142 matches found
📄 ISPConfig 3.3.0 Cross Site Scripting
ISPConfig version 3.3.0 suffers from a cross site scripting vulnerability in the system status webpage. CVE-2025-52206 Reflected Cross Site Scripting XSS Suggested description ISPConfig 3.3.0 is vulnerable to Cross Site Scripting XSS via the system status webpage...
ISPConfig language_edit.php PHP Code Injection
This module exploits a PHP code injection vulnerability in ISPConfig's languageedit.php file. The vulnerability occurs when the adminallowlangedit setting is enabled, allowing authenticated administrators to inject arbitrary PHP code through the language editor interface. This module will...
📄 ISPConfig language_edit.php PHP Code Injection
This Metasploit module exploits a PHP code injection vulnerability in the ISPConfig languageedit.php file. The vulnerability occurs when the adminallowlangedit setting is enabled, allowing authenticated administrators to inject arbitrary PHP code through the language editor interface. This...
Exploit for Code Injection in Ispconfig
---- CVE-2023-46818...
Exploit for Code Injection in Ispconfig
---- CVE-2023-46818...
Exploit for Code Injection in Ispconfig
CVE-2023-46818 ISPConfig - PHP Code Injection PoC Exploit Ba...
CVE-2023-46818
An issue was discovered in ISPConfig before 3.2.11p1. PHP code injection can be achieved in the language file editor by an admin if adminallowlangedit is enabled...
CVE-2021-3021
ISPConfig before 3.2.2 allows SQL injection...
CVE-2020-9398
ISPConfig before 3.1.15p3, when the undocumented reverseproxypanelallowed=sites option is manually enabled, allows SQL Injection...
CVE-2012-2087
ISPConfig 3.0.4.3: the "Add new Webdav user" can chmod and chown entire server from client interface...
CVE-2013-3629
ISPConfig 3.0.5.2 has Arbitrary PHP Code Execution...
Exploit for Code Injection in Ispconfig
CVE-2023-46818 ISPConfig - PHP Code Injection PoC Exploit Ba...
ISPConfig Code Injection
ISPConfig versions prior to 3.2.11p1 suffer from a code injection vulnerability...
Exploit for Code Injection in Ispconfig
CVE-2023-46818 Python Exploit 🔥 Description This Python e...
Exploit for Code Injection in Ispconfig
CVE-2023-46818-Exploit This is my own exploit for CVE-2023-468...
CVE-2024-53720
Cross-Site Request Forgery CSRF vulnerability in ole1986 WP-ISPConfig 3 wp-ispconfig3 allows Stored XSS.This issue affects WP-ISPConfig 3: from n/a through = 1.5.6...
CVE-2024-53720
Cross-Site Request Forgery CSRF vulnerability in ole1986 WP-ISPConfig 3 wp-ispconfig3 allows Stored XSS.This issue affects WP-ISPConfig 3: from n/a through = 1.5.6...
CVE-2024-53720 WordPress WP-ISPConfig 3 plugin <= 1.5.6 - CSRF to Stored XSS vulnerability
Cross-Site Request Forgery CSRF vulnerability in ole1986 WP-ISPConfig 3 wp-ispconfig3 allows Stored XSS.This issue affects WP-ISPConfig 3: from n/a through = 1.5.6...
CVE-2024-53720
CVE-2024-53720 describes a Cross-Site Request Forgery leading to Stored XSS in the WordPress WP-ISPConfig 3 plugin (vulnerable:
CVE-2024-53720 WordPress WP-ISPConfig 3 plugin <= 1.5.6 - CSRF to Stored XSS vulnerability
Cross-Site Request Forgery CSRF vulnerability in ole1986 , MachineITSvcs WP-ISPConfig 3 allows Stored XSS.This issue affects WP-ISPConfig 3: from n/a through 1.5.6...