Lucene search
K

377 matches found

OpenVAS
OpenVAS
added 2009/10/06 12:0 a.m.10 views

FlatPress 'userid' Parameter Local File Include Vulnerability

FlatPress is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information and execute arbitrary local scripts in the context of the webserver process. This may allow th...

0.2AI score
Exploits0References4
OpenVAS
OpenVAS
added 2009/10/06 12:0 a.m.15 views

FlatPress 0.804 - 0.812.1 LFI Vulnerability

FlatPress is prone to a local file include LFI vulnerability because it fails to properly sanitize user-supplied input. Copyright C 2009 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

7.1AI score
Exploits0References4
seebug.org
seebug.org
added 2009/10/03 12:0 a.m.18 views

FlatPress 0.804-0.812.1 Local File Inclusion to Remote Command Execution vulnerability exploit

No description provided by source. ?php / Author: Giuseppe Zmax Fuggiano giuseppedotfuggianoatgmaildotcom Description: FlatPress 0.804-0.812.1 Local File Inclusion to Remote Command Execution vulnerability exploit fp-includes/core/core.users.php. This code posts a crafted comment with a very simp...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2009/09/30 12:0 a.m.17 views

FlatPress 0.804-0.812.1 Local File Inclusion to Remote Command Execution

No description provided by source. Security Advisory ----------------- FlatPress 0.804-0.812.1 Local File Inclusion to Remote Command Execution Researcher Information ---------------------- Discovered by: Giuseppe Zmax Fuggiano Website: http://www.giusef.net Contact:...

7.1AI score
Exploits0
securityvulns
securityvulns
added 2009/09/30 12:0 a.m.161 views

FlatPress 0.804-0.812.1 Local File Inclusion to Remote Command Execution

Security Advisory ----------------- FlatPress 0.804-0.812.1 Local File Inclusion to Remote Command Execution Researcher Information ---------------------- Discovered by: Giuseppe Zmax Fuggiano Website: http://www.giusef.net Contact: giuseppedotfuggianoatgmaildotcom Product Information...

0.3AI score
Exploits0
Packet Storm
Packet Storm
added 2009/09/29 12:0 a.m.29 views

FlatPress Local File Inclusion / Command Execution

Security Advisory ----------------- FlatPress 0.804-0.812.1 Local File Inclusion to Remote Command Execution Researcher Information ---------------------- Discovered by: Giuseppe Zmax Fuggiano Website: http://www.giusef.net Contact: giuseppedotfuggianoatgmaildotcom Product Information...

Exploits0
exploitpack
exploitpack
added 2009/09/29 12:0 a.m.10 views

Flatpress 0.804 0.812.1 - Local File Inclusion

Flatpress 0.804 0.812.1 - Local File Inclusion Security Advisory ----------------- FlatPress 0.804-0.812.1 Local File Inclusion to Remote Command Execution Researcher Information ---------------------- Discovered by: Giuseppe Zmax Fuggiano Website: http://www.giusef.net Contact:...

0.1AI score
Exploits0
0day.today
0day.today
added 2009/09/29 12:0 a.m.25 views

FlatPress 0.804 - 0.812.1 local file inclusion vulnerability

Exploit for unknown platform in category web applications ============================================================ FlatPress 0.804 - 0.812.1 local file inclusion vulnerability ============================================================ Product Information ------------------- FlatPress is an...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2009/09/29 12:0 a.m.25 views

Flatpress 0.804 < 0.812.1 - Local File Inclusion

Security Advisory ----------------- FlatPress 0.804-0.812.1 Local File Inclusion to Remote Command Execution Researcher Information ---------------------- Discovered by: Giuseppe Zmax Fuggiano Website: http://www.giusef.net Contact: giuseppedotfuggianoatgmaildotcom Product Information...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2009/09/29 12:0 a.m.15 views

FlatPress 0.804 - 0.812.1 local file inclusion vulnerability

No description provided by source. Security Advisory ----------------- FlatPress 0.804-0.812.1 Local File Inclusion to Remote Command Execution Researcher Information ---------------------- Discovered by: Giuseppe Zmax Fuggiano Website: http://www.giusef.net Contact:...

7.1AI score
Exploits0
NVD
NVD
added 2008/09/29 5:17 p.m.27 views

CVE-2008-4120

Multiple cross-site scripting XSS vulnerabilities in FlatPress 0.804 allow remote attackers to inject arbitrary web script or HTML via the 1 user or 2 pass parameter to login.php, or the 3 name parameter to contact.php...

4.3CVSS5.7AI score0.01758EPSS
Exploits1References6
Prion
Prion
added 2008/09/29 5:17 p.m.14 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in FlatPress 0.804 allow remote attackers to inject arbitrary web script or HTML via the 1 user or 2 pass parameter to login.php, or the 3 name parameter to contact.php...

4.3CVSS6AI score0.01758EPSS
Exploits1References6Affected Software1
CVE
CVE
added 2008/09/29 5:0 p.m.46 views

CVE-2008-4120

Summary of CVE-2008-4120 (FlatPress 0.804 XSS): Multiple cross-site scripting vulnerabilities allow remote attackers to inject arbitrary JavaScript/HTML through the login.php parameters (user, pass) or the contact.php name parameter. The flaw arises in FlatPress 0.804, enabling script injection t...

4.3CVSS5.7AI score0.01758EPSS
Exploits1References6Affected Software1
securityvulns
securityvulns
added 2008/09/29 12:0 a.m.145 views

Cross Site Scripting (XSS) Vulnerabilitiy in flatpress 0.804, CVE-2008-4120

Cross Site Scripting XSS Vulnerabilitiy in flatpress 0.804, CVE-2008-4120 References http://www.datensalat.eu/fabian/cve/CVE-2008-4120-flatpress.html https://vulners.com/cve/CVE-2008-4120 http://www.flatpress.org/ Description FlatPress is an open-source standard-compliant multi-lingual extensible...

4.3CVSS5.9AI score0.01758EPSS
Exploits1
Exploit DB
Exploit DB
added 2008/09/25 12:0 a.m.27 views

Flatpress 0.804 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/31407/info FlatPress is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

7AI score
Exploits0
exploitpack
exploitpack
added 2008/09/25 12:0 a.m.10 views

Flatpress 0.804 - Multiple Cross-Site Scripting Vulnerabilities

Flatpress 0.804 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/31407/info FlatPress is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute...

7AI score
Exploits0
Packet Storm
Packet Storm
added 2008/09/25 12:0 a.m.38 views

flatpress-xss.txt

Cross Site Scripting XSS Vulnerabilitiy in flatpress 0.804, CVE-2008-4120 References http://www.datensalat.eu/fabian/cve/CVE-2008-4120-flatpress.html http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4120 http://www.flatpress.org/ Description FlatPress is an open-source standard-compliant...

4.3CVSS6.7AI score0.01758EPSS
Exploits1
Rows per page
Query Builder