MiniCMS 1.1 - Cross Site Scripting (XSS)

Exploit Title: MiniCMS 1.1 - Cross Site Scripting XSS Date: 2024-10-26 Exploit Author: CodeSecLab Vendor Homepage: https://github.com/bg5sbk/MiniCMS Software Link: https://github.com/bg5sbk/MiniCMS Version: 1.10 Tested on: Ubuntu Windows CVE : CVE-2018-1000638 PoC: GET...

urllib3: Request body not stripped after redirect from 303 status changes request method to GET

A flaw was found in urllib3, an HTTP client library for Python. urllib3 doesn't remove the HTTP request body when an HTTP redirect response using status 301, 302, or 303, after changing the method in a request from one that could accept a request body such as POST to GET, as is required by HTTP...

Tenda AX1803 Security Vulnerability

Tenda AX1803 is a dual-band Gigabit WIFI6 router from Tenda, China. A security vulnerability exists in Tenda AX1803 v1.0.0.1, which is caused by a buffer overflow vulnerability in the iptv.stb.port parameter of the getIptvInfo method...

XSSCon - Simple XSS Scanner Tool

Powerfull Simple XSS Scanner made with python 3.7 Installing Requirements: BeautifulSoup4 pip install bs4 requests pip install requests python 3.7 Commands: git clone https://github.com/menkrep1337/XSSCon cd XSSCon python3 xsscon.py --help Usage Basic usage: python3 xsscon.py -u...

BIGACE 2.4 - Multiple Remote File Inclusion Vulnerabilities

No description provided by source. / \ @ /|\ /|\ |-| / | \ /|/\ / | \ @ | |--------------------/--|-voV---|'/--Vov-|-----------------------|-| |-| '^ o o '^ | | | | \Y/' |-| |-| | | | | -=ShAd0w-CrEw=- |-| |-| | | | | |-| ||| | @ l /\ / \ /\ l |-| l / V \ \ V \ l @ l/ \I \ /'...

Etano 1.x <= Multiple Cross Site Scripting Vulnerabilities

OVERVIEW Etano 1.x versions are vulnerable to Cross Site Scripting. 2. BACKGROUND The community builder script we provide - Etano - was built entirely based on requests from customers of our previous dating package Dating Site Builder. Almost every feature ever requested was built into Etano to...

Tribiq CMS 5.0.12c - Cross-Site Scripting / Local File Inclusion

???????????????????????????????????????????????????????????????????????????????????? ?? C r a C k E r ?? ?? T H E C R A C K O F E T E R N A L M I G H T ?? ???????????????????????????????????????????????????????????????????????????????????? ????? From The Ashes and Dust Rises An Unimaginable...

txtSQL 2.2 Final (startup.php) Remote File Inclusion Vulnerability

Exploit for unknown platform in category web applications ================================================================== txtSQL 2.2 Final startup.php Remote File Inclusion Vulnerability ==================================================================...

phpBLASTER CMS 1.0 RC1 Multiple Local File Inclusion Vulnerabilities

No description provided by source. ┌┌───────────────────────────────────────────────────────────────────────────┐ ││ C r a C k E r ┌┘ ┌┘ T H E C R A C K O F E T E R N A L M I G H T ││ └───────────────────────────────────────────────────────────────────────────┘┘ ┌──── From The Ashes and Dust Rise...

cmsWorks 2.2 RC4 (mod_root) Remote File Inclusion Vulnerability

No description provided by source. ┌┌───────────────────────────────────────────────────────────────────────────┐ ││ C r a C k E r ┌┘ ┌┘ T H E C R A C K O F E T E R N A L M I G H T ││ └───────────────────────────────────────────────────────────────────────────┘┘ ┌──── From The Ashes and Dust Rise...

ODARS CMS 1.0.2 Remote File Inclusion Vulnerability

No description provided by source. ┌┌───────────────────────────────────────────────────────────────────────────┐ ││ C r a C k E r ┌┘ ┌┘ T H E C R A C K O F E T E R N A L M I G H T ││ └───────────────────────────────────────────────────────────────────────────┘┘ ┌──── From The Ashes and Dust Rise...

Hedgehog-CMS 1.21 (header.php) Local File Inclusion Vulnerability

Exploit for unknown platform in category web applications ================================================================= Hedgehog-CMS 1.21 header.php Local File Inclusion Vulnerability =================================================================...

BigACE 2.4 - Multiple Remote File Inclusions

BigACE 2.4 - Multiple Remote File Inclusions / \ @ /|\ /|\ |-| / | \ /|/\ / | \ @ | |--------------------/--|-voV---|'/--Vov-|-----------------------|-| |-| '^ o o '^ | | | | \Y/' |-| |-| | | | | -=ShAd0w-CrEw=- |-| |-| | | | | |-| ||| | @ l /\ / \ /\ l |-| l / V \ \ V \ l @ l/ \I \ /'...

BIGACE 2.4 Multiple Remote File Inclusion Vulnerabilities

Exploit for unknown platform in category web applications ========================================================= BIGACE 2.4 Multiple Remote File Inclusion Vulnerabilities ========================================================= / \ @ /|\ /|\ |-| / | \ /|/\ / | \ @ |...

bigace-rfi.txt

/ \ @ /|\ /|\ |-| / | \ /|/\ / | \ @ | |--------------------/--|-voV---|'/--Vov-|-----------------------|-| |-| '^ o o '^ | | | | \Y/' |-| |-| | | | | -=ShAd0w-CrEw=- |-| |-| | | | | |-| ||| | @ l /\ / \ /\ l |-| l / V \ \ V \ l @ l/ \I \ /' ---------------------------------------------- GrEeTs...

phpUserBase 1.3b (unverified.inc.php) Remote File Inclusion Vulnerability

No description provided by source. ┌┌───────────────────────────────────────────────────────────────────────────┐ ││ C r a C k E r ┌┘ ┌┘ T H E C R A C K O F E T E R N A L M I G H T ││ └───────────────────────────────────────────────────────────────────────────┘┘ ┌──── From The Ashes and Dust Rise...

tellmatic 1.0.7 Multiple Remote File Inclusion Vulnerabilities

No description provided by source. tellmatic 1.0.7 RFI --------------------- Author : ShAy6oOoN --------------------- Group : PitBull Crew --------------------- Script : tellmatic 1.0.7 --------------------- Download :...

meBiblio-rfi.txt

meBiblio 0.4.5 RFI --------------------- Author : ShAy6oOoN --------------------- Group : PitBull Crew --------------------- Script : meBiblio 0.4.5 --------------------- Download : http://downloads.sourceforge.net/mebiblio/meBiblio-0.4.5.tar.gz?modtime=1195237984&bigmirror=0 --------------------...

IAPR COMMENCE 1.3 - Multiple Remote File Inclusions

iaprcommence 1.3 RFI --------------------- Author : ShAy6oOoN --------------------- Group : PitBull Crew --------------------- Script : iaprcommence 1.3 --------------------- Download : http://downloads.sourceforge.net/iaprcommence/CommenceV13.zip?modtime=1195816743&bigmirror=0...

meBiblio 0.4.5 - 'action' Remote File Inclusion

meBiblio 0.4.5 RFI --------------------- Author : ShAy6oOoN --------------------- Group : PitBull Crew --------------------- Script : meBiblio 0.4.5 --------------------- Download : http://downloads.sourceforge.net/mebiblio/meBiblio-0.4.5.tar.gz?modtime=1195237984&bigmirror=0 --------------------...