16 matches found
EUVD-2008-3766
Malware in sbrugna...
EUVD-2008-3765
Malware in sbrugna...
WordPress Plugin 5 star review funnel 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed in the PHP language. WordPress is a blogging platform developed in the PHP language that supports personal blogs on PHP and MySQL servers.WordPress plugin is an application...
Five Star Review Script 0 index2.php sort Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/18390/info Five Star Review Script is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker can exploit these issues to run arbitrary HTML a...
Five Star Review v5.1 SQL Injection (recommend.php)
Exploit for php platform in category web applications Exploit Title: Five Star Review Remote SQL Injection recommend.php Script Page : http://www.review-script.com Date: 5-12-2011 Version: Versions below v5.1 Author : EthicalPractice Tested on: Firefox 8.0, Palemoon 8.0, Internet Explorer 9 -...
Five Star Review Remote SQL Injection
Exploit Title: Five Star Review Remote SQL Injection recommend.php Script Page : http://www.review-script.com Date: 5-12-2011 Version: Versions below v5.1 Author : EthicalPractice Tested on: Firefox 8.0, Palemoon 8.0, Internet Explorer 9 Note: This exploit works on the older versions ONLY...
reviewscript-xss.txt
--------------------------------------------------------- Portal Name: Review Script Vendor : http://review-script.com Vulnerable File : Search Dork: Powered by Five Star Review Author : PouyaServer , [email protected] Vulnerability : XSS Cross site scripting...
CVE-2008-3780
SQL injection vulnerability in recommend.php in Five Star Review Script allows remote attackers to execute arbitrary SQL commands via the itemid parameter...
Sql injection
SQL injection vulnerability in recommend.php in Five Star Review Script allows remote attackers to execute arbitrary SQL commands via the itemid parameter...
CVE-2008-3779
Cross-site scripting XSS vulnerability in search/index.php in Five Star Review Script allows remote attackers to inject arbitrary web script or HTML via the words parameter in a search action...
CVE-2008-3779
CVE-2008-3779 describes a cross-site scripting (XSS) vulnerability in Five Star Review Script, exposed via search/index.php. The flaw allows remote attackers to inject arbitrary web script or HTML through the words parameter in a search action. Affected component is the search functionality (inde...
CVE-2008-3780
The CVE-2008-3780 entry describes an SQL injection in the Five Star Review Script, specifically in recommend.php via the item_id parameter, enabling remote arbitrary SQL execution. The vulnerability affects the web application component and has a high severity (CVSS v2 base score 7.5). Public ref...
CVE-2008-3780
SQL injection vulnerability in recommend.php in Five Star Review Script allows remote attackers to execute arbitrary SQL commands via the itemid parameter...
fivestar-sqlxss.txt
Viva IslaM Viva IslaM XSS / Remote SQL Injection Five Star Review recommend.php itemid http://review-script.com/ AuTh0r : Mr.SQL H0ME : WwW.PaL-HaCkEr.CoM & WwW.ReaL-HaCk.NeT Email : [email protected] SYRIAN Arab HACkErS -: Exploites :- User Exploite...
Five Star Review Script - report.php?item_id Cross-Site Scripting
Five Star Review Script - report.php?itemid Cross-Site Scripting source: https://www.securityfocus.com/bid/18390/info Five Star Review Script is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker can exploit these...
Five Star Review Script - 'report.php?item_id' Cross-Site Scripting
source: https://www.securityfocus.com/bid/18390/info Five Star Review Script is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker can exploit these issues to run arbitrary HTML and script code in the browser of a...