19 matches found
EUVD-2014-4637
Malware in sbrugna...
CVE-2014-4718
Multiple cross-site request forgery CSRF vulnerabilities in Lunar CMS before 3.3-3 allow remote attackers to hijack the authentication of administrators for requests that 1 add Super users via a request to admin/usercreate.php or conduct cross-site scripting XSS attacks via the 2 email or 3 subje...
Lunar CMS 3.3 File Upload
File upload vulnerability in Lunar CMS Vulnerability Type: File Upload For the exploit source code contact DSquare Security sales team...
CVE-2014-4718
Multiple cross-site request forgery CSRF vulnerabilities in Lunar CMS before 3.3-3 allow remote attackers to hijack the authentication of administrators for requests that 1 add Super users via a request to admin/usercreate.php or conduct cross-site scripting XSS attacks via the 2 email or 3 subje...
Cross site request forgery (csrf)
Multiple cross-site request forgery CSRF vulnerabilities in Lunar CMS before 3.3-3 allow remote attackers to hijack the authentication of administrators for requests that 1 add Super users via a request to admin/usercreate.php or conduct cross-site scripting XSS attacks via the 2 email or 3 subje...
CVE-2014-4718
Multiple cross-site request forgery CSRF vulnerabilities in Lunar CMS before 3.3-3 allow remote attackers to hijack the authentication of administrators for requests that 1 add Super users via a request to admin/usercreate.php or conduct cross-site scripting XSS attacks via the 2 email or 3 subje...
CVE-2014-4718
CVE-2014-4718 concerns Lunar CMS, affected before version 3.3-3. The issue combines CSRF and stored XSS: remote attackers can hijack administrator sessions via forged requests to admin/user_create.php (add Super users) and craft input in the contact_form.ext.php parameters (email/subject) to admi...
Lunar CMS 3.3 - CSRF And Stored XSS Vulnerability
No description provided by source. ?!-- Lunar CMS 3.3 CSRF And Stored XSS Vulnerability Vendor: Lunar CMS Product web page: http://www.lunarcms.com Affected version: 3.3 Summary: Lunar CMS is a freely distributable open sourcecontent management system written for use on servers running the ever s...
Lunar CMS 3.3 Unauthenticated Remote Command Execution Exploit
No description provided by source. ?!/usr/bin/env python Lunar CMS 3.3 Unauthenticated Remote Command Execution Exploit Vendor: Lunar CMS Product web page: http://www.lunarcms.com Affected version: 3.3 Summary: Lunar CMS is a freely distributable open source content management system written for...
Lunar CMS 3.3 Unauthenticated Remote Command Execution Exploit
Exploit for php platform in category web applications !/usr/bin/env python Lunar CMS 3.3 Unauthenticated Remote Command Execution Exploit Vendor: Lunar CMS Product web page: http://www.lunarcms.com Affected version: 3.3 Summary: Lunar CMS is a freely distributable open source content management...
Lunar CMS 3.3 - Remote Command Execution
Lunar CMS 3.3 - Remote Command Execution !/usr/bin/env python Lunar CMS 3.3 Unauthenticated Remote Command Execution Exploit Vendor: Lunar CMS Product web page: http://www.lunarcms.com Affected version: 3.3 Summary: Lunar CMS is a freely distributable open source content management system written...
Lunar CMS 3.3 - Remote Command Execution
!/usr/bin/env python Lunar CMS 3.3 Unauthenticated Remote Command Execution Exploit Vendor: Lunar CMS Product web page: http://www.lunarcms.com Affected version: 3.3 Summary: Lunar CMS is a freely distributable open source content management system written for use on servers running the ever so...
Lunar CMS 3.3 - CSRF And Stored XSS Vulnerability
Exploit for php platform in category web applications CSRF Add Admin =============== inpu...
Lunar CMS 3.3 Unauthenticated Remote Command Execution
!/usr/bin/env python Lunar CMS 3.3 Unauthenticated Remote Command Execution Exploit Vendor: Lunar CMS Product web page: http://www.lunarcms.com Affected version: 3.3 Summary: Lunar CMS is a freely distributable open source content management system written for use on servers running the ever so...
Lunar CMS 3.3 CSRF / Cross Site Scripting
CSRF Add Admin =============== input type="hidden" name="email" v...
Lunar CMS 3.3 Unauthenticated Remote Command Execution Exploit
Summary Lunar CMS is a freely distributable open source content management system written for use on servers running the ever so popular PHP5 & MySQL. Description Lunar CMS suffers from an unauthenticated arbitrary command execution vulnerability. The issue is caused due to the improper...
Lunar CMS 3.3 CSRF And Stored XSS Vulnerability
Summary Lunar CMS is a freely distributable open source content management system written for use on servers running the ever so popular PHP5 & MySQL. Description Lunar CMS suffers from a cross-site request forgery and a stored xss vulnerabilities. The application allows users to perform certain...
Lunar CMS 3.3 - Cross-Site Request Forgery Persistent Cross-Site Scripting
Lunar CMS 3.3 - Cross-Site Request Forgery Persistent Cross-Site Scripting CSRF Add Admin =============== input type="hidden" name="name" value="Hacker"...
Lunar CMS 3.3 - Cross-Site Request Forgery / Persistent Cross-Site Scripting
CSRF Add Admin =============== input type="hid...