1017 matches found
Jojo CMS Multiple Vulnerabilities
Jojo CMS is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Multiple Vulnerabilities in Jojo CMS
High-Tech Bridge Security Research Lab discovered multiple vulnerabilities in Jojo CMS, which can be exploited to perform SQL Injection and Cross-Site Scripting XSS attacks. 1 SQL Injection in Jojo CMS: CVE-2013-3081 The vulnerability is caused by insufficient filtration of user-supplied input...
Free Monthly Websites 2.0 Administrator Remote Password Change
========================================================================================== Title : Free Monthly Websites 2.0 Administrator Remote Password Change Date : 10/04/2013 Name : Free Monthly Websites Affected Version : 2.0 Vendor : http://www.freemonthlywebsites2.com/ Category : Web...
MTP Guestbook 1.0 - Multiple Cross-Site Scripting Vulnerabilities
MTP Guestbook 1.0 - Multiple Cross-Site Scripting Vulnerabilities MTP Guestbook 1.0 Multiple Remote Script Insertion Vulnerabilities alert1;' / input type="hidden" name="ins...
CKEditor < 4.0.1.1 Multiple Vulnerabilities
CKEditor is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:ckeditor:ckeditor"; ifdescription...
MTP Guestbook 1.0 Multiple Remote Script Insertion Vulnerabilities
Summary MTP Guestbook allows you to put a guestbook on your website. Your visitors can sign it and leave a message. The entries can be edited and deleted in the admin area. Description MTP Guestbook script suffers from multiple stored cross-site scripting vulnerabilities. The issues are triggered...
Advantech WebAccess HMI and SCADA Software Cross-Site Scripting
A cross site scripting vulnerability has been reported in Advantech WebAccess HMI/SCADA software. The vulnerability is due to improper validation of input passed via the 'ProjDesc' parameter. A remote attacker can exploit this vulnerability to execute arbitrary HTML and script code in a browser...
Apache OFBiz 10.4.x - Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/57463/info Apache OFBiz is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary HTML and script code in the browser of an unsuspecting...
phlyLabs phlyMail Lite Multiple Vulnerabilities
phlyLabs phlyMail Lite is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Advantech Webaccess HMISCADA Software - Persistence Cross-Site Scripting
Advantech Webaccess HMISCADA Software - Persistence Cross-Site Scripting Title : Advantech WebAccess HMI/SCADA Software Persistence Cross-Site Scripting Vulnerability Author : Antu Sanadi SecPod Technologies www.secpod.com Vendor : http://webaccess.advantech.com/ Advisory :...
PHP Server Monitor Cross Site Scripting
Author: loneferret of Offensive Security Product: PHP Server Monitor Version: 2.0.1 and maybe older versions Google Dork: intext="Powered by PHP Server Monitor v2.0.1" yes people have made this available on the web Software Download: http://sourceforge.net/projects/phpservermon/ Tested on: Ubuntu...
Multiple vulnerabilities in Achievo
High-Tech Bridge Security Research Lab discovered two vulnerabilities in Achievo, which can be exploited to perform SQL injection and cross-site scripting XSS attacks. 1 SQL Injection vulnerability in Achievo: CVE-2012-5865 The vulnerability was discovered in the "dispatch.php" script while...
WordPress Spider Catalog Plugin 1.1 - HTML Code Injection and Cross-Site Scripting
Spider Catalog plugin is prone to HTML code injection and cross-site scripting vulnerabilities. Solution Update the plugin...
WordPress Plugin Spider Catalog 1.1 - HTML Code Injection Cross-Site Scripting
WordPress Plugin Spider Catalog 1.1 - HTML Code Injection Cross-Site Scripting 1 1 0 I'm D4NB4R member from Inj3ct0r Team 1 1 0 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1 Exploit Title: Wordpress Plugin Catalog HTML Code Injection and Cross-site scripting Dork: N/A...
WordPress Plugin Spider Catalog 1.1 - HTML Code Injection / Cross-Site Scripting
1 1 0 I'm D4NB4R member from Inj3ct0r Team 1 1 0 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1 Exploit Title: Wordpress Plugin Catalog HTML Code Injection and Cross-site scripting Dork: N/A Date: 31-10-2012 Author: Daniel Barragan "D4NB4R" Twitter: @D4NB4R Version: 1.1...
Wordpress Plugin Catalog HTML Code Injection and Cross-site scripting
Spider WordPress Product Catalog plugin is a convenient tool for organizing the products represented on your website into catalogs. Each product on the catalog is assigned with a relevant category, which makes it easier for the customers to search and identify the needed products within the...
Fedora 18 : phpMyAdmin-3.5.3-1.fc18 (2012-15691)
phpMyAdmin 3.5.3.0 2012-10-08 =============================== - interface Browse mode 'Show' button gives blank page if no results anymore - interface Copy Database Ajax feedback vanishes long before copying is done - interface GC-maxlifetime warning incorrectly displayed - interface Search fails...
xt:Commerce VEYTON 4.0.15 (products_name_de) Script Insertion Vulnerability
Exploit for php platform in category web applications xt:Commerce VEYTON 4.0.15 productsnamede Script Insertion Vulnerability form name="XSS" method="POST"...
Wordpress Count per Day Plugin 3.2.3 XSS Vulnerability
Exploit for php platform in category web applications Exploit Title: wordpress Count per Day Cross Site Scripting Vulnerability Google Dork:inurl:/wp-content/plugins/count-per-day Date: 08/24/2012 Author: Crim3R Version 3.2.3 Vendor Home :...
MediaSpan Website Management Cross Site Scripting
Exploit Title: MediaSpan Website Management Cross Site Scripting Vulnerability Google Dork: intext:":Copyright © 2012 CUMULUS MEDIA and MediaSpan" Date: 08/24/2012 Author: Crim3R Vendor Home : http://www.mediaspanonline.com/products/websitemanagement/ Tested on: all...