8856 matches found
DNET Live-Stats <= 0.8 RC8 LFI Vulnerability
DNET Live-Stats is prone to a local file include LFI vulnerability because it fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
Zen Cart Multiple Input Validation Vulnerabilities
Zen Cart is prone to multiple input-validation vulnerabilities because it fails to adequately sanitize user-supplied input. These vulnerabilities include local file-include, SQL-injection, and HTML- injection issues. Exploiting these issues can allow attacker-supplied HTML and script code to run ...
Zen Cart <= 1.3.9f Multiple Vulnerabilities
Zen Cart is prone to multiple input validation vulnerabilities because it fails to adequately sanitize user-supplied input. These vulnerabilities include local file include, SQL injection, and HTML injection issues. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpt...
Tiki Wiki CMS Groupware 5.2 Multiple Vulnerabilities
No description provided by source. Source: http://www.securityfocus.com/bid/43507/info Tiki Wiki CMS Groupware is prone to a local file-include vulnerability and a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit the local...
ki Wiki CMS groupware local file include and cross-site scripting vulnerability-vulnerability warning-the black bar safety net
The attacker can through the browser to exploit these issues. The use of a cross-site scripting issues, an attacker must entice an unsuspecting user to click on a malicious URI. The local file vulnerability EXP: the http:// 网站...
Tiki Wiki CMS Groupware 5.2 Multiple Vulnerabilities
Exploit for php platform in category web applications ==================================================== Tiki Wiki CMS Groupware 5.2 Multiple Vulnerabilities ==================================================== Tiki Wiki CMS Groupware is prone to a local file-include vulnerability and a...
Tiki Wiki CMS Groupware 5.2 - Multiple Vulnerabilities
Tiki Wiki CMS Groupware 5.2 - Multiple Vulnerabilities source: https://www.securityfocus.com/bid/43507/info Tiki Wiki CMS Groupware is prone to a local file-include vulnerability and a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker can...
Tiki Wiki CMS Groupware 5.2 - Multiple Vulnerabilities
source: https://www.securityfocus.com/bid/43507/info Tiki Wiki CMS Groupware is prone to a local file-include vulnerability and a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit the local file-include vulnerability using...
Evaria Content Management System 1.1 - File Disclosure
Exploit Title: local file include / File Disclosure Date: Author: khayeye shotor Software Link: http://www.evaria.com/en/?view=download&dload=1 Version: Evaria Content Management System v.1.1 Thanks: khayeye sag , kandome mivei , sinehaye amam and all amehaye irani ----------- vul code:...
MODX <= 2.0.2 Multiple Vulnerabilities - Active Check
MODX is prone to a local file include LFI vulnerability and a cross-site scripting XSS vulnerability because it fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...
MODx 2.0.2-pl - managerindex.php?modahsh Cross-Site Scripting
MODx 2.0.2-pl - managerindex.php?modahsh Cross-Site Scripting source: https://www.securityfocus.com/bid/43577/info MODx is prone to a local file-include vulnerability and a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit the...
MODx 2.0.2-pl - '/manager/index.php?modahsh' Cross-Site Scripting
source: https://www.securityfocus.com/bid/43577/info MODx is prone to a local file-include vulnerability and a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit the local file-include vulnerability using directory-traversal strin...
Collaborative Passwords Manager (cPassMan) Multiple Local File Include Vulnerabilities
cPassMan is prone to multiple local file-include vulnerabilities because it fails to properly sanitize user- supplied input. An attacker can exploit these vulnerabilities to obtain potentially sensitive information and to execute arbitrary local scripts in the context of the webserver process. Th...
Collaborative Passwords Manager (cPassMan) Multiple Local File Include Vulnerabilities
cPassMan is prone to multiple local file-include vulnerabilities because it fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
N-point virtual host management system-fatal vulnerability. Pass to kill all versions-bug warning-the black bar safety net
This is N fatal vulnerability directly get Server Permissions. Because directly related to MYSQL, MSSQL SA and ROOT but encrypted in a way I also see in his encryption code. A bit confused that... I looked online also with no N-point virtual host management system of one aspect of the ODAY or the...
Collaborative Passwords Manager 1.07 Multiple Local Include
Exploit for php platform in category web applications =========================================================== Collaborative Passwords Manager 1.07 Multiple Local Include =========================================================== Collaborative Passwords Manager 1.07 Multiple Local Include...
CVE-2010-3481
Multiple SQL injection vulnerabilities in login.php in ApPHP PHP MicroCMS 1.0.1, when magicquotesgpc is disabled, allow remote attackers to execute arbitrary SQL commands via the 1 username and 2 password variables, possibly related to include/classes/Login.php. NOTE: some of these details are...
CVE-2010-3418
Multiple cross-site scripting XSS vulnerabilities in NetArt Media Car Portal 2.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 carid parameter to index.php and 2 y parameter to include/images.php...
PHP MicroCMS Local File Include and SQL Injection Vulnerabilities
PHP MicroCMS is prone to a local file-include vulnerability and multiple SQL-injection vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit the local file-include vulnerability using directory- traversal strings to view and execute arbitrary local fil...
CMScout IBrowser TinyMCE Plugin Local File Include Vulnerability
CMScout is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability using directory-traversal strings to view files and execute local scripts in the context of the webserver process. This may aid in further...