21 matches found
IndiaNIC FAQs Manager 1.0 - Blind SQL Injection
The faqs-manager WordPress plugin was affected by a Blind SQL Injection security vulnerability...
IndiaNIC FAQs Manager 1.0 - CAPTCHA Value Disclosure
The faqs-manager WordPress plugin was affected by a CAPTCHA Value Disclosure security vulnerability...
IndiaNIC FAQs Manager 1.0 - Ask Question Form question Parameter XSS
The faqs-manager WordPress plugin was affected by an Ask Question Form question Parameter XSS security vulnerability...
DmxReady Faqs Manager 1.2 - SQL Injection Vulnerability
No description provided by source. Exploit Title: DmxReady Faqs Manager v1.2 SQL Injection Vulnerability Google Dork: inurl:incfaqsmanager.asp Date: 03.07.2011 Author: Bellatrix Software Link: http://www.dmxready.com/?product=faqs-manager-v1 Version: v1.2 Language: ASP Price : $99.97 Tested on:...
DMXReady Faqs Manager <= 1.1 - Remote Contents Change Vulnerability
No description provided by source. Title : DMXReady Faqs Manager = 1.1 Remote Contents Change Vulnerability Author : ajann from Turkey Contact : : S.Page : http://www.dmxready.com $$ : 24.97 $ Dork : inurl:incfaqsmanager.asp DorkEx :...
WordPress IndiaNIC FAQs Manager Plugin 1.0 - Blind SQL Injection
No description provided by source. Exploit Title: WordPress IndiaNIC FAQ 1.0 Plugin Blind SQL Injection Google Dork: inurl:wp-content/plugins/faqs-manager Date: 21.03.2013 Exploit Author: m3tamantra http://m3tamantra.wordpress.com/blog Vendor Homepage:...
WordPress IndiaNIC FAQs Manager Plugin 1.0 - Multiple Vulnerabilities
No description provided by source. html !-- Exploit Title: WordPress IndiaNIC FAQ 1.0 Plugin CSRF + XSS Google Dork: inurl:wp-content/plugins/faqs-manager Date: 21.03.2013 Exploit Author: m3tamantra http://m3tamantra.wordpress.com/blog Vendor Homepage:...
WordPress IndiaNIC FAQs Manager Plugin 1.0 - Blind SQL Injection
IndiaNIC FAQs Manager plugin is prone to a Blind SQL injection. This vulnerability allows an attacker to modify data, alter queries to the application SQL database, compromise the access and application or exploit hidden vulnerabilities in the underlying database. Solution Update the plugin...
WordPress IndiaNIC FAQS Manager 1.0 XSS / CSRF
alert1 in question parameter. The Captcha value can be read from captcha parameter hidden field Part of Ask Question form =================== We don't need the captcha Image when we have this xD Request from Ask Question area XSS in question parameter POST /word...
WordPress IndiaNIC FAQs Manager Plugin 1.0 - Blind SQL Injection
The "order" and "orderby" parameter is vulnerable for SQL Injection Example URL: http://127.0.0.1:9001/wordpress/wp-admin/admin.php?page=3Din= icfaq&orderby=3D PoC take some time to finish 15min on my Testsystem. I could speed it up with Multithreading but I'm to lazy right now Vulnerable code pa...
WordPress IndiaNIC FAQs Manager Plugin 1.0 - Multiple Vulnerabilities
IndiaNIC FAQs Manager Plugin is prone to a CSRF and XSS vulnerabilities, also, the Captcha value can be read from captcha parameter hidden field. Solution Update the plugin...
WordPress Plugin IndiaNIC FAQs Manager 1.0 - Multiple Vulnerabilities
WordPress Plugin IndiaNIC FAQs Manager 1.0 - Multiple Vulnerabilities alert1 in question parameter. The Captcha value can be read from captcha parameter hidden field Part of Ask Question form =================== We don't need the captcha Image when we have this xD Request from Ask Question area X...
WordPress Plugin IndiaNIC FAQs Manager 1.0 - Blind SQL Injection
Exploit Title: WordPress IndiaNIC FAQ 1.0 Plugin Blind SQL Injection Google Dork: inurl:wp-content/plugins/faqs-manager Date: 21.03.2013 Exploit Author: m3tamantra http://m3tamantra.wordpress.com/blog Vendor Homepage: http://wordpress.org/extend/plugins/faqs-manager/ Software Link:...
DmxReady Faqs Manager 1.2 - SQL Injection
Exploit Title: DmxReady Faqs Manager v1.2 SQL Injection Vulnerability Google Dork: inurl:incfaqsmanager.asp Date: 03.07.2011 Author: Bellatrix Software Link: http://www.dmxready.com/?product=faqs-manager-v1 Version: v1.2 Language: ASP Price : $99.97 Tested on: Windows XP Sp3 Greetz : VoLqaN ,...
DmxReady Faqs Manager 1.2 - SQL Injection
DmxReady Faqs Manager 1.2 - SQL Injection Exploit Title: DmxReady Faqs Manager v1.2 SQL Injection Vulnerability Google Dork: inurl:incfaqsmanager.asp Date: 03.07.2011 Author: Bellatrix Software Link: http://www.dmxready.com/?product=faqs-manager-v1 Version: v1.2 Language: ASP Price : $99.97 Teste...
DmxReady Faqs Manager 1.2 SQL Injection
Exploit Title: DmxReady Faqs Manager v1.2 SQL Injection Vulnerability Google Dork: inurl:incfaqsmanager.asp Date: 03.07.2011 Author: Bellatrix Software Link: http://www.dmxready.com/?product=faqs-manager-v1 Version: v1.2 Language: ASP Price : $99.97 Tested on: Windows XP Sp3 Greetz : VoLqaN ,...
DmxReady Faqs Manager v1.2 SQL Injection Vulnerability
Exploit for asp platform in category web applications Exploit Title: DmxReady Faqs Manager v1.2 SQL Injection Vulnerability Google Dork: inurl:incfaqsmanager.asp Date: 03.07.2011 Author: Bellatrix Software Link: http://www.dmxready.com/?product=faqs-manager-v1 Version: v1.2 Language: ASP Price :...
DMXReady Faqs Manager 1.1 Contents Change
Title : DMXReady Faqs Manager http://target/path//applications/FaqsManager/incfaqsmanager.asp Edit - http://target/path//admin/FaqsManager/addcategory.asp :...
DMXReady Faqs Manager 1.1 - Remote Contents Change
DMXReady Faqs Manager 1.1 - Remote Contents Change Title : DMXReady Faqs Manager http://target/path//applications/FaqsManager/incfaqsmanager.asp Edit - http://target/path//admin/FaqsManager/addcategory.asp : milw0rm.com 2009-01-14...
DMXReady Faqs Manager <= 1.1 Remote Contents Change Vulnerability
No description provided by source. Title : DMXReady Faqs Manager = 1.1 Remote Contents Change Vulnerability Author : "ajann" from Turkey Contact : : S.Page : http://www.dmxready.com $$ : 24.97 $ Dork : inurl:incfaqsmanager.asp DorkEx :...