1931 matches found
Unfixed Script Insertion vulnerability at www.zoomerang.com
Security researcher Sudeep Das, has submitted on 07/08/2007 a Script Insertion vulnerability affecting www.zoomerang.com, which at the time of submission ranked 6379 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 07/08/2007. It is currently...
TISA2007-01.txt
========================================================================= TeamIntell Security Advisory TISA2007-01 ------------------------------------------------------------------------- Letterman Subscriber Module "Itemid" Script Insertion Vulnerability...
Unfixed Script Insertion vulnerability at www.insitor.de
Security researcher Uber0n, has submitted on 06/12/2007 a Script Insertion vulnerability affecting www.insitor.de, which at the time of submission ranked 817690 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 19/12/2007. It is currently unfixed...
Unfixed Script Insertion vulnerability at www.nl.insitor.com
Security researcher Uber0n, has submitted on 06/12/2007 a Script Insertion vulnerability affecting www.nl.insitor.com, which at the time of submission ranked 2966584 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 19/12/2007. It is currently...
Unfixed Script Insertion vulnerability at www.funtimerecords.com
Security researcher BluePhreak, has submitted on 25/05/2007 a Script Insertion vulnerability affecting www.funtimerecords.com, which at the time of submission ranked 4383533 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 29/05/2007. It is...
Unfixed Script Insertion vulnerability at www.protect.to
Security researcher InSiDe, has submitted on 21/05/2007 a Script Insertion vulnerability affecting www.protect.to, which at the time of submission ranked 19259 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 22/05/2007. It is currently unfixed...
Unfixed Script Insertion vulnerability at www.billbuchan.com
Security researcher WhatALegend, has submitted on 05/09/2007 a Script Insertion vulnerability affecting www.billbuchan.com, which at the time of submission ranked 3593126 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 08/09/2007. It is current...
Unfixed Script Insertion vulnerability at www.yasminverschure.com
Security researcher A3on, has submitted on 05/05/2007 a Script Insertion vulnerability affecting www.yasminverschure.com, which at the time of submission ranked 0 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 05/05/2007. It is currently...
Unfixed Script Insertion vulnerability at www.blimey.nl
Security researcher A3on, has submitted on 05/05/2007 a Script Insertion vulnerability affecting www.blimey.nl, which at the time of submission ranked 0 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 05/05/2007. It is currently unfixed. If you...
Unfixed Script Insertion vulnerability at www.mertcesur.org
Security researcher IMHOT3B, has submitted on 05/03/2007 a Script Insertion vulnerability affecting www.mertcesur.org, which at the time of submission ranked 2326033 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 06/03/2007. It is currently...
Unfixed Script Insertion vulnerability at chatsitem.com
Security researcher h4x0r, has submitted on 28/04/2007 a Script Insertion vulnerability affecting chatsitem.com, which at the time of submission ranked 0 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 28/04/2007. It is currently unfixed. If yo...
exponent-multi.txt
Exponent Multiple Vulnerabilities Exponent is a fully-featured, modern CMS written in PHP, that enables non-technical people to manage and update their websites with minimal effort. Exponent is also an attractive development platform for traditional and non-traditional web applications. it's grea...
HIOX GUEST BOOK (HGB) 4.0 Remote Code Execution Vulnerability
No description provided by source. +========================I=R=A=N============================+ HGB Version 4.0 =========================I=R=A=N============================= +========================I=R=A=N============================+ Author : Dj7xpl / Dj7xplatYahoodotcom...
HIOX GUEST BOOK (HGB) 4.0 - Remote Code Execution
HIOX GUEST BOOK HGB 4.0 - Remote Code Execution +========================I=R=A=N============================+ HGB Version 4.0 =========================I=R=A=N============================= +========================I=R=A=N============================+ Author : Dj7xpl / Dj7xplatYahoodotcom...
Unfixed Script Insertion vulnerability at upload66.com
Security researcher GURUS, has submitted on 31/03/2007 a Script Insertion vulnerability affecting upload66.com, which at the time of submission ranked 92176 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 31/03/2007. It is currently unfixed. If...
Unfixed Script Insertion vulnerability at upload02.uploadpk.com
Security researcher GURUS, has submitted on 24/03/2007 a Script Insertion vulnerability affecting upload02.uploadpk.com, which at the time of submission ranked 310870 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 24/03/2007. It is currently...
Authentication flaw
admin/contest.php in Weekly Drawing Contest 0.0.1 allows remote attackers to bypass authentication, and insert new contest information into a database, via a direct POST request...
CVE-2007-1603
CVE-2007-1603 describes an authentication bypass in admin/contest.php of the Weekly Drawing Contest 0.0.1, enabling remote attackers to bypass login and insert new contest information via a direct POST request. The CVSS vector (AV:N/AC:L/Au:N/C:P/I:P/A:P) yields a base score of 7.5 (HIGH), indica...
Hidden ASP the back door of the three methods-vulnerability warning-the black bar safety net
1, The establishment of a non-standard directory: mkdir images..\ A copy of the ASP Trojan to the directory: copy c:\inetpub\wwwroot\news.asp c:\inetpub\wwwroot\images..\news.asp Through the web Access ASP Trojan: http://ip/images../news.asp?action=login How to delete a non-standard directory:...
Unfixed Script Insertion vulnerability at phpfaber.org
Security researcher GURUS, has submitted on 14/03/2007 a Script Insertion vulnerability affecting phpfaber.org, which at the time of submission ranked 334388 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 14/03/2007. It is currently unfixed. I...