17 matches found
EUVD-2017-8801
Malware in sbrugna...
EUVD-2017-9046
Malware in sbrugna...
CVE-2017-17904
FS Lynda Clone has XSS via the keywords parameter to tutorial/ or the editprofilefirstname parameter to user/editprofile...
CVE-2017-17903
FS Lynda Clone has CSRF via user/editprofile, as demonstrated by adding content to the user panel...
CVE-2017-17903
FS Lynda Clone has CSRF via user/editprofile, as demonstrated by adding content to the user panel...
Command injection
FS Lynda Clone has XSS via the keywords parameter to tutorial/ or the editprofilefirstname parameter to user/editprofile...
CVE-2017-17903
FS Lynda Clone has CSRF via user/editprofile, as demonstrated by adding content to the user panel...
CVE-2017-17904
FS Lynda Clone has XSS via the keywords parameter to tutorial/ or the editprofilefirstname parameter to user/editprofile...
CVE-2017-17904
FS Lynda Clone is affected by a cross-site scripting (XSS) vulnerability CVE-2017-17904. The issue arises via the keywords parameter to tutorial/ and the edit_profile_first_name parameter to user/edit_profile, enabling injected scripts to run in a victim’s browser. Sources confirm the vulnerabili...
CVE-2017-17903
CVE-2017-17903 affects FS Lynda Clone (video tutorial software) and is caused by a cross-site request forgery (CSRF) vulnerability in the /user/edit_profile endpoint, allowing an attacker to cause changes to the user panel by forging requests. The vulnerability’s impact is described in the initia...
FS Lynda Clone SQL Injection Vulnerability
FS Lynda Clone is a set of scripts for video learning websites written using the PHP Codelgniter framework. A SQL injection vulnerability exists in FS Lynda Clone version 1.0. A remote attacker can exploit the vulnerability by sending the 'keywords' parameter to tutorial/ to inject SQL commands...
CVE-2017-17643
FS Lynda Clone 1.0 has SQL Injection via the keywords parameter to tutorial/...
Sql injection
FS Lynda Clone 1.0 has SQL Injection via the keywords parameter to tutorial/...
CVE-2017-17643
FS Lynda Clone 1.0 has SQL Injection via the keywords parameter to tutorial/...
CVE-2017-17643
FS Lynda Clone 1.0 suffers a SQL Injection in the keywords parameter of tutorial/, enabling arbitrary SQL execution. This vulnerability is described across multiple sources (CVE-2017-17643, CNVD-2018-01351, NVD entry) and is associated with FS Lynda Clone built on PHP CodeIgniter. Public referenc...
FS Lynda Clone SQL Injection
Exploit Title: FS Lynda Clone - SQL Injection Date: 2017-10-23 Exploit Author: 8bitsec Vendor Homepage: https://fortunescripts.com/ Software Link: https://fortunescripts.com/product/lynda-clone/ Version: 23 October 17 Tested on: Kali Linux 2.0 | Mac OS 10.12.6 Email: [email protected] Contact:...
FS Lynda Clone - 'category' SQL Injection
Exploit Title: FS Lynda Clone - SQL Injection Date: 2017-10-23 Exploit Author: 8bitsec Vendor Homepage: https://fortunescripts.com/ Software Link: https://fortunescripts.com/product/lynda-clone/ Version: 23 October 17 Tested on: Kali Linux 2.0 | Mac OS 10.12.6 Email: [email protected] Contact:...