6 matches found
CVE-2017-17636
MLM Forced Matrix 2.0.9 has SQL Injection via the news-detail.php newid parameter...
Sql injection
MLM Forced Matrix 2.0.9 has SQL Injection via the news-detail.php newid parameter...
CVE-2017-17636
The CVE-2017-17636 entry concerns MLM Forced Matrix 2.0.9 with a SQL injection in news-detail.php using the newid parameter. The vulnerability is described as exploitable remotely without authentication, with impact on confidentiality, integrity, and availability (per CVSS metrics: CVSSv2 base 7....
cniipdtice.dz XSS vulnerability
Open Bug Bounty ID: OBB-71523 Description| Value ---|--- Affected Website:| cniipdtice.dz Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat Shee...
1001000.co.th XSS vulnerability
Vulnerable URL: http://www.1001000.co.th/news-detail.php?id='"/alert/XSSPOSED/...
Website Created By Triad SQL Injection
| | | | '| | | | ' \ / \ ' \ | | | ' | | | \ / / | | | || | | | / | | | | | | | | | || | = 5.0 AND error-based - WHERE or HAVING clause Payload: id=5' AND SELECT 8596 FROMSELECT COUNT,CONCAT0x3a6974713a,SELECT CASE WHEN 8596=8596 THEN 1 ELSE 0 END,0x3a6a6c763a,FLOORRAND02x FROM...