WordPress plugin is-human 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...

EUVD-2012-2899

Malware in sbrugna...

EUVD-2009-2225

Malware in sbrugna...

EUVD-2022-51632

Malicious code in bioql PyPI...

CVE-2022-4276

A vulnerability was found in House Rental System and classified as critical. Affected by this issue is some unknown functionality of the file tenant-engine.php of the component POST Request Handler. The manipulation of the argument idphoto leads to unrestricted upload. The attack may be launched...

Out-of-bounds

A vulnerability was found in House Rental System and classified as critical. Affected by this issue is some unknown functionality of the file tenant-engine.php of the component POST Request Handler. The manipulation of the argument idphoto leads to unrestricted upload. The attack may be launched...

CVE-2022-4276 House Rental System POST Request tenant-engine.php unrestricted upload

A vulnerability was found in House Rental System and classified as critical. Affected by this issue is some unknown functionality of the file tenant-engine.php of the component POST Request Handler. The manipulation of the argument idphoto leads to unrestricted upload. The attack may be launched...

PT-2022-26550 · Unknown · House Rental System

Name of the Vulnerable Software and Affected Versions: House Rental System affected versions not specified Description: A critical issue was found in the House Rental System, affecting some unknown functionality of the file tenant-engine.php of the component POST Request Handler. The manipulation...

CVE-2022-4276 House Rental System POST Request tenant-engine.php unrestricted upload

A vulnerability was found in House Rental System and classified as critical. Affected by this issue is some unknown functionality of the file tenant-engine.php of the component POST Request Handler. The manipulation of the argument idphoto leads to unrestricted upload. The attack may be launched...

megashopping.ro XSS vulnerability

Open Bug Bounty ID: OBB-654446 Description| Value ---|--- Affected Website:| megashopping.ro Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

CVE-2012-2918

Chevereto 1.91 is affected by CVE-2012-2918 due to a cross-site scripting (XSS) flaw in Upload/engine.php that allows injecting arbitrary web script or HTML via the v parameter. The vulnerability is tied to the engine.php handler in Chevereto 1.91; exploitation details are not provided in the ava...

CVE-2012-2925

The CVE-2012-2925 entry concerns a SQL injection in engine.php of Simple PHP Agenda 2.2.8, exploitable via the priority parameter in addTodo. The root cause is unsanitized/concatenated input used in SQL queries, enabling remote attackers to execute arbitrary SQL commands. Affected software: Simpl...

Wordpress Plugin Is-human <=1.4.2 Remote Command Execution

Exploit for php platform in category web applications Exploit Title: is-human 1.4.2 and prior Worpdress plugin. Date: 16.05.2011 Author: neworder www.neworder-ind.net Software Link: http://wordpress.org/extend/plugins/is-human/ Version: 1.4.2 Tested on: Linux Platform The vulnerability exists in...

WordPress Plugin Is-human 1.4.2 - Remote Command Execution

WordPress Plugin Is-human 1.4.2 - Remote Command Execution Exploit Title: is-human 1.4.2 and prior Worpdress plugin. Date: 16.05.2011 Author: neworder www.neworder-ind.net Software Link: http://wordpress.org/extend/plugins/is-human/ Version: 1.4.2 Tested on: Linux Platform The vulnerability exist...

WordPress Is-Human Plugin - Remote Command Execution Vulnerability

The vulnerability exists in /is-human/engine.php. It takes control of the eval function via the "type" parameter, when the "action" is set to log-reset. Solution Point the $ishum-get array variable into $ishum-getih and point it to php stored function errorlog if you want to close the execution...

CVE-2009-2228

Cross-site scripting XSS vulnerability in engine.php in Kasseler CMS allows remote attackers to inject arbitrary web script or HTML via the url parameter in a redirect action...

CVE-2009-2228

Cross-site scripting XSS vulnerability in engine.php in Kasseler CMS allows remote attackers to inject arbitrary web script or HTML via the url parameter in a redirect action...

Kasseler CMS (FD/XSS) Multiple Remote Vulnerabilities

No description provided by source. X X X X A K KK NN N EEEEEE TTTTTTTT X X A A K K N N N E TT XX AAAAA KK N N N EEE TT X X A A K K N N N E TT X X A A K KK N NN EEEEEE TT X X Author: Sr1pt - xaknet.ru GreetZ to all users xaknet.ru, especial: baltazar, Saint, X1mer@, Trash, Ic3, G1yuk, NEXGEN,...

Kasseler CMS - File Disclosure / Cross-Site Scripting

X X X X A K KK NN N EEEEEE TTTTTTTT X X A A K K N N N E TT XX AAAAA KK N N N EEE TT X X A A K K N N N E TT X X A A K KK N NN EEEEEE TT X X Author: Sr1pt - xaknet.ru GreetZ to all users xaknet.ru, especial: baltazar, Saint, X1mer@, Trash, Ic3, G1yuk, NEXGEN, ErrNick, deface and other .. Kasseler-C...

Kasseler CMS (FD/XSS) Multiple Remote Vulnerabilities

Exploit for unknown platform in category web applications ===================================================== Kasseler CMS FD/XSS Multiple Remote Vulnerabilities ===================================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 ...