efront <= 3.5.4 (database.php path) Remote File Inclusion Vulnerability

No description provided by source. efront = 3.5.4 Remote File Include Vulnerability Download Script : http://sourceforge.net/projects/efrontlearning/files/ Author : cr4wl3r Contact : cr4wl3r4tlinuxmaildotorg Location : Gorontalo - INDONESIA file : database.php line 15...

eFront 3.5.5 'langname' Parameter Local File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/38787/info eFront is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information and execut...

eFront <= 3.5.1 / build 2710 Remote Arbitrary Upload Vulnerability

No description provided by source. -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- eFront = 3.5.1 / build 2710: Remote File Inclusion Vulnerability -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- $ Program: eFront $ File affected: studentpage.php / professorpag...

eFront <= 3.6.10 (build 11944) Multiple Security Vulnerabilities

No description provided by source. ---------------------------------------------------------------- eFront = 3.6.10 build 11944 Multiple Security Vulnerabilities ---------------------------------------------------------------- author.............: EgiX mail...............: n0b0d13satgmaildotcom...

eFront 3.6.14 (build 18012) - Stored XSS in Multiple Parameters

No description provided by source. Exploit-DB Note: Screenshot provided by exploit author. Exploit Title: eFront v3.6.14 build 18012 -Stored XSS in multiple Parameters Author: sajith version: eFront v3.6.14- build 18012 Vendor Homepage: http://www.efrontlearning.net/ vulnerable app...

EFront <= 3.6.9 Community Edition Multiple Vulnerabilities

No description provided by source. Exploit Title: EFront = 3.6.9 Community Edition Multiple Vulnerabilities Google Dork: eFront version 3.6.9 inurl:index.php?ctg= Date: 5/09/2011 Public release: When 3.6.10 will be released Author: IHTeam Software Link:...

eFront 3.6.14.4 (surname param) - Persistent XSS Vulnerability

No description provided by source. ? Exploit Title: Persistent Cross Site Scripting Vulnerability in eFront 3.6.14.4 Date: 05 June 2014 Exploit Author: shyamkumar somana Vendor Homepage: http://www.efrontlearning.net Software Link:...

eFront 3.6.14.4 profile.php 跨站脚本漏洞

No description provided by source...

CVE-2014-4033

Cross-site scripting XSS vulnerability in libraries/includes/personal/profile.php in Epignosis eFront 3.6.14.4 allows remote attackers to inject arbitrary web script or HTML via the surname parameter to student.php...

Cross site scripting

Cross-site scripting XSS vulnerability in libraries/includes/personal/profile.php in Epignosis eFront 3.6.14.4 allows remote attackers to inject arbitrary web script or HTML via the surname parameter to student.php...

CVE-2014-4033

Cross-site scripting XSS vulnerability in libraries/includes/personal/profile.php in Epignosis eFront 3.6.14.4 allows remote attackers to inject arbitrary web script or HTML via the surname parameter to student.php...

CVE-2014-4033

CVE-2014-4033 is an XSS vulnerability in Epignosis eFront 3.6.14.4, identified in libraries/includes/personal/profile.php. It can be triggered via the surname parameter to student.php to inject arbitrary web script/HTML. Red Hat and NVD entries reproduce the same description. Exploitation details...

eFront 3.6.14.4 - &#039;surname&#039; Persistent Cross-Site Scripting

​ Exploit Title: Persistent Cross Site Scripting Vulnerability in eFront 3.6.14.4 Date: 05 June 2014 Exploit Author: shyamkumar somana Vendor Homepage: http://www.efrontlearning.net Software Link: https://sourceforge.net/projects/efrontlearning/files/latest/download Version: 3.6.14.4 Tested on:...

eFront 3.6.14.4 Cross Site Scripting

​ Exploit Title: Persistent Cross Site Scripting Vulnerability in eFront 3.6.14.4 Date: 05 June 2014 Exploit Author: shyamkumar somana Vendor Homepage: http://www.efrontlearning.net Software Link: https://sourceforge.net/projects/efrontlearning/files/latest/download Version: 3.6.14.4 Tested on:...

eFront 3.6.14.4 (surname param) - Persistent XSS Vulnerability

Exploit for php platform in category web applications Exploit Title: Persistent Cross Site Scripting Vulnerability in eFront 3.6.14.4 Date: 05 June 2014 Exploit Author: shyamkumar somana Vendor Homepage: http://www.efrontlearning.net Software Link:...

eFront 3.6.14.4 - surname Persistent Cross-Site Scripting

eFront 3.6.14.4 - surname Persistent Cross-Site Scripting ​ Exploit Title: Persistent Cross Site Scripting Vulnerability in eFront 3.6.14.4 Date: 05 June 2014 Exploit Author: shyamkumar somana Vendor Homepage: http://www.efrontlearning.net Software Link:...

eFront LMS 3.6.14 File Upload / Path Disclosure

============================================================= \ \ / / | | / \ / | | \ \ V / | | | | | | | | | / \ | ' \ | | | | | | | | | | | | '| | / / . \ | | | | | | || | | | | | | | | | // \ | ./ || / || || |/ || | | || blackpentesters.blogspot.com...

CVE-2013-7194

Multiple cross-site scripting XSS vulnerabilities in www/administrator.php in eFront 3.6.14 build 18012 allow remote authenticated administrators to inject arbitrary web script or HTML via the 1 Last name, 2 Lesson name, or 3 Course name field...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in www/administrator.php in eFront 3.6.14 build 18012 allow remote authenticated administrators to inject arbitrary web script or HTML via the 1 Last name, 2 Lesson name, or 3 Course name field...

CVE-2013-7194

CVE-2013-7194 describes multiple XSS vulnerabilities in the eFront 3.6.14 (build 18012) software, specifically in www/administrator.php. The underlying issue allows remote authenticated administrators to inject arbitrary web script or HTML via one of three fields: Last name, Lesson name, or Cours...