saskfosterfamilies.ca Cross Site Scripting vulnerability OBB-3854657

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

MAL-2023-576 Malicious code in madly-whiskey-the-whiskeys-dark-knights-at-peaceful-harbor-2-by-melissa-foster-on-iphone-new-pages- (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5e6d5e9b9b10956e9d21185613961b0218746442e8be9aebc33cc51a27e1782a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Metasploit Wrap-Up

Desert heat not the 1999 film This week was more quiet than normal with Black Hat USA and DEF CON, but that didn’t stop the team from delivering some small enhancements and bug fixes! We are also excited to see two new modules 15519 and 15520 from researcher Jacob Baines’ DEF CON talk ​​Bring You...

fosterfuelsmissioncritical.com Cross Site Scripting vulnerability OBB-1228153

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

fostermanpower.com XSS vulnerability

Open Bug Bounty ID: OBB-622774 Description| Value ---|--- Affected Website:| fostermanpower.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| hidden until disclosure Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| hidd...

community.pennfoster.edu XSS vulnerability

Vulnerable URL: https://community.pennfoster.edu/blogs/MercedesRuiz/tags?tags=%22%3E%3C/option%3E%3C%20/select%3E%3Cbody/onpageshow=prompt%28%29%3E%22%3E%3Csvg/onload=prompt%28/OPENBUGBOUNTY/%29%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 30.11.2017 Vulnerability...

communityfostercare.co.uk XSS vulnerability

Vulnerable URL: http://www.communityfostercare.co.uk/foster-carers/different-types-of-foster-care/short-term-fostering-and-respite-care/ Details: Description| Value ---|--- Patched:| No Latest check for patch:| 29.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa...

PHP-Nuke <= 8.0 Final (sid) Remote SQL Injection Exploit

No description provided by source. ?php UNPUBLISHED RST/GHC EXPLOIT PHP Nuke sid sql injection exploit for Search module POST method - the best for version 8.0 FINAL coded by Foster & 1dt.w0lf tested on 6.0 , 6.6 , 7.9 , 8.0 FINAL versions if isset$POST'Submit'...

phpnuke80final-sql.txt

?php UNPUBLISHED RST/GHC EXPLOIT PHP Nuke sid sql injection exploit for Search module POST method - the best for version 8.0 FINAL coded by Foster & 1dt.w0lf tested on 6.0 , 6.6 , 7.9 , 8.0 FINAL versions if isset$POST'Submit' $result=sendit'CONCAT"::",aid,"::",pwd,"::"'; if...

PHP-Nuke 8.0 Final - sid SQL Injection

PHP-Nuke 8.0 Final - sid SQL Injection ?php UNPUBLISHED RST/GHC EXPLOIT PHP Nuke sid sql injection exploit for Search module POST method - the best for version 8.0 FINAL coded by Foster & 1dt.w0lf tested on 6.0 , 6.6 , 7.9 , 8.0 FINAL versions if isset$POST'Submit'...

PHP-Nuke &lt; 8.0 - &#039;sid&#039; SQL Injection

version Tested on 7.9 & 6.0 '; if $argc table prefix\n"; print "ex.: " . $argv0 . " phpnuke.org 7\n"; credits; exit; / few definitions / if empty$argv3 $prefix = 'nuke'; define tables prefix else $prefix = $argv3; switch $argv2 case "6": $query...

PHP-Nuke 8.0 Final - &#039;sid&#039; SQL Injection

?php UNPUBLISHED RST/GHC EXPLOIT PHP Nuke sid sql injection exploit for Search module POST method - the best for version 8.0 FINAL coded by Foster & 1dt.w0lf tested on 6.0 , 6.6 , 7.9 , 8.0 FINAL versions if isset$POST'Submit' $result=sendit'CONCAT"::",aid,"::",pwd,"::"'; if...

PHP-Nuke < 8.0 (sid) Remote SQL Injection Exploit

Exploit for unknown platform in category web applications ================================================= PHP-Nuke version Tested on 7.9 & 6.0 '; if $argc table prefix\n"; print "ex.: " . $argv0 . " phpnuke.org 7\n"; credits; exit; / few definitions / if empty$argv3 $prefix = 'nuke'; define...

SQL-инъекция в enVivo!CMS

Здравствуйте, 3APA3A. Software: enVivo!CMS Vendor: www.envivosoft.com Vulnerability: SQL-инъекция Risk: высокий Date: 6.07.2007 discovered by durito damagelab -duritoatmaildotru- HTTP: durito.narod.ru www.damagelab.org +:| Details |: SQL-инъекция в скрипте default.asp +:| Экплойт |:...

joomla.txt

RST/GHC -- JOOMLA CMS -- ADVISORY 37 Product: Joomla Affected version: 1.0.7 Last version: 1.0.7 Vendor: Joomla! URL: http://www.joomla.org/ online demo: http://demo.joomla.org/ VULNERABILITY CLASS: DoS, path disclosing Product Description Joomla! is a Content Management System CMS created by the...

Forum Russian Board 4.2 Full Command Execution Exploit

No description provided by source. !/usr/bin/perl Forum Russian Board 4.2 Full FRB http://www.carline.ru , http://frb.ru command execution exploit by RST/GHC http://rst.void.ru , http://ghc.ru bugs found by foster & 1dt.w0lf , xpl coded by 1dt.w0lf RST/GHC - http://rst.void.ru , http://ghc.ru use...