newsdesk-feeds.moreover.com XSS vulnerability

Open Bug Bounty ID: OBB-621801 Description| Value ---|--- Affected Website:| newsdesk-feeds.moreover.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

CVE-2017-15907

CVE-2017-15907: SQL injection in phpCollab 2.5.1 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter to newsdesk/newsdesk.php. Affected: phpCollab (2.5.1 and earlier). Root cause: unsafely embedded user input in SQL query construction. Impact: potential data...

phpCollab SQL Injection Vulnerability

phpCollab is an open source Internet enablement system for projects that require collaboration over the Internet. A SQL injection vulnerability exists in phpCollab 2.5.1 and earlier versions. The vulnerability can be exploited by remote attackers to execute arbitrary SQL commands via the id...

Freeway 1.4.1.171 includes/modules/newsdesk/newsdesk_article_require.php language Parameter Traversal Local File Inclusion

No description provided by source. source: http://www.securityfocus.com/bid/30731/info Freeway is prone to multiple local file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these vulnerabilities using directory-traversal strings to view...