FreePBX 13.0.188 - Remote Command Execution (Metasploit)

FreePBX 13.0.188 - Remote Command Execution Metasploit Title : Freepbx =begin Freepbx 13.x are vulnerable to Remote command execution due to the insuffecient sanitization of the user input fields language,destination and also due to the lack of good authentication checking Technical details...

HackerOne: Lack of length validation on user address attribute

Hi The input fields for adding mailing address for swag delivery in https://hackerone.com/settings/swags are not restricted in input lengths. I was able to add and read the contents via my own address page and the team pagewho awards the swag over 585728 characters in each of the input fields Nam...

WordPress Welcome Announcement 1.0.5 Cross Site Scripting

Exploit Title: Wordpress Welcome Announcement Cross Site Scripting Exploit Author: bl4ckmohajem Vendor Homepage: https://wordpress.org/plugins/welcome-announcement/ Tested On: Windows7 Software Link: https://downloads.wordpress.org/plugin/welcome-announcement.1.0.5.zip Version: 1.0.5 Vulnerable...

WordPress Visual Form Builder 2.8.6 Cross Site Scripting

Product: Visual Form Builder Version: 2.8.6 Exploit Author: Sachin Wagh Home page Link: https://wordpress.org/plugins/visual-form-builder/ ============================================================================ Details: The Visual Form Builder plugin for WordPress is prone to a multiple...

Veris: XSS on multiple fields

Hi there, I have found that in many input fields the input is not properly sanitized and the values are directly inserted into the JavaScript code and the html code. PoC: 1- Log in into the account. 2- Create a group with the following name groupname';alertdocument.cookie;// 3-Try to Add Members...

Barracuda Networks SN #52 - Persistent Web Vulnerability

Document Title: =============== Barracuda Networks SN 52 - Persistent Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1297 BNSEC ID: 0004001004 Tracking ID: CAS-03491-K1X2V0 Release Date: ============= 2016-02-03 Vulnerability Laborator...

Wordpress DukaPress Plugin - Persistent XSS Vulnerability

Exploit for php platform in category web applications Tilte Exploit : Wordpress Plugin DukaPress - Persistent XSS Vulnerability Date : 21/09/2015 Author : ZwX Software Vendor : http://dukapress.org/ Software Link: https://wordpress.org/plugins/dukapress/ Version: 2.5.9 Levels Risk : Low Tested on...

Supr Shopsystem 5.1.0 - Persistent UI Vulnerability

Exploit for php platform in category web applications Product & Service Introduction: =============================== SUPR is a modern and user-friendly system which allows each store very quickly and easily create their own online store. Without installation and own webspace you can begin to...

clientResponse Client Management 4.1 - Cross-Site Scripting

clientResponse Client Management 4.1 - Cross-Site Scripting Exploit Title: clientResponse Client Management XSS Vulnerability Date: 14-10-2014 Exploit Author: Halil Dalabasmaz Version: v4.1 Vendor Homepage: http://codecanyon.net/item/clientresponse-responsive-php-client-management/3797780 Tested...

WordPress SupportEzzy Ticket System 1.2.5 Cross Site Scripting

Exploit Title: SupportEzzy Ticket System - WordPress Plugin Stored XSS Vulnerability Date: 12-10-2014 Exploit Author: Halil Dalabasmaz Version: v1.2.5 Vendor Homepage: http://codecanyon.net/item/supportezzy-ticket-system-wordpress-plugin/8908617 Software Test Link:...

phpSound Music Sharing Platform 1.0.5 - Multiple Cross-Site Scripting Vulnerabilities

phpSound Music Sharing Platform 1.0.5 - Multiple Cross-Site Scripting Vulnerabilities Exploit Title: phpSound Music Sharing Platform Multiple XSS Vulnerabilities Date: 08-10-2014 Exploit Author: Halil Dalabasmaz Version: v1.0.5 Vendor Link:...

DCP-Portal 3.7/4.x/5.x Multiple HTML Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/11339/info DCP-Portal is reported prone to multiple HTML injection vulnerabilities. It is reported that DCP-Portal does not sufficiently filter data submitted via input fields in several scripts. These vulnerabilities may...

CVE-2013-4415

Multiple cross-site scripting XSS vulnerabilities in Spacewalk and Red Hat Network RHN Satellite 5.6 allow remote attackers to inject arbitrary web script or HTML via the 1 whereCriteria variable in a software channels search; 2 endyear, 3 starthour, 4 endampm, 5 endday, 6 endhour, 7 endminute, 8...

CVE-2011-2920

A flaw was found in Spacewalk and Red Hat Network Satellite. This cross-site scripting XSS vulnerability allows a remote attacker to inject arbitrary web script or HTML into web pages through various input fields, such as the "Filter by Synopsis" field. This could lead to the execution of malicio...

Symantec Altiris DS SQL Injection Vulnerability

Usage Info This module exploits a SQL injection flaw in Symantec Altiris Deployment Solution 6.8 to 6.9.164. The vulnerability exists on axengine.exe which fails to adequately sanitize numeric input fields in "UpdateComputer" notification Requests. In order to spawn a shell, several SQL injection...

WordPress FuneralPress Plugin 1.1.6 - Persistent XSS

FuneralPress plugin is prone to a persistent cross-site scripting vulnerabilities. These vulnerabilities allow attackers to host malicious Javascript on another site, enter a path to a local image in , if Photo was selected. Also, attackers can submit the form with the following entered into...

Wordpress Plugin Notices - CSRF & XSS Vulnerability

Exploit for php platform in category web applications 1=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1...

WP Effective Lead Management v3.0.0 Persistent XSS

Exploit for php platform in category web applications Exploit Title: WP Lead Management v3.0.0 Persistent XSS Date: 8/5/12 Exploit Author: Chris Kellum Software Link: http://downloads.wordpress.org/plugin/wp-effective-lead-management.3.0.1.zip Version: 3.0.0 ===================== Vulnerability...

WordPress Plugin Effective Lead Management 3.0.0 - Persistent Cross-Site Scripting

Exploit Title: WP Lead Management v3.0.0 Persistent XSS Date: 8/5/12 Exploit Author: Chris Kellum Software Link: http://downloads.wordpress.org/plugin/wp-effective-lead-management.3.0.1.zip Version: 3.0.0 ===================== Vulnerability Details ===================== The form does not properly...

IPhone TreasonSMS - HTML Inject & File Include Vulnerability

Title: ====== IPhone TreasonSMS - HTML Inject & File Include Vulnerability Date: ===== 2012-04-23 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=154 VL-ID: ===== 154 Introduction: ============= treasonSMS allows you to send SMS from your desktop computer. It turns your...