16 matches found
EUVD-2008-3766
Malware in sbrugna...
EUVD-2008-3765
Malware in sbrugna...
WordPress Plugin 5 star review funnel 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed in the PHP language. WordPress is a blogging platform developed in the PHP language that supports personal blogs on PHP and MySQL servers.WordPress plugin is an application...
Five Star Review Script 0 index2.php sort Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/18390/info Five Star Review Script is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker can exploit these issues to run arbitrary HTML a...
Five Star Review v5.1 SQL Injection (recommend.php)
Exploit for php platform in category web applications Exploit Title: Five Star Review Remote SQL Injection recommend.php Script Page : http://www.review-script.com Date: 5-12-2011 Version: Versions below v5.1 Author : EthicalPractice Tested on: Firefox 8.0, Palemoon 8.0, Internet Explorer 9 -...
Five Star Review Remote SQL Injection
Exploit Title: Five Star Review Remote SQL Injection recommend.php Script Page : http://www.review-script.com Date: 5-12-2011 Version: Versions below v5.1 Author : EthicalPractice Tested on: Firefox 8.0, Palemoon 8.0, Internet Explorer 9 Note: This exploit works on the older versions ONLY...
reviewscript-xss.txt
--------------------------------------------------------- Portal Name: Review Script Vendor : http://review-script.com Vulnerable File : Search Dork: Powered by Five Star Review Author : PouyaServer , [email protected] Vulnerability : XSS Cross site scripting...
CVE-2008-3780
SQL injection vulnerability in recommend.php in Five Star Review Script allows remote attackers to execute arbitrary SQL commands via the itemid parameter...
CVE-2008-3779
Cross-site scripting XSS vulnerability in search/index.php in Five Star Review Script allows remote attackers to inject arbitrary web script or HTML via the words parameter in a search action...
Sql injection
SQL injection vulnerability in recommend.php in Five Star Review Script allows remote attackers to execute arbitrary SQL commands via the itemid parameter...
CVE-2008-3779
CVE-2008-3779 describes a cross-site scripting (XSS) vulnerability in Five Star Review Script, exposed via search/index.php. The flaw allows remote attackers to inject arbitrary web script or HTML through the words parameter in a search action. Affected component is the search functionality (inde...
CVE-2008-3780
The CVE-2008-3780 entry describes an SQL injection in the Five Star Review Script, specifically in recommend.php via the item_id parameter, enabling remote arbitrary SQL execution. The vulnerability affects the web application component and has a high severity (CVSS v2 base score 7.5). Public ref...
CVE-2008-3780
SQL injection vulnerability in recommend.php in Five Star Review Script allows remote attackers to execute arbitrary SQL commands via the itemid parameter...
fivestar-sqlxss.txt
Viva IslaM Viva IslaM XSS / Remote SQL Injection Five Star Review recommend.php itemid http://review-script.com/ AuTh0r : Mr.SQL H0ME : WwW.PaL-HaCkEr.CoM & WwW.ReaL-HaCk.NeT Email : [email protected] SYRIAN Arab HACkErS -: Exploites :- User Exploite...
Five Star Review Script - report.php?item_id Cross-Site Scripting
Five Star Review Script - report.php?itemid Cross-Site Scripting source: https://www.securityfocus.com/bid/18390/info Five Star Review Script is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker can exploit these...
Five Star Review Script - 'report.php?item_id' Cross-Site Scripting
source: https://www.securityfocus.com/bid/18390/info Five Star Review Script is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker can exploit these issues to run arbitrary HTML and script code in the browser of a...