17 matches found
EUVD-2006-6630
Malware in sbrugna...
CVE-2023-47243
Cross-Site Request Forgery CSRF vulnerability in CodeMShop 코드엠샵 마이사이트 – MSHOP MY SITE.This issue affects 코드엠샵 마이사이트 – MSHOP MY SITE: from n/a through 1.1.6...
CVE-2023-29638
Cross Site Scripting XSS vulnerability in WinterChenS my-site before commit 3f0423da6d5200c7a46e200da145c1f54ee18548, allows attackers to inject arbitrary web script or HTML via editing blog articles...
monasca-agent (>=1.0.32 <=2.1.0), mysite-3 (=0.8.0) +2 more potentially affected by CVE-2019-12105 via supervisor (>=3.1.4 <=4.0.0)
supervisor PYPI version =3.1.4, =1.0.32, =0.6.0, =0.15.0 Source cves: CVE-2019-12105 Source advisory: OSV:PYSEC-2019-126...
OnePC mySite Management Software SQL Injection Vulnerability
No description provided by source. Exploit Title: OnePC mySite Management Software SQL Injection Vulnerability Date: 10.04.2010 Author: Valentin Category: webapps/0day Version: Tested on: CVE : Code : :: General information :: OnePC mySite Management Software SQL Injection Vulnerability :: by...
WordPress Theme Persuasion 2.x - Arbitrary File Download / File Deletion
Exploit Title: Persuasion Wordpress Theme - Arbitrary File Download and File Deletion Exploit Date: 19 December 2013 Exploit Author: Interference Security Vendor Homepage: http://mysitemyway.com/ Software Link: http://mysitemyway.com/theme/persuasion-wordpress-theme/ Version: Tested on 2.0 and 2....
Уязвимости в CMS MYsite
Здравствуйте 3APA3A! Сообщаю вам о найденных мною Cross-Site Scripting и Insufficeint Anti-automation уязвимостях в CMS MYsite это украинская коммерческая CMS. Full path disclosure WASC-13: http://site/portal/modules.php?name=Ads XSS WASC-08:...
MySITE - SQL Injection Cross-Site Scripting
MySITE - SQL Injection Cross-Site Scripting source: https://www.securityfocus.com/bid/43510/info MySITE is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting these vulnerabilities could allow an...
MySITE - SQL Injection / Cross-Site Scripting
source: https://www.securityfocus.com/bid/43510/info MySITE is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting these vulnerabilities could allow an attacker to steal cookie-based authenticati...
CMS Mysite Cross Site Scripting / SQL Injection
Hello Full-Disclosure! I want to warn you about Full path disclosure, Cross-Site Scripting and SQL Injection vulnerabilities in CMS MYsite. It's Ukrainian commercial CMS. Full path disclosure WASC-13: http://site/portal/modules.php?name=Ads XSS WASC-08:...
OnePC mySite Management Software SQL Injection
Exploit Title: OnePC mySite Management Software SQL Injection Vulnerability Date: 10.04.2010 Author: Valentin Category: webapps/0day Version: Tested on: CVE : Code : :: General information :: OnePC mySite Management Software SQL Injection Vulnerability :: by Valentin Hoebel :: [email protected]...
OnePC mySite Management Software - SQL Injection
OnePC mySite Management Software - SQL Injection Exploit Title: OnePC mySite Management Software SQL Injection Vulnerability Date: 10.04.2010 Author: Valentin Category: webapps/0day Version: Tested on: CVE : Code : :: General information :: OnePC mySite Management Software SQL Injection...
OnePC mySite Management Software SQL Injection Vulnerability
Exploit for php platform in category web applications ============================================================ OnePC mySite Management Software SQL Injection Vulnerability ============================================================ :: General information :: OnePC mySite Management Software S...
CVE-2006-6647
Cross-site scripting XSS vulnerability in the MySite 4.7.x before 4.7.x-3.3 and 5.x before 5.x-1.3 module for Drupal allows remote attackers to inject arbitrary web script or HTML via the Title field when editing a page. NOTE: some details were obtained from third party information...
CVE-2006-6647
Cross-site scripting XSS vulnerability in the MySite 4.7.x before 4.7.x-3.3 and 5.x before 5.x-1.3 module for Drupal allows remote attackers to inject arbitrary web script or HTML via the Title field when editing a page. NOTE: some details were obtained from third party information...
CVE-2006-6647
CVE-2006-6647 is a cross-site scripting (XSS) vulnerability affecting the Drupal MySite module. Affected versions are Drupal-based MySite 4.7.x before 4.7.x-3.3 and 5.x before 5.x-1.3. The vulnerability arises in the Title field when editing a page, allowing remote attackers to inject arbitrary w...
MySite - Cross site scripting
Data is not properly sanitised before being used in titles. This can be exploited to insert and execute arbitrary HTML and script code in a user's browser session in the context of an affected site. This may lead to administrator access if certain conditions are met. Learn more about cross site...