118 matches found
portail-thizy-les-bourgs.com XSS vulnerability
Open Bug Bounty ID: OBB-185207 Description| Value ---|--- Affected Website:| portail-thizy-les-bourgs.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
les-arts-dans-lr.com XSS vulnerability
Vulnerable URL: http://www.les-arts-dans-lr.com/programmation.php?z=0'"=PO Details: Description| Value ---|--- Patched:| No Latest check for patch:| 27.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated VIP website status:| No Check...
Les 3 vallées - Customized SSL, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application Les 3 vallées published at the 'play' market has multiple vulnerabilities...
les-voiles-ombrage.ch XSS vulnerability
Open Bug Bounty ID: OBB-127724 Description| Value ---|--- Affected Website:| les-voiles-ombrage.ch Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention...
twirling-club-portes-les-valence.com XSS vulnerability
Vulnerable URL: http://www.twirling-club-portes-les-valence.com//search/site/?q= Details: Description| Value ---|--- Patched:| Yes, at 25.07.2017 Latest check for patch:| 25.07.2017 21:00 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated...
lesgitesdelapapeterie.com XSS vulnerability
Vulnerable URL: http://www.lesgitesdelapapeterie.com//search/site/?q= Details: Description| Value ---|--- Patched:| Yes, at 25.07.2017 Latest check for patch:| 25.07.2017 20:46 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 5601998 Google Pagerank| 0 VIP websit...
aide.lesechos.fr XSS vulnerability
Vulnerable URL: http://aide.lesechos.fr/faq/index/result/?keyword=%22--%3E%20%3C/script%3E%3Csvg/onload=%27;alert%28/XSSPOSED/%29;%27%3E Details: Description| Value ---|--- Patched:| Yes, at 25.07.2017 Latest check for patch:| 25.07.2017 18:21 GMT Vulnerability type:| XSS Vulnerability status:|...
pour-les-personnes-agees.gouv.fr XSS vulnerability
Open Bug Bounty ID: OBB-90814 Description| Value ---|--- Affected Website:| pour-les-personnes-agees.gouv.fr Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
Laurent Adda Les Commentaires 2.0 PHP Script fonctions.lib.php Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/9536/info It has been reported that Les Commentaires may be prone to a file include vulnerability in various modules, that may allow an attacker to include malicious external files containing arbitrary PHP code to be...
Laurent Adda Les Commentaires 2.0 PHP Script admin.php Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/9536/info It has been reported that Les Commentaires may be prone to a file include vulnerability in various modules, that may allow an attacker to include malicious external files containing arbitrary PHP code to be...
LES PACKS - ID SQL Injection
LES PACKS - ID SQL Injection source: https://www.securityfocus.com/bid/44457/info LES PACKS is prone to an SQL-injection vulnerability. An attacker can exploit this SQL-injection issue to carry out unauthorized actions on the underlying database, which may compromise the application and aid in...
LES PACKS - 'ID' SQL Injection
source: https://www.securityfocus.com/bid/44457/info LES PACKS is prone to an SQL-injection vulnerability. An attacker can exploit this SQL-injection issue to carry out unauthorized actions on the underlying database, which may compromise the application and aid in further attacks...
Unfixed XSS vulnerability at www.les-mathematiques.net
Security researcher warvector, has submitted on 19/08/2009 a cross-site-scripting XSS vulnerability affecting www.les-mathematiques.net, which at the time of submission ranked 264975 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 05/07/2010. I...
Unfixed XSS vulnerability at www.lespetitsruisseaux.com
Security researcher Mystick, has submitted on 17/07/2009 a cross-site-scripting XSS vulnerability affecting www.lespetitsruisseaux.com, which at the time of submission ranked 10621239 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 24/06/2010. ...
Unfixed XSS vulnerability at www.lespetitscadeauxenbois.com
Security researcher xerces, has submitted on 24/06/2008 a cross-site-scripting XSS vulnerability affecting www.lespetitscadeauxenbois.com, which at the time of submission ranked 18358320 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 07/07/200...
Authentication flaw
Les News 2.2 allows remote attackers to bypass authentication and gain administrative access via a direct request for adminews/indexfr.php3, and possibly the adminews index documents for other localizations...
CVE-2007-0806
Les News 2.2 contains an authentication bypass vulnerability (CVE-2007-0806) that lets remote attackers bypass login and potentially obtain administrative access by requesting adminews/index_fr.php3 directly (and possibly related localized index documents). The NVD entry cites an impact of partia...
CVE-2006-5678
CVE-2006-5678 describes a PHP remote file inclusion in common/visiteurs/include/library.inc.php used by J-Pierre DEZELUS Les Visiteurs 2.0.1 (and phpMyConferences 8.0.2). The vulnerability would allow arbitrary PHP code execution via a URL in the lvc_modules_dir parameter. NOTE: CVE states that t...
PT-2006-6385 · Phpmyconferences +1 · Phpmyconferences +1
Name of the Vulnerable Software and Affected Versions: J-Pierre DEZELUS Les Visiteurs version 2.0.1 phpMyConferences version 8.0.2 Description: The issue allows remote attackers to execute arbitrary PHP code via a URL in the lvc modules dir parameter in the common/visiteurs/include/library.inc.ph...
CVE-2006-5310
PHP remote file inclusion vulnerability in common/visiteurs/include/menus.inc.php in J-Pierre DEZELUS Les Visiteurs 2.0.1, as used in phpMyConferences phpMyConference 8.0.2 and possibly other products, allows remote attackers to execute arbitrary PHP code via a URL in the lvcincludedir parameter...