71 matches found
SUSE CVE-2024-43365
Cacti is an open source performance and fault management framework. Theconsolenewsection parameter is not properly sanitized when saving external links in links.php . Morever, the said consolenewsection parameter is stored in the database and reflected back to user in index.php, finally leading t...
EUVD-2008-6236
Malware in sbrugna...
EUVD-2008-0818
Malware in sbrugna...
EUVD-2005-1806
Malware in sbrugna...
CVE-2024-43364
Cacti is an open source performance and fault management framework. The title parameter is not properly sanitized when saving external links in links.php . Morever, the said title parameter is stored in the database and reflected back to user in index.php, finally leading to stored XSS. Users wit...
CVE-2018-17254
The JCK Editor component 6.4.4 for Joomla! allows SQL Injection via the jtreelink/dialogs/links.php parent parameter...
CVE-2018-17254
The JCK Editor component 6.4.4 for Joomla! allows SQL Injection via the jtreelink/dialogs/links.php parent parameter...
katalog.bajery.pl XSS vulnerability
Vulnerable URL: https://katalog.bajery.pl/links.php?search=pas%22%27--!%3E%3Cscript%3EalertOPENBUGBOUNTY%3C/script%3E&szukaj.x;=0&szukaj.y;=0 Details: Description| Value ---|--- Patched:| No Latest check for patch:| 03.12.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Ale...
imagefap.com XSS vulnerability
Vulnerable URL: http://www.imagefap.com/links.php?bbcode=0=Deselect%20all=5812727=1'%22%26%25prompt/XSSPOSED/...
myPHPNuke 1.8.8 Links.php Cross Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/6892/info Reportedly, myPHPNuke 'links.php' does not adequately filter HTML code thus making it prone to cross-site scripting attacks. It is possible for a remote attacker to create a malicious link containing script code...
webSPELL <= 4.01.02 Multiple Remote SQL Injection Exploit
No description provided by source. !/usr/bin/perl use LWP::UserAgent; use Getopt::Long; if!$ARGV3 print \n \'/ ; print \n -.- ; print \n -------------------oOO------OOo--------------------; print \n | webSPELL = v4.01.02 Multiple Remote SQL Injection |; print \n | coded by DNX |; print \n...
Rianxosencabos CMS 0.9 - Remote Blind SQL Injection Vulnerability
No description provided by source. -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Rianxosencabos CMS 0.9 Remote Blind SQL Injection Vulnerability -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- / Script: Rianxosencabos / Version: 0.9 / File affected:...
Woltlab Burning Board <= 2.3.5 (links.php) SQL Injection Exploit
No description provided by source. !/usr/bin/perl use IO::Socket; print q Woltlab Burning Board 2.3.4 = links.php SQL Injection Exploit - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Exploit by | 666 SR-Crew Bug by | x82 Googledork | inurl:/wbb2/links.php?cat Usage | links.pl...
Sql injection
SQL injection vulnerability in links.php in MYRE Business Directory allows remote attackers to execute arbitrary SQL commands via the cat parameter...
CVE-2012-6588
The vulnerability CVE-2012-6588 affects the MYRE Business Directory product, specifically the links.php component. The issue is a SQL injection in the cat parameter, allowing remote attackers to execute arbitrary SQL commands. The available documents do not specify affected versions, build detail...
mlecms multi-language enterprise website management system v2. 3 newest vulnerabilities 0day-vulnerability warning-the black bar safety net
Vulnerability defects: the storage typexss 漏洞 文件 :links.php Loopholes in the application link at the website name and logo at the address, because the site name“webname”is post GET and didn't do the filter soxssappeared! Using description: xsshit the backend to get webshell Background get a shell...
BackLinkSpider 1.3.1774.0 SQL Injection / Cross Site Scripting
Exploit Title: BackLinkSpider - links.php - SQL & XSS Injection Vulnerability Date: 2010-05-27 Author: sniper ip Software Link: http://www.backlinkspider.com Version: v 1.3.1774.0 Tested on: CVE : if exists Exploit : SQL...
BackLinkSpider 1.3.1774 - cat_id SQL Injection
BackLinkSpider 1.3.1774 - catid SQL Injection source: https://www.securityfocus.com/bid/40398/info BackLinkSpider is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker ...
CityAdmin Blind SQL Injection
cityadmin links.php Blind Sql Injection Vulnerability ============================================================== .:. Author : AtT4CKxT3rR0r1ST [email protected] .:. Team : Sec Attack Team .:. Home : www.sec-attack.com/vb .:. Script : cityadmin .:. Download Script:...
cityadmin (links.php) Blind Sql Injection Vulnerability
Exploit for unknown platform in category web applications ======================================================= cityadmin links.php Blind Sql Injection Vulnerability ======================================================= .:. Script : cityadmin .:. Download Script:...