gateway.okhistory.org XSS vulnerability

Vulnerable URL: http://gateway.okhistory.org/explore/partners/OKHS/browse/?fq=strtitleserial:The%2520Harmon%2520County%2520Tribune'%22%26%25prompt/OPENBUGBOUNTY/...

thebarclay.org XSS vulnerability

Vulnerable URL: http://www.thebarclay.org/explore-events.asp?n=1/-///'/"//--...

clinton.explore-kansas.us XSS vulnerability

Vulnerable URL: http://clinton.explore-kansas.us/Profile/Demographicsbyzipcode.asp?zipcode=%3Csvg/onload=alert/OPENBUGBOUNTY/%3E Details: Description| Value ---|--- Patched:| Yes, at 29.07.2017 Latest check for patch:| 29.07.2017 19:29 GMT Vulnerability type:| XSS Vulnerability status:| Publicly...

meridian.explore-pennsylvania.us XSS vulnerability

Vulnerable URL: http://meridian.explore-pennsylvania.us/Profile/Demographicsbyzipcode.asp?zipcode=%3Csvg/onload=alert/OPENBUGBOUNTY/%3E Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated VIP...

greenfield.explore-wisconsin.us XSS vulnerability

Vulnerable URL: http://greenfield.explore-wisconsin.us/profile/Demographicsbyzipcode.asp?zipcode=%3Csvg/onload=alert/OPENBUGBOUNTY/%3E Details: Description| Value ---|--- Patched:| Yes, at 29.07.2017 Latest check for patch:| 29.07.2017 19:29 GMT Vulnerability type:| XSS Vulnerability status:|...

gitbook.com XSS vulnerability

Vulnerable URL: https://www.gitbook.com/explore?page=...

aftercollege.com XSS vulnerability

Vulnerable URL: https://www.aftercollege.com/explore/?schoolname=%22%3E%3Csvg%2Fonload%3Dprompt%28%2FXSSPOSED%2F%29%3Eid=794month=1year=2009 Details: Description| Value ---|--- Patched:| No Latest check for patch:| 26.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alex...

Instant v2.0 SQL Injection Vulnerability

========================================================================================== Instant v2.0 SQL Injection Vulnerability ==========================================================================================...

CVE-2014-8954

Multiple cross-site scripting XSS vulnerabilities in phpSound 1.0.5 allow remote attackers to inject arbitrary web script or HTML via the 1 Title or 2 Description fields in a playlist or the 3 filter parameter in an explore action to index.php...

CVE-2014-8954

Multiple cross-site scripting XSS vulnerabilities in phpSound 1.0.5 allow remote attackers to inject arbitrary web script or HTML via the 1 Title or 2 Description fields in a playlist or the 3 filter parameter in an explore action to index.php...

CVE-2014-8954

CVE-2014-8954 affects phpSound up to version 1.0.5. The issue is multiple XSS vulnerabilities exploitable via (1) the Title field, (2) the Description field in playlists, or (3) the filter parameter in an explore action to index.php, enabling remote script/HTML injection. The OpenVAS entry corrob...

phpSound Music Sharing Platform 1.0.5 - Multiple Cross-Site Scripting Vulnerabilities

phpSound Music Sharing Platform 1.0.5 - Multiple Cross-Site Scripting Vulnerabilities Exploit Title: phpSound Music Sharing Platform Multiple XSS Vulnerabilities Date: 08-10-2014 Exploit Author: Halil Dalabasmaz Version: v1.0.5 Vendor Link:...

eYou v4 /storage_explore.php 命令执行漏洞

No description provided by source...

Twitter Vine app hacked by 16 year old Web developer

Recently Twitter has rolled out Vine app for Android, A new way to share video on twitter. The free app, which enables people to record and share clips of up to six seconds with other Vine users as well as on Twitter and Facebook. But on the very next day, Twitter's video-sharing application Vine...

CVE-2013-0474

The Manual Explore browser plug-in in IBM Security AppScan Enterprise 5.6 and 8.x before 8.7 and IBM Rational Policy Tester 5.6 and 8.x before 8.5.0.4 allows remote attackers to discover test Platform Authentication credentials via a crafted web site...

CVE-2013-0474

The Manual Explore browser plug-in in IBM Security AppScan Enterprise 5.6 and 8.x before 8.7 and IBM Rational Policy Tester 5.6 and 8.x before 8.5.0.4 allows remote attackers to discover test Platform Authentication credentials via a crafted web site...

PHP Dompdf File Remote File Inclusion

================================== PHP Dompdf File RFI Vulnerability ================================== +Title : PHP Dompdf File RFI Vulnerability +Software : Dompdf Php5 +Vendor : NN +Download : NN +Author : josalijoe +Contact : josalijoeathotmaildotcom +Web : http://alicoder.wordpress.com/ New...

CMS Tovar Site SQL Injection

================================================= CMS Tovar Site .ru SQL Injection Vulnerability ================================================= +Title : CMS Tovar Site .ru SQL Injection Vulnerability +Software : CMS Tovar +Vendor : NN +Download : NN +Author : josalijoe +Contact :...

PHP Bexfront SQL Injection

========================================== PHP Bexfront SQL Injection Vulnerability ========================================== +Title : PHP Bexfront SQL Injection Vulnerability +Software : PHP Bexfront +Vendor : NN +Download : NN +Author : josalijoe +Contact : josalijoeathotmaildotcom +Web :...

vBulletin Downloads FileInfo SQL Injection

=========================================== Vbulletin Downloads FileInfo SQL Injection =========================================== +Title : Vbulletin Downloads FileInfo SQL Injection +Software : FileInfo +Vendor : http://www.vbulletin.com +Download : http://www.vbulletin.com/download.php +Author ...