29 matches found
demo.mubashier.com XSS vulnerability
Open Bug Bounty ID: OBB-631902 Description| Value ---|--- Affected Website:| demo.mubashier.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
CVE-2018-11711
CVE-2018-11711 describes a remote bypass of System Manager Mode on Canon MF210/MF220 web interfaces. An unauthenticated attacker can access without a PIN by leveraging vectors involving /portal_top.html (and related /login.html) to obtain full device access. Exploitation is demonstrated in public...
CVE-2018-11711
A remote attacker can bypass the System Manager Mode on the Canon MF210 and MF220 web interface without knowing the PIN for /login.html via vectors involving /portaltop.html to get full access to the device. NOTE: the vendor reportedly responded that this issue occurs when a customer keeps the...
CVE-2015-9247
An issue was discovered in Skybox Platform before 7.5.401. Reflected cross-site scripting vulnerabilities exist in /skyboxview/webservice/services/VersionRepositoryWebService via a soapenv:Body element, or in the status parameter to login.html...
looki.com.hr XSS vulnerability
Vulnerable URL: http://www.looki.com.hr/login.html Details: Description| Value ---|--- Patched:| No Latest check for patch:| 31.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 3511556 VIP website status:| No Check looki.com.hr SSL connection:| Grade: B...
looki.com.tr XSS vulnerability
Vulnerable URL: http://www.looki.com.tr/login.html Details: Description| Value ---|--- Patched:| No Latest check for patch:| 31.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 781186 VIP website status:| No Check looki.com.tr SSL connection:| Grade: B...
CVE-2011-5220
Cross-site scripting XSS vulnerability in templates/default/Admin/Login.html in PHP-SCMS 1.6.8 and earlier allows remote attackers to inject arbitrary web script or HTML via the lang parameter to index.php...
Cross site scripting
Cross-site scripting XSS vulnerability in templates/default/Admin/Login.html in PHP-SCMS 1.6.8 and earlier allows remote attackers to inject arbitrary web script or HTML via the lang parameter to index.php...
JAWSControlPanel.phpSQL注入漏洞 Exploit
No description provided by source. Fernando Quintero ([email protected])提供了如下测试方法: 修改login.html文件中的JavaScript函数: script type="text/javascript" function cryptformform var newpassword = calcMD5form.password.value; form.cryptedpassword.value = "' or '2'='2"; form.password.value = ""; return true;...