CVE-2006-4884

Multiple cross-site scripting XSS vulnerabilities in IDevSpot iSupport 1.8 allow remote attackers to inject arbitrary web script or HTML via 1 the suser parameter in support/rightbar.php, 2 the ticketid parameter in support/opentickets.php, and 3 the conspagetitle parameter in index.php. NOTE: th...

iSupport 1.8 - SQL Injection Vulnerability

No description provided by source. iSupport 1.8 SQL Injection Vulnerability Date: 2011-06-23 Author: Brendan Coles [email protected] Advisory: http://itsecuritysolutions.org/2011-06-23-iSupport-1.8-SQL-Injection-Vulnerability/ Software: iSupport Version: = 1.8 Homepage:...

iDevSpot iSupport 1.8 'index.php' Local File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/26961/info iSupport is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. Exploiting this issue may allow an unauthorized user to view files and execute local scripts...

iSupport 1.8 CSRF Vulnerability (Add Admin)

Exploit for php platform in category web applications iSupport 1.8 CSRF Vulnerability Add Admin ==================================================================== .:. Author : AtT4CKxT3rR0r1ST email protected .:. Script : http://www.idevspot.com/ .:. Tested On Demo :...

iSupport 1.8 SQL Injection

iSupport 1.8 SQL Injection Vulnerability Date: 2011-06-23 Author: Brendan Coles / / Advisory: http://itsecuritysolutions.org/2011-06-23-iSupport-1.8-SQL-Injection-Vulnerability/ Software: iSupport Version: = 1.8 Homepage: http://www.idevspot.com/iSupport.php Google Dork: "Powered by iSupport 1.8 ...

iSupport 1.8 - SQL Injection

iSupport 1.8 SQL Injection Vulnerability Date: 2011-06-23 Author: Brendan Coles Advisory: http://itsecuritysolutions.org/2011-06-23-iSupport-1.8-SQL-Injection-Vulnerability/ Software: iSupport Version: = 1.8 Homepage: http://www.idevspot.com/iSupport.php Google Dork: "Powered by iSupport 1.8 "...

iSupport 1.8 SQL Injection Vulnerability

Exploit for php platform in category web applications Date: 2011-06-23 Author: Brendan Coles email protected Software: iSupport Version: = 1.8 Homepage: http://www.idevspot.com/iSupport.php Google Dork: "Powered by iSupport 1.8 " Vendor: idevSpot Homepage: http://www.idevspot.com/ Notified:...

iSupport 1.8 - SQL Injection

iSupport 1.8 - SQL Injection iSupport 1.8 SQL Injection Vulnerability Date: 2011-06-23 Author: Brendan Coles Advisory: http://itsecuritysolutions.org/2011-06-23-iSupport-1.8-SQL-Injection-Vulnerability/ Software: iSupport Version: = 1.8 Homepage: http://www.idevspot.com/iSupport.php Google Dork:...

Directory traversal

Directory traversal vulnerability in index.php in IDevSpot iSupport 1.8 and earlier allows remote attackers to read arbitrary files via a .. dot dot in the includefile parameter...

iSupport 1.8 - Cross-Site Scripting Local File Inclusion

iSupport 1.8 - Cross-Site Scripting Local File Inclusion --------------------------------------------- ++ iSupport $ ////////////////////////////////////////////////////////////////////// + Vulnerability and Exploitation Dork : "Powered by iSupport 1.8 " --XSS--...

iSupport 1.8 XSS / Local File Inclusion

--------------------------------------------- ++ iSupport $ ////////////////////////////////////////////////////////////////////// + Vulnerability and Exploitation Dork : "Powered by iSupport 1.8 " --XSS--...

iSupport 1.8 - ticket_function.php Multiple Cross-Site Scripting Vulnerabilities

iSupport 1.8 - ticketfunction.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/37380/info iDevSpot iSupport is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input An attacker m...

iSupport 1.8 - Cross-Site Scripting / Local File Inclusion

--------------------------------------------- ++ iSupport $ ////////////////////////////////////////////////////////////////////// + Vulnerability and Exploitation Dork : "Powered by iSupport 1.8 " --XSS--...

iSupport <= 1.8 XSS/LFI Exploit

Exploit for unknown platform in category web applications =============================== iSupport $ ////////////////////////////////////////////////////////////////////// + Vulnerability and Exploitation Dork : "Powered by iSupport 1.8 " --XSS--...

CVE-2007-6539

The CVE-2007-6539 entry concerns a PHP local file inclusion in the IDevspot iSupport 1.8 product. The vulnerability arises from index.php’s include_file parameter, enabling remote attackers to include local files. Documented impact is partial confidentiality, integrity, and availability, with a C...

CVE-2006-4884

Multiple cross-site scripting XSS vulnerabilities in IDevSpot iSupport 1.8 allow remote attackers to inject arbitrary web script or HTML via 1 the suser parameter in support/rightbar.php, 2 the ticketid parameter in support/opentickets.php, and 3 the conspagetitle parameter in index.php. NOTE: th...

CVE-2006-4884

CVE-2006-4884 concerns multiple XSS vulnerabilities in IDevSpot iSupport 1.8. The issue enables remote attackers to inject arbitrary web script or HTML via (1) the suser parameter in support/rightbar.php, (2) the ticket_id parameter in support/open_tickets.php, and (3) the cons_page_title paramet...