Lucene search
+L

199 matches found

Packet Storm
Packet Storm
added 2017/07/02 12:0 a.m.46 views

DoorGets CMS 7.0 Open Redirect

Title: Open Redirect DoorGets CMS Version: 7.0 vendor: https://github.com/doorgets/doorGets/ Tested on: Windows 64-bit Author: Rudra Sarkar @rudr4sarkar CVE: 2016-3726 1. Affected Param back= 2. Full URL http://127.0.0.1/dg-user/?controller=authentification&back=http%3A%2F%2Fexploitlab.ex%2F 3. G...

5.8CVSS5AI score0.02309EPSS
Exploits1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.15 views

doorGets CMS - CSRF Vulnerability

No description provided by source. Title: Doorgets CSRF Vulnerability Author: n0pe Software Link: http://www.doorgets.com/ Download: http://www.doorgets.com/?sourcescms Tested: BackBox Linux 3 With this vulnerability you can change the configuration of the site. Proof of concept: html body form...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.28 views

doorGets CMS 5.2 - SQL Injection Vulnerability

doorGets CMS 5.2 sql注入漏洞 虽然标题是5.2版本的,但厂商在漏洞公布后就修复了并且没有更新版本, 所以漏洞其实存在于5.1版本(下载了不同版本,实验证实) 漏洞存在于/doorgets/core/doorgetsFunctions.php文件中 --------省略部分代码 507: $id = $this-Controller-form'positiondown'-i'id'; $type = $this-Controller-form'positiondown'-i'type'; $pos =...

7AI score
Exploits0
Packet Storm
Packet Storm
added 2014/02/28 12:0 a.m.22 views

doorGets 6.0 Cross Site Scripting

============================================================== Title ...| doorGets 6.0 Multiple vulnerabilities Version .| doorGets 6.0 Date ....| 27.02.2014 Found ...| HauntIT Blog Home ....| http://sourceforge.net ==============================================================...

0.2AI score
Exploits0
myhack58
myhack58
added 2014/02/26 12:0 a.m.19 views

doorGets CMS SQL injection vulnerability-vulnerability warning-the black bar safety net

Vulnerability version: doorGets CMS 5.2 Vulnerability description: CVE ID:CVE-2 0 1 4-1 4 5 9 doorGets CMS is a content management system. Since the transfer to"/dg-admin/index.php"script"positiondownid" HTTP POST parameters failed to adequately filtered, the attacker can access the management...

0.8AI score
Exploits0
NVD
NVD
added 2014/02/11 5:55 p.m.57 views

CVE-2014-1459

SQL injection vulnerability in dg-admin/index.php in doorGets CMS 5.2 and earlier allows remote authenticated administrators to execute arbitrary SQL commands via the positiondownid parameter. NOTE: this can be leveraged using CSRF to allow remote attackers to execute arbitrary SQL commands...

6.5CVSS7.9AI score0.02269EPSS
Exploits5References7
Prion
Prion
added 2014/02/11 5:55 p.m.21 views

Sql injection

SQL injection vulnerability in dg-admin/index.php in doorGets CMS 5.2 and earlier allows remote authenticated administrators to execute arbitrary SQL commands via the positiondownid parameter. NOTE: this can be leveraged using CSRF to allow remote attackers to execute arbitrary SQL commands...

6.5CVSS8.6AI score0.02269EPSS
Exploits5References7Affected Software1
Cvelist
Cvelist
added 2014/02/11 5:0 p.m.53 views

CVE-2014-1459

SQL injection vulnerability in dg-admin/index.php in doorGets CMS 5.2 and earlier allows remote authenticated administrators to execute arbitrary SQL commands via the positiondownid parameter. NOTE: this can be leveraged using CSRF to allow remote attackers to execute arbitrary SQL commands...

7.9AI score0.02269EPSS
Exploits5References7
CVE
CVE
added 2014/02/11 5:0 p.m.66 views

CVE-2014-1459

DoorGets CMS

6.5CVSS8.1AI score0.02269EPSS
Exploits5References7Affected Software1
securityvulns
securityvulns
added 2014/02/11 12:0 a.m.94 views

SQL Injection in doorGets CMS

Advisory ID: HTB23197 Product: doorGets CMS Vendor: doorGets Vulnerable Versions: 5.2 and probably prior Tested Version: 5.2 Advisory Publication: January 15, 2014 without technical details Vendor Notification: January 15, 2014 Vendor Patch: January 15, 2014 Public Disclosure: February 5, 2014...

6.5CVSS8.1AI score0.02269EPSS
Exploits5
0day.today
0day.today
added 2014/02/08 12:0 a.m.70 views

doorGets CMS 5.2 - SQL Injection Vulnerability

Exploit for php platform in category web applications Advisory Details: High-Tech Bridge Security Research Lab discovered vulnerability in doorGets CMS, which can be exploited to perform SQL Injection attacks. 1 SQL Injection in doorGets CMS: CVE-2014-1459 The vulnerability exists due to...

6.5CVSS6.5AI score0.02269EPSS
Exploits5
exploitpack
exploitpack
added 2014/02/07 12:0 a.m.91 views

doorGets CMS 5.2 - SQL Injection

doorGets CMS 5.2 - SQL Injection Advisory ID: HTB23197 Product: doorGets CMS Vendor: doorGets Vulnerable Versions: 5.2 and probably prior Tested Version: 5.2 Advisory Publication: January 15, 2014 without technical details Vendor Notification: January 15, 2014 Vendor Patch: January 15, 2014 Publi...

6.5CVSS0.4AI score0.02269EPSS
Exploits5
Exploit DB
Exploit DB
added 2014/02/07 12:0 a.m.52 views

doorGets CMS 5.2 - SQL Injection

Advisory ID: HTB23197 Product: doorGets CMS Vendor: doorGets Vulnerable Versions: 5.2 and probably prior Tested Version: 5.2 Advisory Publication: January 15, 2014 without technical details Vendor Notification: January 15, 2014 Vendor Patch: January 15, 2014 Public Disclosure: February 5, 2014...

6.5CVSS6.5AI score0.02269EPSS
Exploits5
Packet Storm
Packet Storm
added 2014/02/06 12:0 a.m.63 views

doorGets CMS 5.2 SQL Injection

Advisory ID: HTB23197 Product: doorGets CMS Vendor: doorGets Vulnerable Versions: 5.2 and probably prior Tested Version: 5.2 Advisory Publication: January 15, 2014 without technical details Vendor Notification: January 15, 2014 Vendor Patch: January 15, 2014 Public Disclosure: February 5, 2014...

6.5CVSS0.4AI score0.02269EPSS
Exploits5
htbridge
htbridge
added 2014/01/15 12:0 a.m.56 views

SQL Injection in doorGets CMS

High-Tech Bridge Security Research Lab discovered vulnerability in doorGets CMS, which can be exploited to perform SQL Injection attacks. 1 SQL Injection in doorGets CMS: CVE-2014-1459 The vulnerability exists due to insufficient validation of "positiondownid" HTTP POST parameter passed to...

5.1CVSS8AI score0.02269EPSS
Exploits5Affected Software1
Packet Storm
Packet Storm
added 2013/03/02 12:0 a.m.26 views

doorGets CMS Cross Site Request Forgery

Title: Doorgets CSRF Vulnerability Author: n0pe Software Link: http://www.doorgets.com/ Download: http://www.doorgets.com/?sourcescms Tested: BackBox Linux 3 With this vulnerability you can change the configuration of the site. Proof of concept: Title Slogan Description Copyright Year of creation...

0.6AI score
Exploits0
0day.today
0day.today
added 2013/03/01 12:0 a.m.20 views

Doorgets CSRF Vulnerability

With this vulnerability you can change the configuration of the site. Title Slogan Description Copyright Year of creation Keywords ID Facebook Disqus doorgets-home doorgets-light 0day.today 2018-04-03...

7AI score
Exploits0
exploitpack
exploitpack
added 2013/03/01 12:0 a.m.12 views

doorGets CMS - Cross-Site Request Forgery

doorGets CMS - Cross-Site Request Forgery Title: Doorgets CSRF Vulnerability Author: n0pe Software Link: http://www.doorgets.com/ Download: http://www.doorgets.com/?sourcescms Tested: BackBox Linux 3 With this vulnerability you can change the configuration of the site. Proof of concept: Title...

1AI score
Exploits0
Exploit DB
Exploit DB
added 2013/03/01 12:0 a.m.22 views

doorGets CMS - Cross-Site Request Forgery

Title: Doorgets CSRF Vulnerability Author: n0pe Software Link: http://www.doorgets.com/ Download: http://www.doorgets.com/?sourcescms Tested: BackBox Linux 3 With this vulnerability you can change the configuration of the site. Proof of concept: Title Slogan Description Copyright Year of creation...

7AI score
Exploits0
Rows per page
Query Builder