39 matches found
CVE-2026-35023
CVE-2026-35023 concerns Wimi Teamwork On-Premises versions prior to 8.2.0. The issue is an insecure direct object reference (IDOR) in the preview.php endpoint where the item_id parameter lacks proper authorization checks. Attackers can enumerate sequential item_id values to access and retrieve im...
EUVD-2013-6979
Malware in sbrugna...
EUVD-2008-3766
Malware in sbrugna...
EUVD-2008-0702
Malware in sbrugna...
EUVD-2008-4851
Malware in sbrugna...
EUVD-2006-2976
Malware in sbrugna...
CVE-2015-9461
The awesome-filterable-portfolio plugin before 1.9 for WordPress has afpgetnewportfolioitempage SQL injection via the itemid parameter...
Cross-Site Request Forgery (CSRF) in star7th/showdoc
✍️ Description With CSRF vulnerability Attacker able to delete any member to of any item if users visit attacker website. We can bypass the CSRF Protection if we put our payload on a iframe or a html file and send them to victim as after that the Origin header will be set to null and we can bypass...
Zomato: [www.zomato.com] SQLi - /php/██████████ - item_id
Thanks @gerbenjavado for helping us keep @zomato secure : Thanks to the entire @Zomato team for doing this challenge. Its a pleasure to be back in the bug bounty game after a while. Introduction So I managed to find SQLi on https://www.zomato.com/php/██████████ in the POST parameter itemid...
Joomla 3.4.3 version SQL injection vulnerability analysis-vulnerability warning-the black bar safety net
0x00 vulnerability analysis Vulnerability trigger code is located at:/administrator/components/comcontenthistory/models/history.php, the getListQueryfunction: ! 4cf1a8d2985c5601fbdeb7a9e4a09234077751bf Through the SQL and the error message, you can know that our injected payload is inserted into...
Ultimate Product Catalogue <= 3.1.2 - Unauthenticated SQL Injection
Unauthenticated SQL injection in ajax call when the plugin is counting the times a product is being seen by the web visitors. The vulnerable POST parameter is "ItemID". Vulnerable code: In file Functions/ProcessAjax.php line 67: ... $ItemID = $POST'ItemID'; $Item = $wpdb-getrow"SELECT ItemViews...
WordPress Plugin Ultimate Product Catalogue - SQL Injection (1)
Exploit Title: Unauthenticated SQLi in ItemID POST parameter on Ultimate Product Catalogue wordpress plugin Google Dork: inurl:"SingleProduct" intext:"Back to catalogue" intext:"Category", inurl:"/wp-content/plugins/ultimate-product-catalogue/product-sheets/" Date: 22/04/2015 Exploit Author: Feli...
Sql injection
SQL injection vulnerability in the sqlquery function in cart.php in C97net Cart Engine before 4.0 allows remote attackers to execute arbitrary SQL commands via the itemid variable, as demonstrated by the 1 itemid0 or 2 itemid parameter...
CVE-2014-8306
CVE-2014-8306 affects C97net Cart Engine prior to 4.0. The vulnerability is a SQL injection in the sql_query function of cart.php exploited through the item_id parameter (item_id[0] or item_id[]), enabling remote command execution. Public references describe the vulnerable input handling but do n...
Microsoft MSN HBE - TB Blind SQL Injection Vulnerability
Document Title: =============== Microsoft MSN HBE - TB Blind SQL Injection Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1183 Video: http://www.vulnerability-lab.com/getcontent.php?id=1282 Vulnerability Magazine:...
CVE-2011-5186
Cross-site scripting XSS vulnerability in jbshop.php in the jbShop plugin for e107 7 allows remote attackers to inject arbitrary web script or HTML via the itemid parameter...
Sql injection
Multiple SQL injection vulnerabilities in Ebay Clone 2009 allow remote attackers to execute arbitrary SQL commands via the 1 userid parameter to feedback.php; and the itemid parameter to 2 viewfullsize.php, 3 classifidead.php, and 4 crosspromoteitems.php...
CVE-2009-3712
Multiple SQL injection vulnerabilities in Ebay Clone 2009 allow remote attackers to execute arbitrary SQL commands via the 1 userid parameter to feedback.php; and the itemid parameter to 2 viewfullsize.php, 3 classifidead.php, and 4 crosspromoteitems.php...
Unfixed XSS vulnerability at www.bbq.com
Security researcher Xylitol, has submitted on 02/01/2009 a cross-site-scripting XSS vulnerability affecting www.bbq.com, which at the time of submission ranked 508422 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 03/01/2009. It is currently...
Sql injection
SQL injection vulnerability in classifidead.php in AJ Auction 6.2.1 and earlier allows remote attackers to execute arbitrary SQL commands via the itemid parameter...