Lucene search
K

55 matches found

htbridge
htbridge
•added 2010/06/21 12:0 a.m.•26 views

Cross-site Request Forgery (CSRF) in Kryn.cms

High-Tech Bridge SA Security Research Lab has discovered vulnerability in Kryn.cms which could be exploited to perform cross-site request forgery attacks. 1 Cross-site Request Forgery CSRF in Kryn.cms The vulnerability exists due to insufficient validation of the request origin in...

5.1CVSS6.8AI score
Exploits0Affected Software1
htbridge
htbridge
•added 2010/06/07 12:0 a.m.•34 views

Cross-site Scripting (XSS) Vulnerabilities in odCMS

High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in odCMS which could be exploited to perform cross-site scripting attacks. 1 Cross-site scripting XSS vulnerability in odCMS 1.1 The vulnerability exists due to input sanitation error in the "content" parameter in...

4.3CVSS6.3AI score
Exploits0Affected Software1
htbridge
htbridge
•added 2010/06/07 12:0 a.m.•27 views

Cross-site Scripting (XSS) Vulnerabilities in Scribe CMS

High-Tech Bridge SA Security Research Lab has discovered three vulnerabilities in Scribe CMS which could be exploited to perform cross-site scripting attacks. 1 Cross-site scripting XSS vulnerability in Scribe CMS 1.1 The vulnerability exists due to input sanitation error in the “f” parameter in...

2.6CVSS6.2AI score
Exploits0Affected Software1
htbridge
htbridge
•added 2010/06/03 12:0 a.m.•22 views

Cross-site Scripting (XSS) Vulnerabilities in synType CMS

High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in synType CMS which could be exploited to perform cross-site scripting and script insertion attacks. 1 Cross-site scripting XSS vulnerability in synType CMS The vulnerability exists due to input sanitation error in...

4.3CVSS6.3AI score
Exploits0Affected Software1
htbridge
htbridge
•added 2010/04/19 12:0 a.m.•34 views

Cross-site Scripting Vulnerability in Acuity CMS

High-Tech Bridge SA Security Research Lab has discovered a vulnerability in Acuity CMS which could be exploited to perform cross-site scripting XSS attacks. 1 Cross-site scripting vulnerability in Acuity CMS Input sanitation error was found in the "page" parameter in /admin/pages/addpage.asp. A...

2.6CVSS6.1AI score
Exploits0Affected Software1
htbridge
htbridge
•added 2010/04/18 12:0 a.m.•25 views

Cross-site Scripting Vulnerability in ecoCMS

High-Tech Bridge SA Security Research Lab has discovered vulnerability in ecoCMS which could be exploited to perform cross-site scripting XSS attacks. 1 Cross-site scripting vulnerability in ecoCMS: CVE-2010-5046 Input validation error was found in the "p" parameter in /admin.php. A remote attack...

4.3CVSS5.8AI score0.01854EPSS
Exploits0Affected Software1
exploitpack
exploitpack
•added 2009/12/26 12:0 a.m.•24 views

Webring - Cross-Site Scripting

Webring - Cross-Site Scripting ======================================================================================== | Title : webring Cross Site Scripting Vulnerability | | Author : indoushka | | email : [email protected] | | Home : Souk Naamane - 04325 - Oum El Bouaghi - Algeria...

6.8AI score
Exploits0
Exploit DB
Exploit DB
•added 2007/08/06 12:0 a.m.•109 views

Cartweaver 2.16.11 - 'ProdID' SQL Injection

author:meoconxatvnbrain.net product:CartWeaver main site:www.cartweaver.com 1.with CFM CartWeaver: sql injection in: Details.cfm?ProdID=a' demo: http://www.jbracing.co.uk/Details.cfm?ProdID=1' exploit: http://www.xxx.com/Details.cfm?ProdID=sql query link admin: http://www.xxx.com/script...

7.4AI score
Exploits0
securityvulns
securityvulns
•added 2006/10/26 12:0 a.m.•51 views

AROUNDMe 0.6.9 remonte file inclusion

============================================== AROUNDMe 0.6.9 remonte file inclusion vendor site: http://barnraiser.org/ vulnerable versions: 0.6.9 and possibly older discovered by: noislet http://www.noislet.org/ vendor informed: 21.10.2006 published: 22.10.2006...

0.3AI score
Exploits0
Packet Storm
Packet Storm
•added 2006/05/06 12:0 a.m.•47 views

fastclick238.txt

Fast Click ----------- Fix : Contact the Vendor =========================================================== Aria Security Research Http://www.aria-security.net...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2005/11/30 12:0 a.m.•39 views

athena.txt

Language: PHP Script: Athena Version: 0.1a Official website: http://sourceforge.net/projects/athena Problem: Remote file inclusion Discovered by: beford & GB Description: =========== A simple website management system written in oo php that uses a mysql database to store user and group rights and...

7.4AI score
Exploits0
securityvulns
securityvulns
•added 2005/11/28 12:0 a.m.•50 views

Remote file include in Q-News

Language: PHP Script: Q-News Version: 2.0 Official website: http://sourceforge.net/projects/q-news/ Problem: Remote file inclusion Discovered by: GB Description: =========== Q-News is a Quick News generator written in PHP that generates small text files that can be included a site, it has a lot o...

0.9AI score
Exploits0
0day.today
0day.today
•added 2005/11/16 12:0 a.m.•257 views

PHPWebThings <= 1.4 (forum) SQL Injection Exploit

Exploit for unknown platform in category web applications ================================================= PHPWebThings / && print "+ MD5 hash of password is: $1\n"; print "- Unable to retrieve hash of password\n" if!$1; 0day.today 2018-04-08...

7.1AI score
Exploits0
exploitpack
exploitpack
•added 2004/02/16 12:0 a.m.•25 views

ShopCartCGI 2.3 - gotopage.cgi Traversal Arbitrary File Access

ShopCartCGI 2.3 - gotopage.cgi Traversal Arbitrary File Access source: https://www.securityfocus.com/bid/9670/info It has been reported that ShopcartCGI is prone to a remote file disclosure vulnerability. This issue is due to insufficient validation of user-supplied input. Upon successful...

0.3AI score
Exploits0
Packet Storm
Packet Storm
•added 2002/02/02 12:0 a.m.•19 views

wwwthreads-5.5.txt

---------- Forwarded message ---------- Date: 30 Jan 2002 22:12:17 -0000 From: Root Extractor To: [email protected] Subject: WWWThreads, UBBThreads Security Hole in upload system WWWThreads, UBBThreads Security Hole in upload system Author: RootExtractor, CompuMe [email protected],...

7.4AI score
Exploits0
Rows per page
Query Builder