19 matches found
EUVD-2010-5277
Malware in sbrugna...
CVE-2010-5319
Multiple cross-site request forgery CSRF vulnerabilities in Kandidat CMS 1.4.2 allow remote attackers to hijack the authentication of administrators for requests that 1 modify settings via a validate action to admin/settings.php, 2 modify pages via the what parameter to admin/edit.php, or 3 modif...
Multiple Cross-Site Request Forgery Vulnerabilities in Kandidat CMS
Multiple cross-site request forgery vulnerabilities exist in Kandidat CMS version 1.4.2, which allows remote attackers to exploit the vulnerabilities to hijack administrator request authentication...
CVE-2010-5319
Multiple cross-site request forgery CSRF vulnerabilities in Kandidat CMS 1.4.2 allow remote attackers to hijack the authentication of administrators for requests that 1 modify settings via a validate action to admin/settings.php, 2 modify pages via the what parameter to admin/edit.php, or 3 modif...
Cross site request forgery (csrf)
Multiple cross-site request forgery CSRF vulnerabilities in Kandidat CMS 1.4.2 allow remote attackers to hijack the authentication of administrators for requests that 1 modify settings via a validate action to admin/settings.php, 2 modify pages via the what parameter to admin/edit.php, or 3 modif...
CVE-2010-5319
The CVE-2010-5319 entry describes three CSRF flaws in Kandidat CMS 1.4.2 that allow an attacker to hijack administrator authentication to perform actions: (1) change settings via a validate action to admin/settings.php, (2) modify pages via the what parameter to admin/edit.php, and (3) modify art...
CVE-2010-5319
Multiple cross-site request forgery CSRF vulnerabilities in Kandidat CMS 1.4.2 allow remote attackers to hijack the authentication of administrators for requests that 1 modify settings via a validate action to admin/settings.php, 2 modify pages via the what parameter to admin/edit.php, or 3 modif...
Kandidat CMS 1.4.2 Stored Cross Site Scripting Vulnerability
No description provided by source. Vulnerability ID: HTB22648 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinkandidatcms.html Product: Kandidat CMS Vendor: Kan-Studio http://www.kan-studio.ru/ Vulnerable Version: 1.4.2 and probably prior versions Vendor Notification: 19 October 2010...
Kandidat CMS 1.4.2 Stored Cross Site Scripting Vulnerability
Exploit for php platform in category web applications ============================================================ Kandidat CMS 1.4.2 Stored Cross Site Scripting Vulnerability ============================================================ Product: Kandidat CMS Vendor: Kan-Studio...
Kandidat CMS 1.4.2 Cross Site Scripting
================================ Vulnerability ID: HTB22650 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinkandidatcms2.html Product: Kandidat CMS Vendor: Kan-Studio http://www.kan-studio.ru/ Vulnerable Version: 1.4.2 and probably prior versions Vendor Notification: 19 October 2010...
XSS vulnerability in Kandidat CMS
Vulnerability ID: HTB22650 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinkandidatcms2.html Product: Kandidat CMS Vendor: Kan-Studio http://www.kan-studio.ru/ Vulnerable Version: 1.4.2 and probably prior versions Vendor Notification: 19 October 2010 Vulnerability Type: Stored XSS...
Kandidat CMS 1.4.2 - Persistent Cross-Site Scripting
Vulnerability ID: HTB22648 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinkandidatcms.html Product: Kandidat CMS Vendor: Kan-Studio http://www.kan-studio.ru/ Vulnerable Version: 1.4.2 and probably prior versions Vendor Notification: 19 October 2010 Vulnerability Type: Stored XSS Cro...
XSS vulnerability in Kandidat CMS
Vulnerability ID: HTB22648 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinkandidatcms.html Product: Kandidat CMS Vendor: Kan-Studio http://www.kan-studio.ru/ Vulnerable Version: 1.4.2 and probably prior versions Vendor Notification: 19 October 2010 Vulnerability Type: Stored XSS Cro...
Kandidat CMS 1.4.2 - Persistent Cross-Site Scripting
Kandidat CMS 1.4.2 - Persistent Cross-Site Scripting Vulnerability ID: HTB22648 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinkandidatcms.html Product: Kandidat CMS Vendor: Kan-Studio http://www.kan-studio.ru/ Vulnerable Version: 1.4.2 and probably prior versions Vendor Notificatio...
XSS vulnerability in Kandidat CMS
Vulnerability ID: HTB22649 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinkandidatcms1.html Product: Kandidat CMS Vendor: Kan-Studio http://www.kan-studio.ru/ Vulnerable Version: 1.4.2 and probably prior versions Vendor Notification: 19 October 2010 Vulnerability Type: XSS Cross Sit...
Cross-site Request Forgery (CSRF) Vulnerabilities in Kandidat CMS
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in Kandidat CMS which could be exploited to perform cross-site request forgery attacks. 1 Cross-site request forgery CSRF in Kandidat CMS 1.1 The vulnerability exists due to insufficient validation of the request...
Kandidat CMS versions 1.3.1 Cross Site Scripting Vulnerability
============================================================== Kandidat CMS versions 1.3.1 Cross Site Scripting Vulnerability ============================================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' /' / /' 0 0 /, // ,/ / 1 1...
Kandidat CMS versions 1.3.1 Cross Site Scripting Vulnerability
Exploit for unknown platform in category web applications ============================================================== Kandidat CMS versions 1.3.1 Cross Site Scripting Vulnerability ==============================================================...
Kandidat CMS 1.3.1 Cross Site Scripting
========================================= Kandidat CMS Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 0 -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-1 + Discovered By : Inj3ct0r + Site : Inj3ct0r.com + support e-mail : submitatinj3ct0r.com...