SourceCodester Pizzafy Ecommerce System 注入漏洞

SourceCodester Pizzafy Ecommerce System is an open-source e-commerce system developed by SourceCodester. Version 1.0 of the SourceCodester Pizzafy Ecommerce System has a vulnerability related to SQL injection, which stems from the operation of the Category function in the...

CVE-2018-18198

The $openerinputfield variable in addons/mediapool/pages/index.php in REDAXO 5.6.3 is not effectively filtered and is output directly to the page. The attacker can insert XSS payloads via an index.php?page=mediapool/mediainputfield=XSS request...

EUVD-2020-18681

Malware in sbrugna...

EUVD-2022-43407

Malicious code in bioql PyPI...

EUVD-2023-56059

Malicious code in bioql PyPI...

CVE-2021-36646

A Cross Site Scrtpting XSS vulnerability in KodExplorer 4.45 allows remote attackers to run arbitrary code via /index.php page...

CVE-2021-36646

CVE-2021-36646 – KodExplorer 4.45 : Several connected sources confirm a cross-site scripting (XSS) issue. The nuclei template specifies a reflected XSS in the file view functionality, specifically in app/template/api/view.html where the path parameter is echoed unsafely, enabling attacker-supplie...

Cross site scripting

A Cross Site Scripting XSS vulnerability exists in DanPros htmly 2.8.1 via the Description field in 1 admin/config, and 2 index.php pages...

CVE-2019-14928

An issue was discovered on Mitsubishi Electric Europe B.V. ME-RTU devices through 2.02 and INEA ME-RTU devices through 3.0. A number of stored cross-site script XSS vulnerabilities allow an attacker to inject malicious code directly into the application. An example input variable vulnerable to...

CVE-2018-1000848

Wampserver version prior to version 3.1.5 contains a Cross Site Scripting XSS vulnerability in index.php localhost page that can result in very low. This attack appear to be exploitable via payload onmouseover. This vulnerability appears to have been fixed in 3.1.5 and later...

vehiculesutilitairesmag.com XSS vulnerability

Open Bug Bounty ID: OBB-625745 Description| Value ---|--- Affected Website:| vehiculesutilitairesmag.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

mktx.az XSS vulnerability

Vulnerable URL: http://mktx.az/index.php?page=archivenews=5" Details: Description| Value ---|--- Patched:| No Latest check for patch:| 27.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated VIP website status:| No Check mktx.az SSL...

preCMS 1 - (index.php page) Remote SQL injection Vulnerability

No description provided by source. Viva IslaM Viva IslaM Remote SQL injection Vulnerability preCMS v.1 index.php page AuTh0r : Mr.SQL H0ME : WwW.PaL-HaCkEr.CoM & WwW.AtsDp.CoM/f Email : [email protected] SYRIAN Arab HACkErS -: Exploite :-...

Scribe <= 0.2 (index.php page) Local File Inclusion Vulnerability

No description provided by source. scribe 0.2 local file inclusion vulnerability download http://sourceforge.net/projects/scribe/ author muuratsalo contact muuratsaloatgmail.com exploit http://localhost/0.2/index.php?page=../../../../../../../../../../etc/passwd%00 milw0rm.com 2008-02-14...

WSN Guest 1.02 - orderlinks SQL Injection

WSN Guest 1.02 - orderlinks SQL Injection Author : Gamoscu Homepage : http://www.1923turk.com Blog : http://gamoscu.wordpress.com/ Script : WSN Guest 1.02 Download : http://scripts.webmastersite.net/wsnguest/wsnguest.zip Exploat :index.php?page=20&orderlinks=SQL...

YAP 1.1.1 - index.php Local File Inclusion

YAP 1.1.1 - index.php Local File Inclusion YAP v1.1.1 Local File Inclusion Vulnerability AUTHOR : Alkindiii CONTACT : Alkindiii 4T islamway D0T net HOME : http://www.soqor.net Script : YAP Version : 1.1.1 Download v1.1 : http://wildmary.net-sauvage.com/share/yap1.1.tar.gz Update to v1.1.1 :...

Unfixed XSS vulnerability at www.kentaurus.cz

Security researcher austinator, has submitted on 15/08/2008 a cross-site-scripting XSS vulnerability affecting www.kentaurus.cz, which at the time of submission ranked 0 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 16/08/2008. It is currentl...

syzygyCMS 0.3 (index.php page) Local File Inclusion Vulnerability

Exploit for unknown platform in category web applications ================================================================= syzygyCMS 0.3 index.php page Local File Inclusion Vulnerability ================================================================= + syzygyCMS 0.3 Local File Inclusion +...

Aprox CMS Engine 5.1.0.4 (index.php page) SQL Injection Vulnerability

No description provided by source...

Aprox CMS Engine 5.1.0.4 - &#039;index.php&#039; SQL Injection

Viva IslaM Viva IslaM Remote SQL injection Vulnerability Aprox CMS Engine V5.1.0.4 index.php page AuTh0r : Mr.SQL H0ME : WwW.PaL-HaCkEr.CoM && WwW.AtsDp.CoM/f Email : [email protected] SYRIAN Arab HACkErS -: Exploite :-...