254 matches found
Design/Logic Flaw
NexusPHP V1.5 has XSS via a javascript: or data: URL in a UBBCode url tag...
CVE-2017-11651
NexusPHP V1.5 has XSS via a javascript: or data: URL in a UBBCode url tag...
CVE-2017-11651
CVE-2017-11651 affects NexusPHP V1.5 with a cross-site scripting (XSS) flaw. The issue arises from a vulnerability in the UBBCode url tag that accepts javascript: or data: URLs, allowing injection of arbitrary web script or HTML. Public references include CNVD-2017-26595 and NVD/NIST records. Exp...
CVE-2017-11651
NexusPHP V1.5 has XSS via a javascript: or data: URL in a UBBCode url tag...
CSRF Vulnerability in NexusPHPV1.5 (Current Version)
NexusPHPV1.5 is a system for domestic pt stations. NexusPHPV1.5 the current version has a cross-site request forgery vulnerability, the vulnerability is due to cookie design flaws and failure to effectively limit the parameters submitted by the post. The vulnerability is caused by a cookie design...
Cross-Site Scripting Vulnerability in NexusPHPV1.5 (Current Version)
NexusPHPV1.5 is a system that is used by pt stations in China. NexusPHPV1.5 current version has a cross-site scripting vulnerability. Attackers can use this vulnerability to insert special cross-site code in the message, comment, private message and other pages, the user clicks on the cross-site...
NexusPHP 1.5 - SQL Injection
No description provided by source. Exploit Title: Nexusphp.v1.5 SQL injection Vulnerability Google Dork: intitle:nexusphp Date: 2011-10-08 Author: flyh4t Software Link: http://sourceforge.net/projects/nexusphp/ Version: nexusphp.v1.5 Tested on: linux+apache CVE : CVE-2011-4026 Nexusphp is...
CVE-2011-4026
SQL injection vulnerability in thanks.php in NexusPHP 1.5 allows remote attackers to execute arbitrary SQL commands via the id parameter...
Sql injection
SQL injection vulnerability in thanks.php in NexusPHP 1.5 allows remote attackers to execute arbitrary SQL commands via the id parameter...
CVE-2011-4026
The provided connected sources confirm CVE-2011-4026 affects NexusPHP 1.5. The vulnerability is a SQL injection in thanks.php where user-supplied input is taken from the id parameter (GET) and used in a SQL query without proper validation, e.g. building a query like SELECT owner FROM torrents whe...
NexusPHP 1.5 SQL Injection
Exploit Title: Nexusphp.v1.5 SQL injection Vulnerability Google Dork: intitle:nexusphp Date: 2011-10-08 Author: flyh4t Software Link: http://sourceforge.net/projects/nexusphp/ Version: nexusphp.v1.5 Tested on: linux+apache CVE : CVE-2011-4026 Nexusphp is BitTorrent private tracker scripts written...
NexusPHP 1.5 - SQL Injection
NexusPHP 1.5 - SQL Injection Exploit Title: Nexusphp.v1.5 SQL injection Vulnerability Google Dork: intitle:nexusphp Date: 2011-10-08 Author: flyh4t Software Link: http://sourceforge.net/projects/nexusphp/ Version: nexusphp.v1.5 Tested on: linux+apache CVE : CVE-2011-4026 Nexusphp is BitTorrent...
NexusPHP 1.5 - SQL Injection
Exploit Title: Nexusphp.v1.5 SQL injection Vulnerability Google Dork: intitle:nexusphp Date: 2011-10-08 Author: flyh4t Software Link: http://sourceforge.net/projects/nexusphp/ Version: nexusphp.v1.5 Tested on: linux+apache CVE : CVE-2011-4026 Nexusphp is BitTorrent private tracker scripts written...
NexusPHP v1.5 SQL Injection
Exploit for php platform in category web applications Exploit Title: Nexusphp.v1.5 SQL injection Vulnerability Google Dork: intitle:nexusphp Date: 2011-10-08 Author: flyh4t Software Link: http://sourceforge.net/projects/nexusphp/ Version: nexusphp.v1.5 Tested on: linux+apache CVE : CVE-2011-4026...