Code injection

ManageIQ is an open-source management platform. In versions prior to jansa-4, kasparov-2, and lasker-1, there is a flaw in the MiqExpression module of ManageIQ where a low privilege user could enter a crafted Ruby string which would be evaluated. Successful exploitation will allow an attacker to...

CVE-2021-32756 Arbitrary eval through MiqExpression

ManageIQ is an open-source management platform. In versions prior to jansa-4, kasparov-2, and lasker-1, there is a flaw in the MiqExpression module of ManageIQ where a low privilege user could enter a crafted Ruby string which would be evaluated. Successful exploitation will allow an attacker to...

www1.kasparov.ru Cross Site Scripting vulnerability OBB-1466494

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

kasparov.ru XSS vulnerability

Vulnerable URL: http://www.kasparov.ru/index.php?id=%22%3E%3Csvg%20onload=alert%22OPENBUGBOUNTY%22%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 02.01.2018 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 17338 VIP website status:| Yes...

phpWebsite <= SQL Injection (friend.php) & (article.php)

+phpWebsite +DaBDouB-MoSiKaR Moroccan Security Team +creetz to: Moroccan security TeamDr.E-vil,Dr.Erase,H0550N,ToM-le-Magicianfrance , ameeregypt, Esp!onLeRaVaGe, CiM TeaM, xMs3D0,|ucifer,B6,al-houda membersnabil,sn!per,Kasparovand all hackers musilm morocco and www.lezr.com +special 10x to: safa...