ | | dork: "powered by fuzzylime" | | | | author: [email protected]&nb...
fuzzylime-rfi.txt
.-----------------------------------------------------------------------------. | vuln.: fuzzylime cms = 3.01 Remote File Inclusion Vulnerability | | download: http://cms.fuzzylime.co.uk/ | | dork: "powered by fuzzylime" | | | | author: [email protected] | | homepage: http://irk4z.wordpress.com/ | |...