Maxs Guestbook 1.0 - Multiple Remote Vulnerabilities

Maxs Guestbook 1.0 - Multiple Remote Vulnerabilities source: https://www.securityfocus.com/bid/52471/info Max's Guestbook is prone to multiple remote vulnerabilities. Exploiting these issues could allow an attacker to execute arbitrary HTML and script code in the context of the affected browser,...

Fork CMS 3.2.7 Multiple HTML Code Injection Vulnerabilities

Summary Fork is an open source cms that will rock your world. Description Fork CMS suffers from multiple XSS vulnerabilities when parsing user input to several parameters in different scripts, via POST and GET methods. Attackers can exploit these weaknesses to execute arbitrary HTML and script co...

Adobe Flash Player Multiple Vulnerabilities (Windows) - Feb12

This host is installed with Adobe Flash Player and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: secpodadobeflashplayermultvulnwinfeb12.nasl 8178 2017-12-19 13:42:38Z cfischer $ Adobe Flash Player Multiple Vulnerabilities Windows - Feb12 Authors: Rachana Shetty Copyright:...

Apache Struts多个HTML代码注入漏洞

BUGTRAQ ID: 51902 CVE ID: CVE-2012-1006 Apache Struts是一款开发Java web应用程序的开源Web应用框架。 Apache Struts在实现上存在多个HTML注入漏洞，攻击者可利用这些漏洞在受影响浏览器中运行HTML和脚本代码，窃取Cookie身份验证凭证或控制站点外观。 0 Apache Group Struts 2.2.3 Apache Group Struts 2.0.14 厂商补丁： Apache Group ------------ 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版...

Apache Struts CookBook/Examples Multiple Cross-Site Scripting Vulnerabilities

This host is running Apache Struts and is prone to multiple Cross-site scripting vulnerabilities. OpenVAS Vulnerability Test $Id: gbapachestrutscookbooknexmpmulxssvuln.nasl 5841 2017-04-03 12:46:41Z cfi $ Apache Struts CookBook/Examples Multiple Cross-Site Scripting Vulnerabilities Authors: Antu...

[PT-2011-01] Cross-Site Scripting in Kayako Support Suite

------------------------------------------------------------------ PT-2011-01 Positive Technologies Security Advisory Cross-Site Scripting in Kayako Support Suite ------------------------------------------------------------------ --- Vulnerable software Kayako Support Suite Version: 3.70.02-stabl...

iSupport 1.x Cross Site Request Forgery

!/usr/bin/perl Title : iSupport v1.x = Html Code injection to add admin Author : Or4nG.M4n Version : 1.x Homepage : http://www.idevspot.com/iSupport.php Google Dork: "Powered by iSupport 1.8 " Homepage : http://www.idevspot.com/ Thnks : +----------------------------------+ | xSs m4n i-Hmx h311 c0...

PHP iReport 1.0 - Remote Html Code Injection

PHP iReport 1.0 - Remote Html Code Injection !/usr/bin/perl Title = phpireport v1.0 = Remote Html Code injection Author = Or4nG.M4n Download = http://garr.dl.sourceforge.net/project/phpireport/phpireport%20v1.0%20alpha%20revision%2025.rar Thnks : +----------------------------------+ | xSs m4n i-H...

[PT-2011-04] Cross-Site Scripting in Kayako Support Suite

----------------------------------------------------------------- PT-2011-04 Positive Technologies Security Advisory Cross-Site Scripting in Kayako Support Suite ----------------------------------------------------------------- --- Vulnerable software Kayako Support Suite Version: 3.70.02-stable...

php ireport v1.0 Remote Html Code injection

Exploit for php platform in category web applications !/usr/bin/perl Title = phpireport v1.0 = Remote Html Code injection Author = Or4nG.M4n Download = http://garr.dl.sourceforge.net/project/phpireport/phpireport%20v1.0%20alpha%20revision%2025.rar Thnks : +----------------------------------+ | xS...

iSupport 1.x - Cross-Site Request Forgery / HTML Code Injection (Add Admin)

!/usr/bin/perl Title : iSupport v1.x = Html Code injection to add admin Author : Or4nG.M4n Version : 1.x Homepage : http://www.idevspot.com/iSupport.php Google Dork: "Powered by iSupport 1.8 " Homepage : http://www.idevspot.com/ Thnks : +----------------------------------+ | xSs m4n i-Hmx h311 c0...

w-CMS 2.01 Multiple Vulnerabilities

Exploit for php platform in category web applications Exploit Title: W-Cms Multiple Vulnerability Date: 2012-01-09 Author: th3.g4m30v3r Site:http://w-cms.info/ Software Link: http://code.google.com/p/wcms/ Dork: intext:"Powered by w-CMS" Version : 2.01 Tested on: Window 7 Yogesh Kashyap, shubneet...

SQLiteManager <= 1.2.4 Multiple XSS Vulnerabilities

SQLiteManager is prone to multiple cross-site scripting XSS vulnerabilities. Copyright C 2012 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is...

Lenovo based information distribution system the presence of a CRLF injection/HTTP response splitting-vulnerability warning-the black bar safety net

Brief description: It is a remote attacker to inject custom HTTP headers. The attacker can inject a session cookie or HTML code. This may be theXSS（cross-site scripting or session fixation vulnerability. Detailed description: URL-encoded input langid set SomeCustomInjectedHeader: the injectedbywv...

AShop - Open Redirection Cross-Site Scripting

AShop - Open Redirection Cross-Site Scripting source: https://www.securityfocus.com/bid/50616/info AShop is prone to multiple open-redirection issues and multiple cross-site scripting issues because it fails to sufficiently sanitize user-supplied input. Attackers can exploit these issues to execu...

Eclime Multiple SQL Injection and Cross-site Scripting Vulnerabilities

This host is running Eclime and is prone to multiple cross site scripting and SQL injection vulnerabilities. OpenVAS Vulnerability Test $Id: gbeclimemultsqlinjnxssvuln.nasl 5793 2017-03-30 13:40:15Z cfi $ Eclime Multiple SQL Injection and Cross-site Scripting Vulnerabilities Authors: Antu Sanadi...

Innovate Portal 2.0 - &#039;cat&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/50295/info Innovate Portal is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary HTML and script code in an unsuspecting user's browser in th...

asgbookPHP 1.9 - index.php Cross-Site Scripting

asgbookPHP 1.9 - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/50167/info asgbookphp is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary HTML and script...

AWStats 'awredir.pl' Multiple Cross-Site Scripting Vulnerabilities

This host is running AWStats and is prone to multiple cross site scripting vulnerabilities. OpenVAS Vulnerability Test $Id: gbawstatsawredirmultxssvuln.nasl 7029 2017-08-31 11:51:40Z teissa $ AWStats 'awredir.pl' Multiple Cross-Site Scripting Vulnerabilities Authors: Sooraj KS Copyright: Copyrigh...

Papoo CMS Light 4.0 - Multiple Cross-Site Scripting Vulnerabilities

Papoo CMS Light 4.0 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/49587/info Papoo CMS Light is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to...