vBulletin 5.6.3 - 'group' Cross Site Scripting

Exploit Title: vBulletin 5.6.3 - 'group' Cross Site Scripting Date: 05.09.2020 Author: Vincent666 ibn Winnie Software Link: https://www.vbulletin.com/en/features/ Tested on: Windows 10 Web Browser: Mozilla Firefox & Opera Google Dorks: "Powered by vBulletin® Version 5.6.3" Blog:...

Joomla Publisher 3.0.19 Cross Site Scripting

Exploit Title: Joomla Publisher V 3.0.19 Stored XSS Date: 03.11.2020 Author: Vincent666 ibn Winnie Software Link: https://publisher.ijoomla.com/demo Tested on: Windows 10 Web Browser: Mozilla Firefox Blog : https://pentest.vincent.blogspot.com/ PoC:...

eSolutions HTTP Live Headers 1.0.6 - Cross Site Vulnerability

Document Title: =============== eSolutions HTTP Live Headers 1.0.6 - Cross Site Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1541 Release Date: ============= 2015-07-01 Vulnerability Laboratory ID VL-ID:...

MyBB HM My Country Flags - SQL Injection

No description provided by source. Exploit title: HM My Country Flags SQL Injection Author: JoinSe7en Contact: join7 +at+ riseup.net Tested on: Linux Category: Web Applications Software link: http://mods.mybb.com/view/hm-my-country-flags HM My Country Flags has a SQL Injection vulnerability. If w...

MyBB HM My Country Flags - SQL Injection

Exploit title: HM My Country Flags SQL Injection Author: JoinSe7en Contact: join7 +at+ riseup.net Tested on: Linux Category: Web Applications Software link: http://mods.mybb.com/view/hm-my-country-flags HM My Country Flags has a SQL Injection vulnerability. If we go to a thread we'll see a countr...

Roundcube Webmail 0.3.1 - Cross-Site Request Forgery SQL Injection

Roundcube Webmail 0.3.1 - Cross-Site Request Forgery SQL Injection Exploit Title: RoundCube 0.3.1 SQL injection Date: 10/10/2011 Author: Smith Falcon Software Link: http://roundcube.net/download Version: 0.3.1 Tested on: Linux timezone= is vulnerable to SQL Union Injection. "POST" data in...

Roundcube Webmail 0.3.1 - Cross-Site Request Forgery / SQL Injection

Exploit Title: RoundCube 0.3.1 SQL injection Date: 10/10/2011 Author: Smith Falcon Software Link: http://roundcube.net/download Version: 0.3.1 Tested on: Linux timezone= is vulnerable to SQL Union Injection. "POST" data in http://site.com/roundcube/index.php...

Prediction Football 2.51 XRF / CSRF

Exploit for php platform in category web applications Exploit Title: title Google Dork: if relevant intext:"Prediction football 2.51" Date: 08/08/2011 Author: Smith Falcon Software Link: http://www.predictionfootball.com/download/download.html Version: 2.51 Tested on: Linux First create a usernam...

Prediction Football 2.51 - Cross-Site Request Forgery

Prediction Football 2.51 - Cross-Site Request Forgery Exploit Title: title Google Dork: if relevant intext:"Prediction football 2.51" Date: 08/08/2011 Author: Smith Falcon Software Link: http://www.predictionfootball.com/download/download.html Version: 2.51 Tested on: Linux First create a usernam...

phpbb cookie admin access

-------------------------------------------------------------------- Written by [email protected] -------------------------------------------------------------------- -------------------------------------------------------------------- Exploit : 2.0.x = phpbb 2.0.12 :...