omta.hondagroendealers.nl XSS vulnerability

Open Bug Bounty ID: OBB-626327 Description| Value ---|--- Affected Website:| omta.hondagroendealers.nl Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

fa-jansen-van-loon.hondagroendealers.nl XSS vulnerability

Open Bug Bounty ID: OBB-626313 Description| Value ---|--- Affected Website:| fa-jansen-van-loon.hondagroendealers.nl Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3...

CVE-2018-10736

A SQL injection issue was discovered in Nagios XI before 5.4.13 via the admin/info.php key1 parameter...

Sql injection

A SQL injection issue was discovered in Nagios XI before 5.4.13 via the admin/info.php key1 parameter...

CVE-2018-10736

A SQL injection issue was discovered in Nagios XI before 5.4.13 via the admin/info.php key1 parameter...

CVE-2018-10736

A SQL injection issue was discovered in Nagios XI before 5.4.13 via the admin/info.php key1 parameter...

NagiosXI <= 5.4.12 info.php SQL injection(CVE-2018-10736)

NagiosXI = 5.4.12 info.php SQL injectionCVE-2018-10736 Description A SQL injection issue was discovered in Nagios XI via the admin/info.php key1 parameter. Affected Version Nagios XI 5.2.x Nagios XI 5.4.x before 5.4.13 Proof of concept...

CVE-2018-10107

D-Link DIR-815 REV. B with firmware through DIR-815REVBFIRMWAREPATCH2.07.B01 devices have XSS in the RESULT parameter to /htdocs/webinc/js/info.php...

Design/Logic Flaw

D-Link DIR-815 REV. B with firmware through DIR-815REVBFIRMWAREPATCH2.07.B01 devices have XSS in the RESULT parameter to /htdocs/webinc/js/info.php...

CVE-2018-10107

Affected product: D-Link DIR-815 Rev. B (firmware through 2.07.B01). Vulnerable component: /htdocs/webinc/js/info.php, specifically the RESULT parameter, due to inadequate input/page protection that enables cross-site scripting. Impact: an attacker could exploit the XSS to obtain authentication c...

PT-2018-4006 · D Link · D-Link Dir-815

Name of the Vulnerable Software and Affected Versions: D-Link DIR-815 REV. B versions through DIR-815 REVB FIRMWARE PATCH 2.07.B01 Description: The issue exists due to inadequate protection of the web page structure in the /htdocs/webinc/js/info.php component of the D-Link DIR-815 REV. B router's...

gamestime.net16.net XSS vulnerability

Open Bug Bounty ID: OBB-565195 Description| Value ---|--- Affected Website:| gamestime.net16.net Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

mcdougallbay.com XSS vulnerability

Open Bug Bounty ID: OBB-564457 Description| Value ---|--- Affected Website:| mcdougallbay.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

PT-2017-15084 · Dolibarr · Dolibarr Erp/Crm

Name of the Vulnerable Software and Affected Versions: Dolibarr ERP/CRM version 6.0.4 Description: The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the rowid parameter in the adherents/subscription/info.php file. Recommendations: For version 6.0.4, conside...

hotelanassa.gr XSS vulnerability

Vulnerable URL: http://www.hotelanassa.gr/info.php?catid=13'"3 Details: Description| Value ---|--- Patched:| No Latest check for patch:| 06.01.2018 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 4743231 VIP website status:| No Coordinated Disclosure Timeline:...

shagomer-shop.ru XSS vulnerability

Vulnerable URL: http://shagomer-shop.ru/info.php?t=%27%22%3E%3Csvg/onload=confirm/OPENBUGBOUNTY/%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 24.12.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 4680389 VIP website status:| No...

Cross site request forgery (csrf)

BlackCat CMS 1.2 allows remote authenticated users to inject arbitrary PHP code into info.php via a crafted newmodulename parameter to backend/addons/ajaxcreate.php. NOTE: this can be exploited via CSRF...

CVE-2017-14048

BlackCat CMS 1.2 allows remote authenticated users to inject arbitrary PHP code into info.php via a crafted newmodulename parameter to backend/addons/ajaxcreate.php. NOTE: this can be exploited via CSRF...

CVE-2017-14048

BlackCat CMS 1.2 allows remote authenticated users to inject arbitrary PHP code into info.php via a crafted newmodulename parameter to backend/addons/ajaxcreate.php. NOTE: this can be exploited via CSRF...

cedarcreekinn.com XSS vulnerability

Vulnerable URL: http://www.cedarcreekinn.com/info.php?for=1"...