27 matches found
TestLink 1.9.19 - Persistent Cross-Site Scripting
TestLink 1.9.19 - Persistent Cross-Site Scripting Exploit Title: TestLink 1.9.19 - Persistent Cross-Site Scripting Date: 2019-11-20 Exploit Author: Milad Khoshdel Software Link: http://testlink.org/ Version: TestLink 1.9.19 Tested on: Linux Apache/2 PHP/7.3.11 ========= Vulnerable Pages: ========...
TestLink 1.9.19 - Persistent Cross-Site Scripting
Exploit Title: TestLink 1.9.19 - Persistent Cross-Site Scripting Date: 2019-11-20 Exploit Author: Milad Khoshdel Software Link: http://testlink.org/ Version: TestLink 1.9.19 Tested on: Linux Apache/2 PHP/7.3.11 ========= Vulnerable Pages: ========= Persistent --...
DALIM SOFTWARE ES Core 5.0 Build 7184.1 XSS / CSRF
!-- DALIM SOFTWARE ES Core 5.0 build 7184.1 Multiple Stored XSS And CSRF Vulnerabilities Vendor: Dalim Software GmbH Product web page: https://www.dalim.com Affected version: ES/ESPRiT 5.0 build 7184.1 build 7163.2 build 7163.0 build 7135.0 build 7114.1 build 7114.0 build 7093.1 build 7093.0 buil...
ESPCMS suffers from CSRF vulnerability
ESPCMS is an enterprise website management system built on LAMP development. ESPCMS suffers from a CSRF vulnerability. An attacker can exploit this vulnerability to forge administrator requests and perform unauthorized operations...
MyBB 1.8.x - Multiple Vulnerabilities
MyBB 1.8.x - Multiple Vulnerabilities Title: MyBB 1.8.X - Multiple Vulnerabilities Date: 13.11.2014 Tested on: Linux / Apache 2.2 / PHP 5 localhost Vendor: mybb.com Version: = 1.8.1 - Latest ATM Contact: [email protected] Author: Smash Latest MyBB forum software suffers on multiple...
WHMCompleteSolution (cart.php) 3.x.x - 4.0.x Local File Disclosure
No description provided by source. Title : WHMCompleteSolution cart.php Local File Disclosure Author : Lagripe-Dz Product : WHMCS WHMCompleteSolution Vendor : http://whmcs.com/ Date : 10/01/2011 Version : 3.x.x , 4.0.x Tested on : linux+apache...
Gnuboard <= 4.33.02 tp.php PATH_INFO SQL Injection
No description provided by source. Exploit Title: Gnuboard = 4.33.02 PATHINFO SQL INJECTION Vulnerability Google Dork: inurl:gnuboard4/bbs/board.php Date: 2011-2-14 Author: flyh4t Software Link: http://sir.co.kr/main/gnuboard4/ Version: Gnuboard = 4.33.02 Tested on: linux+apache CVE : CVE-2011-40...
WHMCS 3.x.x (clientarea.php) Local File Disclosure
No description provided by source. Title : WHMCS clientarea.php Local File Disclosure Author : Red Virus [email protected] Product : WHMCS WHMCompleteSolution Vendor : http://whmcs.com/ Date : 11/04/2011 Version : 3.X.x Tested on : linux+apache Homepage : www.alm3refh.com...
Debian Security Advisory DSA 2725-1 (tomcat6 - several vulnerabilities)
Two security issues have been found in the Tomcat servlet and JSP engine: CVE-2012-3544 The input filter for chunked transfer encodings could trigger high resource consumption through malformed CRLF sequences, resulting in denial of service. CVE-2013-2067 The FormAuthenticator module was vulnerab...
Poweradmin Cross Site Scripting
poweradmin Cross Site Scripting Exploit Title :poweradmin Cross Site Scripting Google Dork: "a completer poweradmin - credits" 0r "poweradmin - credits" Author: BHG Security Center Home: http://cc.black-hg.org - http://greyh4t.com/cc/ Tested on: linux+apache Finders:Siavash [email protected]...
Mambo / Joomla FCKEditor Local File Inclusion
mambo /joomla fckeditor lfi Vulnerability Exploit Title :mambo /joomla fckeditor lfi Vulnerability Google Dork: /mambots/editors/fckeditor/editor/filemanager/browser/default Author: BHG Security Center Home: http://cc.black-hg.org - http://greyh4t.com/cc/ Tested on: linux+apache Finders:Siavash...
Winprohost SQL Injection
winprohost Sql Injection Vulnerability Exploit Title : winprohost Sql Injection Vulnerability Google Dork: Design & Host by winprohost.com Author: BHG Security Center Home: http://cc.black-hg.org - http://greyh4t.com/cc/ Tested on: linux+apache Finders:Siavash [email protected]...
Wordocs Israel FCKeditor Shell Upload
---------------------------------------------------------------- Wordocs Israel FCKeditor Shell Upload Disclosure Vulnerabilities ---------------------------------------------------------------- Exploit Title: Wordocs Israel FCKeditor Shell Upload Disclosure Vulnerabilities Google Dork:...
Grebweb CMS Cross Site Scripting / SQL Injection
. \ \ | | | / | \ | | / | \ \ / | |/ / / / \ | | \ |/ \ | | / /\ | \ | /\ / / / / / /// .ORG ---------------------------------------------------------------- Grebweb Cms alert0 PoC 2 Enter In Search Box XSS Code PoC : http://localhost/index.php Demo : http://www.yagyashree.com/index.php...
LibLime Koha 4.2 - Local File Inclusion
Exploit Title: Koha Opac Local File Inclusion Google Dork: inurl:koha/opac-main.pl Date: 17.11.2011 Author: Akin TosunlarVigasis Labs Software Link: www.koha.org Version: 4.2 Tested on: LinuxApache 2.2.14 CVE : Vigasis Pentest Team www.vigasis.com 0-Day Exploit Akin Tosunlar Special Thanks to Ozg...
WHMCompleteSolution (WHMCS) 3.x - 'clientarea.php' Local File Disclosure
Title : WHMCS clientarea.php Local File Disclosure Author : Red Virus [email protected] Product : WHMCS WHMCompleteSolution Vendor : http://whmcs.com/ Date : 11/04/2011 Version : 3.X.x Tested on : linux+apache Homepage : www.alm3refh.com ================================================================...
WHMCS 3.x.x (clientarea.php) Local File Disclosure
Exploit for php platform in category web applications Title : WHMCS clientarea.php Local File Disclosure Author : Red Virus email protected Product : WHMCS WHMCompleteSolution Vendor : http://whmcs.com/ Date : 11/04/2011 Version : 3.X.x Tested on : linux+apache Homepage : www.alm3refh.com...
PHP Photo Album 0.4.1.16 - Multiple Disclosure Vulnerabilities
---------------------------------------------------------------- PHP Photo Album = 0.4.1.16 Multiple Disclosure Vulnerabilities ---------------------------------------------------------------- Exploit Title: PHP Photo Album = 0.4.1.16 Multiple Disclosure Vulnerabilities Google Dork:...
PHP Photo Album 0.4.1.16 Cross Site Scripting / Disclosure
---------------------------------------------------------------- PHP Photo Album Poc 2 http://localhost/phpAlbum/main.php?cmd=albumnew&keyword=XSS Demo :http://www.iloveazucar.com/phpAlbum/main.php?cmd=albumnew&keyword="onmouseover%3dprompt975554 bad%3d" Demo :http://www.dolfpretorius.com/main.ph...
WHMCompleteSolution (cart.php)local file disclosure flaws and fixes-vulnerability warning-the black bar safety net
Title: WHMCompleteSolution cart.php Local File Disclosure Author: Lagripe-Dz www.badguest.cn Developer: WHMCS WHMCompleteSolution http://whmcs.com/ Affected version: 3. x. x , 4.0. x Test platform: linux+apache Defect file: cart.php --------- Code analysis: --------- if $a == "add" $templatefile...