CVE-2024-8170

A vulnerability classified as problematic has been found in SourceCodester Zipped Folder Manager App 1.0. This affects an unknown part of the file /endpoint/add-folder.php. The manipulation of the argument folder leads to unrestricted upload. It is possible to initiate the attack remotely. The...

CVE-2024-8170 SourceCodester Zipped Folder Manager App add-folder.php unrestricted upload

A vulnerability classified as problematic has been found in SourceCodester Zipped Folder Manager App 1.0. This affects an unknown part of the file /endpoint/add-folder.php. The manipulation of the argument folder leads to unrestricted upload. It is possible to initiate the attack remotely. The...

CVE-2024-8170 SourceCodester Zipped Folder Manager App add-folder.php unrestricted upload

A vulnerability classified as problematic has been found in SourceCodester Zipped Folder Manager App 1.0. This affects an unknown part of the file /endpoint/add-folder.php. The manipulation of the argument folder leads to unrestricted upload. It is possible to initiate the attack remotely. The...

CVE-2021-34668

The WordPress Real Media Library WordPress plugin is vulnerable to Stored Cross-Site Scripting via the name parameter in the /inc/overrides/lite/rest/Folder.php file which allows author-level attackers to inject arbitrary web scripts in folder names, in versions up to and including 4.14.1...

MediaLab SQL Injection

| @@@@@@@@ @@@@@@@@@ @@ @@ @@@@@ @@ @@ @@@@@@@@ | | @ @ @ @ @ @ @ @ @ @ @ @ @ | | @ @ @ @ @ @ @ @ @ @ @ @ @ | | @ @ @@@ @ @ @ @ @ @ @ @ @ @ @ | | @@@@@@@@ @@@ @@@ @ @ @ @ @ @ @ @ @ @@@@@@@@ | | @ @ @ @ @ @ @ @ @ @ @ @ @ | | @ @ @ @ @ @ @ @ @ @ @ @ @ | | @ @ @ @ @ @ @ @ @ @ @ @ @@@ @ | | @@@@@@@@ ...

CVE-2009-4359

Cross-site scripting XSS vulnerability in folder.php in the SmartMedia 0.85 Beta module for XOOPS allows remote attackers to inject arbitrary web script or HTML via the categoryid parameter...

CVE-2009-4359

The CVE refers to a Cross-site Scripting (XSS) vulnerability in folder.php of the SmartMedia 0.85 Beta module for XOOPS, exploitable via the categoryid parameter. The affected component is the SmartMedia 0.85 Beta XOOPS module; root cause is an XSS flaw that allows injecting arbitrary script/HTML...

XOOPS SmartMedia 0.85 Module XSS

No description provided by source. Exploit Title: XOOPS Module Smartmedia XSS Version : SmartMedia 0.85 Date: 2009-11-30 Discovred By : SoldierOfAllah Software Link: http://dev.xoops.org/dl/smartmedia/5 - Beta and RC Releases/SmartMedia 0.85 Beta/XOOPS2modsmartmedia0.85BETAsmartfactory.zip CVE-ID...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Camera Life 2.6.2b8 allow remote attackers to inject arbitrary web script or HTML via the q parameter to 1 search.php and 2 rss.php; the query string after the image name in 3 photos/photo; the path parameter to 4 folder.php; page parameter and...

siteframe-sql.txt

SQL-Injection in Siteframe CMS all versions Author: n0ne E-Mail: [email protected] Vulnerable script: folder.php Vulnerable var: id CMS Homepage: http://www.siteframe.org Exploit PoC: http://www.target.com/folder.php?id=370+and1=2+union+select+1,2,3,4,5,6,7,8,concatws0x3a,useremail,userpasswd,10,...

Siteframe (folder.php id) Remote SQL Injection Vulnerability

No description provided by source. SQL-Injection in Siteframe CMS all versions Author: n0ne E-Mail: [email protected] Vulnerable script: folder.php Vulnerable var: id CMS Homepage: http://www.siteframe.org Exploit PoC:...

Siteframe CMS 3.2.3 - 'folder.php' SQL Injection

SQL-Injection in Siteframe CMS all versions Author: n0ne E-Mail: [email protected] Vulnerable script: folder.php Vulnerable var: id CMS Homepage: http://www.siteframe.org Exploit PoC: http://www.target.com/folder.php?id=370+and1=2+union+select+1,2,3,4,5,6,7,8,concatws0x3a,useremail,userpasswd,10,...

Siteframe CMS 3.2.3 - folder.php SQL Injection

Siteframe CMS 3.2.3 - folder.php SQL Injection SQL-Injection in Siteframe CMS all versions Author: n0ne E-Mail: [email protected] Vulnerable script: folder.php Vulnerable var: id CMS Homepage: http://www.siteframe.org Exploit PoC:...

Siteframe (folder.php id) Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications ============================================================ Siteframe folder.php id Remote SQL Injection Vulnerability ============================================================ Vulnerable script: folder.php Vulnerable var: id CMS...

Sql injection

SQL injection vulnerability in @1 File Store 2006.03.07 allows remote attackers to execute arbitrary SQL commands via the id parameter to 1 functions.php and 2 user.php in the libs directory, 3 edit.php and 4 delete.php in control/files/, 5 edit.php and 6 delete.php in control/users/, 7 edit.php,...