Oxwall Forum 1.8.1 Cross Site Scripting

Document Title: =============== Oxwall Forum v1.8.1 - Persistent Cross Site Scripting Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1740 Release Date: ============= 2016-02-22 Vulnerability Laboratory ID VL-ID:...

Christopher Ahlberg on Tracking Hackers Through Patterns Across Forums

Threatpost editor Mike Mimoso talks with Christopher Ahlberg, CEO, Recorded Future about tracking cybercriminals through patterns on hacker forums...

ASP Forums 2.1 Database Disclosure

| Title : ASP Forums version 2.1 Database Disclosure Exploit | Author : indoushka | email : [email protected] | Tested on: windows 8.1 Français V.Pro | Vendor : http://adyou.me/4TVD ========================================================= !/usr/bin/perl -w Author : indoushka use...

Jive Forums 5.5.25 - Directory Traversal

Jive Forums 5.5.25 - Directory Traversal ''' JiveForums " print " Usage: %s http://localhost /jiveforums/" % sys.argv0 sys.exit payload = 'servlet/JiveServlet?attachImage=true&attachment=/.././.././.././.././.././.././.././../etc/./passwd%00&contentType=image%2Fpjpeg' print "+ Trying to request...

cannabis.community.forums.ozstoners.com Open Redirect vulnerability

Vulnerable URL: https://cannabis.community.forums.ozstoners.com/osadvertising/www/delivery/ck.php?oaparams=2bannerid=119zoneid=1cb=a4cceb1fb2oadest=http://xssposed.org/ Details: Description| Value ---|--- Patched:| No Latest check for patch:| 26.07.2017 Vulnerability type:| Open Redirect...

customers.planit.com XSS vulnerability

Open Bug Bounty ID: OBB-128202 Description| Value ---|--- Affected Website:| customers.planit.com Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention...

forums.heavengames.com Open Redirect vulnerability

Vulnerable URL: http://forums.heavengames.com/redir/https://www.xssposed.org/ Details: Description| Value ---|--- Patched:| No Latest check for patch:| 30.07.2017 Vulnerability type:| Open Redirect Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated Google Pagerank| 0 V...

chw.net vulnerability

Vulnerable URL: http://www.chw.net/foro/vbseocp.phpcustom301" Details: Description| Value ---|--- Patched:| No Latest check for patch:| 30.07.2017 Vulnerability status:| Publicly disclosed Alexa Rank| 16988 Google Pagerank| 4 VIP website status:| Yes Check chw.net SSL connection:| Grade: A...

WordPress Users Ultra 1.5.50 Cross Site Scripting

Exploit Title: WordPress Users Ultra Plugin Persistence XSS Discovery Date: 2015/10/20 Public Disclosure Date: 2015/12/01 Exploit Author: Panagiotis Vagenas Contact: https://twitter.com/panVagenas Vendor Homepage: http://usersultra.com Software Link: https://wordpress.org/plugins/users-ultra/...

forums.techarena.in Open Redirect vulnerability

Vulnerable URL: http://forums.techarena.in/redirect-to/?redirect=https://www.xssposed.org Details: Description| Value ---|--- Patched:| Yes, at 21.12.2015 Latest check for patch:| 21.12.2015 16:07 GMT Vulnerability type:| Open Redirect Vulnerability status:| Publicly disclosed Alexa Rank| Unknown...

eightforums.com Open Redirect vulnerability

Vulnerable URL: http://www.eightforums.com/redirect-to/?redirect=https://www.xssposed.org Details: Description| Value ---|--- Patched:| No Latest check for patch:| 30.07.2017 Vulnerability type:| Open Redirect Vulnerability status:| Publicly disclosed Alexa Rank| 10149 Google Pagerank| 4 VIP...

SparkyLinux - Lightweight & fast Debian-based Linux Distribution

SparkyLinux is a GNU/Linux distribution created on the “testing” branch of Debian. It features customized lightweight desktops like E19, LXDE and Openbox, multimedia plugins, selected sets of apps and own custom tools to ease different tasks. Why Sparky? SparkyLinux is a Debian-based Linux...

Mail.ru: xss на нескольких форумах игр от mail.ru (Cross-Site Scripting)

На форумах таких игр как https://wf.mail.ru/forums, https://pw.mail.ru/forums/ и им подобным использующим такой же форум, есть уязвимость Xss. Что бы java script сработал, следует перейти в сообщения, написать в поле заэнкоденный вариант кода " %3Cscript%3Ealert%3C/script%3E " и он сработает при...

Europol Arrests Gang Behind Zeus And SpyEye Banking Malware

The Law enforcement agencies from six different European countries have taken down a major Ukrainian-based cyber criminals gang suspected of developing, distributing and deploying Zeus and SpyEye banking malware. According to the report on the official website of Europol, authorities have arreste...

[SECURITY] Fedora 22 Update: fusionforge-5.3.2-4.fc22

FusionForge provides many tools to aid collaboration in a development project, such as bug-tracking, task management, mailing-lists, SCM repository, forums, support request helper, web/FTP hosting, release management, etc. All these services are integrated into one web site and managed through a...

Fedora 21 : wesnoth-1.12.2-1.fc21 (2015-6295)

http://forums.wesnoth.org/viewtopic.php?t=41872 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

Packet Sender - The UDP and TCP Network Test Utility

Packet Sender is an open source utility to allow sending and receiving TCP and UDP packets. It is available free no ads / no bundleware for Windows , Mac , and Linux. It can be used for both commercial and personal use license. It's designed to be very easy to use while still providing enough...

Vanilla Forums Cross-Site Scripting Vulnerability

Vanilla Forums is a Canadian company VanillaForums PHP-based open source forum program . A cross-site scripting vulnerability exists in Vanilla Forums versions 2.0.18.12 and 2.1.x prior to 2.1.1. A remote attacker can exploit this vulnerability to inject arbitrary web script or HTML...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Vanilla Forums before 2.0.18.13 and 2.1.x before 2.1.1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2014-9685

Multiple cross-site scripting XSS vulnerabilities in Vanilla Forums before 2.0.18.13 and 2.1.x before 2.1.1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...