377 matches found
FlatPress 'userid' Parameter Local File Include Vulnerability
FlatPress is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information and execute arbitrary local scripts in the context of the webserver process. This may allow th...
FlatPress 0.804 - 0.812.1 LFI Vulnerability
FlatPress is prone to a local file include LFI vulnerability because it fails to properly sanitize user-supplied input. Copyright C 2009 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
FlatPress 0.804-0.812.1 Local File Inclusion to Remote Command Execution vulnerability exploit
No description provided by source. ?php / Author: Giuseppe Zmax Fuggiano giuseppedotfuggianoatgmaildotcom Description: FlatPress 0.804-0.812.1 Local File Inclusion to Remote Command Execution vulnerability exploit fp-includes/core/core.users.php. This code posts a crafted comment with a very simp...
FlatPress 0.804-0.812.1 Local File Inclusion to Remote Command Execution
No description provided by source. Security Advisory ----------------- FlatPress 0.804-0.812.1 Local File Inclusion to Remote Command Execution Researcher Information ---------------------- Discovered by: Giuseppe Zmax Fuggiano Website: http://www.giusef.net Contact:...
FlatPress 0.804-0.812.1 Local File Inclusion to Remote Command Execution
Security Advisory ----------------- FlatPress 0.804-0.812.1 Local File Inclusion to Remote Command Execution Researcher Information ---------------------- Discovered by: Giuseppe Zmax Fuggiano Website: http://www.giusef.net Contact: giuseppedotfuggianoatgmaildotcom Product Information...
FlatPress Local File Inclusion / Command Execution
Security Advisory ----------------- FlatPress 0.804-0.812.1 Local File Inclusion to Remote Command Execution Researcher Information ---------------------- Discovered by: Giuseppe Zmax Fuggiano Website: http://www.giusef.net Contact: giuseppedotfuggianoatgmaildotcom Product Information...
Flatpress 0.804 0.812.1 - Local File Inclusion
Flatpress 0.804 0.812.1 - Local File Inclusion Security Advisory ----------------- FlatPress 0.804-0.812.1 Local File Inclusion to Remote Command Execution Researcher Information ---------------------- Discovered by: Giuseppe Zmax Fuggiano Website: http://www.giusef.net Contact:...
FlatPress 0.804 - 0.812.1 local file inclusion vulnerability
Exploit for unknown platform in category web applications ============================================================ FlatPress 0.804 - 0.812.1 local file inclusion vulnerability ============================================================ Product Information ------------------- FlatPress is an...
Flatpress 0.804 < 0.812.1 - Local File Inclusion
Security Advisory ----------------- FlatPress 0.804-0.812.1 Local File Inclusion to Remote Command Execution Researcher Information ---------------------- Discovered by: Giuseppe Zmax Fuggiano Website: http://www.giusef.net Contact: giuseppedotfuggianoatgmaildotcom Product Information...
FlatPress 0.804 - 0.812.1 local file inclusion vulnerability
No description provided by source. Security Advisory ----------------- FlatPress 0.804-0.812.1 Local File Inclusion to Remote Command Execution Researcher Information ---------------------- Discovered by: Giuseppe Zmax Fuggiano Website: http://www.giusef.net Contact:...
CVE-2008-4120
Multiple cross-site scripting XSS vulnerabilities in FlatPress 0.804 allow remote attackers to inject arbitrary web script or HTML via the 1 user or 2 pass parameter to login.php, or the 3 name parameter to contact.php...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in FlatPress 0.804 allow remote attackers to inject arbitrary web script or HTML via the 1 user or 2 pass parameter to login.php, or the 3 name parameter to contact.php...
CVE-2008-4120
Summary of CVE-2008-4120 (FlatPress 0.804 XSS): Multiple cross-site scripting vulnerabilities allow remote attackers to inject arbitrary JavaScript/HTML through the login.php parameters (user, pass) or the contact.php name parameter. The flaw arises in FlatPress 0.804, enabling script injection t...
Cross Site Scripting (XSS) Vulnerabilitiy in flatpress 0.804, CVE-2008-4120
Cross Site Scripting XSS Vulnerabilitiy in flatpress 0.804, CVE-2008-4120 References http://www.datensalat.eu/fabian/cve/CVE-2008-4120-flatpress.html https://vulners.com/cve/CVE-2008-4120 http://www.flatpress.org/ Description FlatPress is an open-source standard-compliant multi-lingual extensible...
Flatpress 0.804 - Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/31407/info FlatPress is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...
Flatpress 0.804 - Multiple Cross-Site Scripting Vulnerabilities
Flatpress 0.804 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/31407/info FlatPress is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute...
flatpress-xss.txt
Cross Site Scripting XSS Vulnerabilitiy in flatpress 0.804, CVE-2008-4120 References http://www.datensalat.eu/fabian/cve/CVE-2008-4120-flatpress.html http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4120 http://www.flatpress.org/ Description FlatPress is an open-source standard-compliant...