26 matches found
EUVD-2015-1537
Malware in sbrugna...
CVE-2015-1400
SQL injection vulnerability in search.php in NPDS Revolution 13 allows remote attackers to execute arbitrary SQL commands via the query parameter...
Sql injection
SQL injection vulnerability in search.php in NPDS Revolution 13 allows remote attackers to execute arbitrary SQL commands via the query parameter...
CVE-2015-1400
NPDS Revolution 13 (NPDS CMS Revolution-13) contains a SQL injection vulnerability in search.php that can be exploited via the query parameter to execute arbitrary SQL commands. The issue is described across multiple sources as a remote SQL injection affecting NPDS Revolution 13, with the root ca...
CVE-2015-1400
SQL injection vulnerability in search.php in NPDS Revolution 13 allows remote attackers to execute arbitrary SQL commands via the query parameter...
REvolution <= 10.02 CSRF (Cross-Site Request Forgery)
No description provided by source. Vulnerability ID: HTB22367 Reference: http://www.htbridge.ch/advisory/xsrfcsrfinnpdsrevolution.html Product: NPDS REvolution Vendor: NPDS Vulnerable Version: REvolution 10.02 and Probably Prior Versions Vendor Notification: 06 May 2010 Vulnerability Type: CSRF...
REvolution 10.02 - Cross-Site Request Forgery
REvolution 10.02 - Cross-Site Request Forgery Vulnerability ID: HTB22367 Reference: http://www.htbridge.ch/advisory/xsrfcsrfinnpdsrevolution.html Product: NPDS REvolution Vendor: NPDS Vulnerable Version: REvolution 10.02 and Probably Prior Versions Vendor Notification: 06 May 2010 Vulnerability...
REvolution <= 10.02 CSRF (Cross-Site Request Forgery)
Exploit for php platform in category web applications ===================================================== REvolution &Xfiles=footerafter&confirm=1 " Solution: Upgrade to the most recent verison 0day.today 2018-01-02...
REvolution 10.02 - Cross-Site Request Forgery
Vulnerability ID: HTB22367 Reference: http://www.htbridge.ch/advisory/xsrfcsrfinnpdsrevolution.html Product: NPDS REvolution Vendor: NPDS Vulnerable Version: REvolution 10.02 and Probably Prior Versions Vendor Notification: 06 May 2010 Vulnerability Type: CSRF Cross-Site Request Forgery Status:...
NPDS REvolution 10.02 Cross Site Request Forgery
Vulnerability ID: HTB22367 Reference: http://www.htbridge.ch/advisory/xsrfcsrfinnpdsrevolution.html Product: NPDS REvolution Vendor: NPDS Vulnerable Version: REvolution 10.02 and Probably Prior Versions Vendor Notification: 06 May 2010 Vulnerability Type: CSRF Cross-Site Request Forgery Status:...
XSRF (CSRF) in NPDS REvolution
Vulnerability ID: HTB22367 Reference: http://www.htbridge.ch/advisory/xsrfcsrfinnpdsrevolution.html Product: NPDS REvolution Vendor: NPDS Vulnerable Version: REvolution 10.02 and Probably Prior Versions Vendor Notification: 06 May 2010 Vulnerability Type: CSRF Cross-Site Request Forgery Status:...
Stored XSS vulnerability in NPDS REvolution
Vulnerability ID: HTB22366 Reference: http://www.htbridge.ch/advisory/storedxssvulnerabilityinnpdsrevolution.html Product: NPDS REvolution Vendor: NPDS Vulnerable Version: REvolution 10.02 and Probably Prior Versions Vendor Notification: 04 May 2010 Vulnerability Type: Stored XSS Cross Site...
NPDS REvolution 10.02 - admin.php Cross-Site Request Forgery
NPDS REvolution 10.02 - admin.php Cross-Site Request Forgery source: https://www.securityfocus.com/bid/40331/info NPDS Revolution is prone to a cross-site request-forgery vulnerability. Attackers can exploit this issue to compromise the affected application, steal cookie-based authentication...
XSS vulnerability in NPDS REvolution
Vulnerability ID: HTB22365 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinnpdsrevolution.html Product: NPDS REvolution Vendor: NPDS Vulnerable Version: REvolution 10.02 and Probably Prior Versions Vendor Notification: 01 May 2010 Vulnerability Type: XSS Cross Site Scripting Status:...
NPDS REvolution 10.02 - 'admin.php' Cross-Site Request Forgery
source: https://www.securityfocus.com/bid/40331/info NPDS Revolution is prone to a cross-site request-forgery vulnerability. Attackers can exploit this issue to compromise the affected application, steal cookie-based authentication credentials, perform unauthorized actions, and disclose or modify...
NPDS REvolution 10.02 - download.php Cross-Site Scripting
NPDS REvolution 10.02 - download.php Cross-Site Scripting source: https://www.securityfocus.com/bid/40227/info NPDS Revolution is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary...
NPDS REvolution 10.02 - 'download.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/40227/info NPDS Revolution is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...
NPDS REvolution Blind SQL Injection
Vulnerability ID: HTB22364 Reference: http://www.htbridge.ch/advisory/blindsqlinjectionvulnerabilityinNPDSREvolution.html Product: NPDS REvolution Vendor: NPDS Vulnerable Version: REvolution 10.02 and Probably Prior Versions Vendor Notification: 29 April 2010 Vulnerability Type: Blind SQL Injecti...
NPDS REvolution Cross Site Scripting
Vulnerability ID: HTB22363 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinnpds.html Product: NPDS REvolution Vendor: NPDS Vulnerable Version: REvolution 10.02 and Probably Prior Versions Vendor Notification: 29 April 2010 Vulnerability Type: XSS Cross Site Scripting Status: Not Fixe...
Blind SQL injection vulnerability in NPDS REvolution
Vulnerability ID: HTB22364 Reference: http://www.htbridge.ch/advisory/blindsqlinjectionvulnerabilityinNPDSREvolution.html Product: NPDS REvolution Vendor: NPDS Vulnerable Version: REvolution 10.02 and Probably Prior Versions Vendor Notification: 29 April 2010 Vulnerability Type: Blind SQL Injecti...