7 matches found
Zoho ManageEngine ADSelfService Plus 5.7 Cross Site Scripting
Zoho ManageEngine ADSelfService Plus 5.7 &searchType=contains&searchBy=ALLFIELDS&actionId=Search HTTP/1.1 &adscsrf= 4- Stored XSS in self-update layout imple...
WordPress Calculated Fields Form 1.0.10 SQL Injection
Calculated Fields Form Wordpress Plugin = 1.0.10 - Remote SQL Injection Vulnerability + Author: Ibrahim Raafat + Twitter: https://twitter.com/RaafatSEC + Plugin: https://wordpress.org/plugins/calculated-fields-form/ + TimeLine - Feb 6 2015, The vulnerabilities reported - Feb 7 2015, Response and...
RSform!Pro 1.3.0 Remote Shell Upload
RSform!Pro There is a reflected XSS Vulnerability in the form .. Birthdate parameter alert1337...
Joomla AJAX Shoutbox <= 1.6 - Remote SQL Injection Vulnerability
No description provided by source. Joomla AJAX Shoutbox remote SQL Injection vulnerability - Author: Ibrahim Raafat - Contact: https://twitter.com/RaafatSEC - Discovery date: 1 April 2010 4 years ago - Reported to vendor : 12 March 2014 - Response: Quick response from the developer, Patched and...
Flickr vulnerable to SQL Injection and Remote Code Execution Flaws
Yahoo-owned Flickr, one of the biggest online photo management and sharing website in the world was recently impacted by critical web application vulnerabilities, which left website's database and server vulnerable hackers. Ibrahim Raafat, a security researcher from Egypt has found SQL injection...
Joomla! Component AJAX Shoutbox 1.6 - SQL Injection
Joomla AJAX Shoutbox remote SQL Injection vulnerability - Author: Ibrahim Raafat - Contact: https://twitter.com/RaafatSEC - Discovery date: 1 April 2010 4 years ago - Reported to vendor : 12 March 2014 - Response: Quick response from the developer, Patched and released version 1.7 in the same day...
Joomla AJAX Shoutbox SQL Injection
Joomla AJAX Shoutbox Remote SQL Injection vulnerability - Author: Ibrahim Raafat - Contact: https://twitter.com/RaafatSEC - Discovery date: 1 April 2010 4 years ago - Reported to vendor : 12 March 2014 - Response: Quick response from the developer, Patched and released version 1.7 in the same day...