copyparty vulnerable to path traversal attack

Summary All versions before 1.8.2 have a path traversal vulnerability, allowing an attacker to download unintended files from the server. Details Unauthenticated users were able to retrieve any files which are accessible according to OS-level permissions from the copyparty process. Usually, this ...

WordPress Newsletter 4.6.0 Cross Site Request Forgery / Cross Site Scripting

Exploit for php platform in category web applications Wordpress Plugin: Newsletter 4.6.0 https://wordpress.org/plugins/newsletter/ is vulnerable to CSRF and XSS. The issue is supposed to be fixed in version 4.6.1 . See https://wordpress.org/plugins/newsletter/changelog/ for more details. 1. Store...

WordPress Newsletter 4.6.0 Cross Site Request Forgery / Cross Site Scripting

Hello, Wordpress Plugin: Newsletter 4.6.0 https://wordpress.org/plugins/newsletter/ is vulnerable to CSRF and XSS. The issue is supposed to be fixed in version 4.6.1 . See https://wordpress.org/plugins/newsletter/changelog/ for more details. 1. Stored Cross-Site Scripting XSS Authenticated...

sitesi-sql.txt

Alýþveriþ Sitesi Scripti SQL injection Vulnerability. Software: Alýþveriþ Sitesi Scripti download: not free 350 YTL http://www.aspindir.com/goster/5024 demo: http://www.hemensatarim.com/ Found By: GeFORC3 G3 Exploit: http://www.example.com/?menukat=2%20&mod=product&catid=7&productid=SQL...