Lucene search
K

254 matches found

Prion
Prion
added 2017/07/26 8:29 a.m.19 views

Design/Logic Flaw

NexusPHP V1.5 has XSS via a javascript: or data: URL in a UBBCode url tag...

4.3CVSS5.9AI score0.00671EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2017/07/26 8:29 a.m.8 views

CVE-2017-11651

NexusPHP V1.5 has XSS via a javascript: or data: URL in a UBBCode url tag...

6.1CVSS5.8AI score
Exploits0References1
CVE
CVE
added 2017/07/26 8:0 a.m.50 views

CVE-2017-11651

CVE-2017-11651 affects NexusPHP V1.5 with a cross-site scripting (XSS) flaw. The issue arises from a vulnerability in the UBBCode url tag that accepts javascript: or data: URLs, allowing injection of arbitrary web script or HTML. Public references include CNVD-2017-26595 and NVD/NIST records. Exp...

6.1CVSS5.9AI score0.00671EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2017/07/26 8:0 a.m.26 views

CVE-2017-11651

NexusPHP V1.5 has XSS via a javascript: or data: URL in a UBBCode url tag...

6AI score0.00671EPSS
Exploits1References1
CNVD
CNVD
added 2017/07/02 12:0 a.m.1 views

CSRF Vulnerability in NexusPHPV1.5 (Current Version)

NexusPHPV1.5 is a system for domestic pt stations. NexusPHPV1.5 the current version has a cross-site request forgery vulnerability, the vulnerability is due to cookie design flaws and failure to effectively limit the parameters submitted by the post. The vulnerability is caused by a cookie design...

6.9AI score
Exploits0
CNVD
CNVD
added 2017/05/31 12:0 a.m.2 views

Cross-Site Scripting Vulnerability in NexusPHPV1.5 (Current Version)

NexusPHPV1.5 is a system that is used by pt stations in China. NexusPHPV1.5 current version has a cross-site scripting vulnerability. Attackers can use this vulnerability to insert special cross-site code in the message, comment, private message and other pages, the user clicks on the cross-site...

6.4AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.49 views

NexusPHP 1.5 - SQL Injection

No description provided by source. Exploit Title: Nexusphp.v1.5 SQL injection Vulnerability Google Dork: intitle:nexusphp Date: 2011-10-08 Author: flyh4t Software Link: http://sourceforge.net/projects/nexusphp/ Version: nexusphp.v1.5 Tested on: linux+apache CVE : CVE-2011-4026 Nexusphp is...

7.5CVSS6.6AI score0.02077EPSS
Exploits6
NVD
NVD
added 2011/10/21 6:55 p.m.19 views

CVE-2011-4026

SQL injection vulnerability in thanks.php in NexusPHP 1.5 allows remote attackers to execute arbitrary SQL commands via the id parameter...

7.5CVSS8.3AI score0.02077EPSS
Exploits6References3
Prion
Prion
added 2011/10/21 6:55 p.m.13 views

Sql injection

SQL injection vulnerability in thanks.php in NexusPHP 1.5 allows remote attackers to execute arbitrary SQL commands via the id parameter...

7.5CVSS9AI score0.02077EPSS
Exploits6References3Affected Software1
CVE
CVE
added 2011/10/21 6:0 p.m.46 views

CVE-2011-4026

The provided connected sources confirm CVE-2011-4026 affects NexusPHP 1.5. The vulnerability is a SQL injection in thanks.php where user-supplied input is taken from the id parameter (GET) and used in a SQL query without proper validation, e.g. building a query like SELECT owner FROM torrents whe...

7.5CVSS8.6AI score0.02077EPSS
Exploits6References3Affected Software1
Packet Storm
Packet Storm
added 2011/10/09 12:0 a.m.42 views

NexusPHP 1.5 SQL Injection

Exploit Title: Nexusphp.v1.5 SQL injection Vulnerability Google Dork: intitle:nexusphp Date: 2011-10-08 Author: flyh4t Software Link: http://sourceforge.net/projects/nexusphp/ Version: nexusphp.v1.5 Tested on: linux+apache CVE : CVE-2011-4026 Nexusphp is BitTorrent private tracker scripts written...

7.5CVSS0.3AI score0.02077EPSS
Exploits6
exploitpack
exploitpack
added 2011/10/08 12:0 a.m.25 views

NexusPHP 1.5 - SQL Injection

NexusPHP 1.5 - SQL Injection Exploit Title: Nexusphp.v1.5 SQL injection Vulnerability Google Dork: intitle:nexusphp Date: 2011-10-08 Author: flyh4t Software Link: http://sourceforge.net/projects/nexusphp/ Version: nexusphp.v1.5 Tested on: linux+apache CVE : CVE-2011-4026 Nexusphp is BitTorrent...

7.5CVSS0.3AI score0.02077EPSS
Exploits6
Exploit DB
Exploit DB
added 2011/10/08 12:0 a.m.36 views

NexusPHP 1.5 - SQL Injection

Exploit Title: Nexusphp.v1.5 SQL injection Vulnerability Google Dork: intitle:nexusphp Date: 2011-10-08 Author: flyh4t Software Link: http://sourceforge.net/projects/nexusphp/ Version: nexusphp.v1.5 Tested on: linux+apache CVE : CVE-2011-4026 Nexusphp is BitTorrent private tracker scripts written...

7.5CVSS6.6AI score0.02077EPSS
Exploits6
0day.today
0day.today
added 2011/10/07 12:0 a.m.45 views

NexusPHP v1.5 SQL Injection

Exploit for php platform in category web applications Exploit Title: Nexusphp.v1.5 SQL injection Vulnerability Google Dork: intitle:nexusphp Date: 2011-10-08 Author: flyh4t Software Link: http://sourceforge.net/projects/nexusphp/ Version: nexusphp.v1.5 Tested on: linux+apache CVE : CVE-2011-4026...

7.1AI score0.02077EPSS
Exploits6
Rows per page
Query Builder