3996 matches found
Directory traversal
Directory traversal vulnerability in index.php in witshare 0.9 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the menu parameter...
WitShare 0.9 (index.php menu) Local File Inclusion Vulnerability
No description provided by source. """"""""""""""""""""""""""""""""""""""""""""""" """ :: :: ::::: :::: """ """ :: :: :: : :: """ """ :::: :: :: ::::: ::::: :::: """ """ :: :: ::: ::: :: :: :: :: :: """ """ :: :: :: : : :::::...
PT-2007-3268 · Dws Systems +2 · Sql-Ledger +2
Name of the Vulnerable Software and Affected Versions: LedgerSMB versions prior to 1.3.0 DWS Systems SQL-Ledger affected versions not specified Description: The issue allows remote attackers to access restricted functionality via direct requests, as access control lists are implemented by changin...
WitShare 0.9 (index.php menu) Local File Inclusion Vulnerability
Exploit for unknown platform in category web applications ================================================================ WitShare 0.9 index.php menu Local File Inclusion Vulnerability ================================================================ """"""""""""""""""""""""""""""""""""""""""""""...
AROUNDMe 0.7.7 Multiple Remote File Inclusion Vulnerabilities
No description provided by source. AROUNDMe 077 Found by kezzap66345 Script Download:http://download.savannah.gnu.org/releases/aroundme/aroundme077.tar.gz ERROR1: File:\components\core\inc\coreprofile.header.php includeonce$languagepathcore . 'inc/mecommon.inc.php'; rfi coded RFI1:...
Digital Eye CMS 0.1.1b (module.php) Remote File Inclusion Vulnerability
Exploit for unknown platform in category web applications ======================================================================= Digital Eye CMS 0.1.1b module.php Remote File Inclusion Vulnerability ======================================================================= Digital Eye Gallery 1.1...
Digital Eye CMS 0.1.1b - module.php Remote File Inclusion
Digital Eye CMS 0.1.1b - module.php Remote File Inclusion Digital Eye Gallery 1.1 Beta module.php menu Remote File Include Vulnerabilities script : http://mamboxchange.com/frs/download.php/7469/digitaleyecms.1.1BETA.tar.gz file : /module.php Found by & Contact : Cold z3ro , [email protected] ...
duyuru-sql.txt
Fıstıq Duyuru Scripti Remote Sql İnjection File : goster.asp Sql : -1%20union+all+select+0,kullaniciadi,sifre,3+from+admin Admin Name + Admin Pass Admin Menu: yoneticiii/default.asp Thanks : Ajann , Xoron , ApAci , ErNE , Uyuss , Eno7 , Thehacker , Enjexion .pl Exploit Code : !/usr/bin/perl Scrip...
Cross site scripting
Cross-site scripting XSS vulnerability in formulaire.php in Bernard JOLY BJ Webring allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter related to the add link menu...
CVE-2007-1328
Cross-site scripting XSS vulnerability in formulaire.php in Bernard JOLY BJ Webring allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter related to the add link menu...
CVE-2007-1328
Cross-site scripting XSS vulnerability in formulaire.php in Bernard JOLY BJ Webring allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter related to the add link menu...
CVE-2007-1328
The CVE-2007-1328 entry describes a cross-site scripting (XSS) vulnerability in formulaire.php of Bernard JOLY BJ Webring. Affects the add link menu functionality; an unspecified parameter allows remote attackers to inject arbitrary web script or HTML. The issue enables client-side script executi...
mycal-xss.txt
MyCalendar multiple XSS By : sn0oPy Risk : medium site : http://abledesign.com/programs/MyCalendar/ exploit : XSS on the search menu : http://www.target.ma/calendar/index.php?go=search XSS on the url : http://www.target.ma/calendar/index.php?go="alertdocument.cookie XSS on the username and passwo...
CVE-2007-1050
Multiple cross-site scripting XSS vulnerabilities in index.php in AbleDesign MyCalendar allow remote attackers to inject arbitrary web script or HTML via 1 the go parameter, 2 the keyword parameter in the search menu go=search, or 3 the username or 4 the password in a go=Login action...
CVE-2007-1050
Multiple cross-site scripting XSS vulnerabilities in index.php in AbleDesign MyCalendar allow remote attackers to inject arbitrary web script or HTML via 1 the go parameter, 2 the keyword parameter in the search menu go=search, or 3 the username or 4 the password in a go=Login action...
MDKA-2007:005 : nmap
The version of nmap shipped with Mandriva Linux 2007 was built against the system copies of the libpcap and libdnet libraries. However, nmap actually requires changes to be made to these libraries which have not yet been made to the upstream versions, and consequently should be compiled against i...
MDKA-2006:049 : desktop-common-data
There were some problems with the menu system in Mandriva Linux 2007. Some menu categories were not displayed or properly translated, and editing the menus with the GNOME menu editor alacarte was not working. This update fixes these problems. %NASLMINLEVEL 999999 @DEPRECATED@ This script has been...
CVE-2006-7023
Multiple cross-site scripting XSS vulnerabilities in fx-APP 0.0.8.1 allow remote attackers to inject arbitrary HTML or web script via 1 the search box, and the 2 url, 3 website, 4 comment, and 5 signature fields in the profile, and possibly 6 a menu item...
CVE-2006-7023
Multiple cross-site scripting XSS vulnerabilities in fx-APP 0.0.8.1 allow remote attackers to inject arbitrary HTML or web script via 1 the search box, and the 2 url, 3 website, 4 comment, and 5 signature fields in the profile, and possibly 6 a menu item...
CVE-2007-0331
Cross-site scripting XSS vulnerability in liens.php3 in liensdynamiques 2.1 allows remote attackers to inject arbitrary web script or HTML by using the ajouter=1 query string and the add menu...