ADB/Pirelli ADSL2/2+ Wireless Router P.DGA4001N - Information Disclosure

ADB formerly Pirelli Broadband Solutions P.DGA4001N router with firmware PDGTEFSP4.06L.6 does not properly restrict access to the web interface, which allows remote attackers to obtain sensitive information or cause a denial of service device restart as demonstrated by a direct request to 1...

Microstrategy Web 7 - Cross-Site Scripting

Microstrategy Web 7 does not sufficiently encode user-controlled inputs, resulting in cross-site scripting via the Login.asp Msg parameter. id: CVE-2018-18775 info: name: Microstrategy Web 7 - Cross-Site Scripting author: 0xAkoko severity: medium description: Microstrategy Web 7 does not...

Nagios XI 5.5.6-5.7.5 - Authenticated Remote Command Injection

Nagios XI 5.5.6 through 5.7.5 is susceptible to authenticated remote command injection. There is improper sanitization of authenticated user-controlled input by a single HTTP request via the file /usr/local/nagiosxi/html/includes/configwizards/cloud-vm/cloud-vm.inc.php. This in turn can lead to...

Sicat - The Useful Exploit Finder

Introduction SiCat is an advanced exploit search tool designed to identify and gather information about exploits from both open sources and local repositories effectively. With a focus on cybersecurity, SiCat allows users to quickly search online, finding potential vulnerabilities and relevant...

LimeSurvey < 4.1.12 Multiple Vulnerabilities

LimeSurvey is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

WordPress Fastest Cache Plugin < 0.8.9.6 Directory Traversal Vulnerability

The WordPress plugin Copyright C 2019 Greenbone Networks GmbH SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the...

Pompem - Exploit Finder

Pompem is an open source tool, which is designed to automate the search for exploits in major databases. Developed in Python, has a system of advanced search, thus facilitating the work of pentesters and ethical hackers. In its current version, performs searches in databases: Exploit-db, 1337day,...

Mozilla Firefox ESR Multiple Vulnerabilities -01 Feb13 (Windows)

This host is installed with Mozilla Firefox ESR and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbmozillafirefoxesrmultvuln01feb13win.nasl 6079 2017-05-08 09:03:33Z teissa $ Mozilla Firefox ESR Multiple Vulnerabilities -01 Feb13 Windows Authors: Thanga Prakash S Copyrigh...

PHP Dompdf File Remote File Inclusion

================================== PHP Dompdf File RFI Vulnerability ================================== +Title : PHP Dompdf File RFI Vulnerability +Software : Dompdf Php5 +Vendor : NN +Download : NN +Author : josalijoe +Contact : josalijoeathotmaildotcom +Web : http://alicoder.wordpress.com/ New...

CMS Tovar Site SQL Injection

================================================= CMS Tovar Site .ru SQL Injection Vulnerability ================================================= +Title : CMS Tovar Site .ru SQL Injection Vulnerability +Software : CMS Tovar +Vendor : NN +Download : NN +Author : josalijoe +Contact :...

CMS Cine 1.3 SQL Injection

========================================== CMS Cine v1.3 SQL Injection Vulnerability ========================================== +Title : CMS Cine v1.3 SQL Injection Vulnerability +Software : CMS Cine v1.3 +Vendor : NN +Download : NN +Author : josalijoe +Contact : josalijoeathotmaildotcom +Web :...

PHP Bexfront SQL Injection

========================================== PHP Bexfront SQL Injection Vulnerability ========================================== +Title : PHP Bexfront SQL Injection Vulnerability +Software : PHP Bexfront +Vendor : NN +Download : NN +Author : josalijoe +Contact : josalijoeathotmaildotcom +Web :...

Joomla RokQuickCart Local File Inclusion

=========================================================================== Title : Joomla Component RokQuickCart LFI Software : Joomla Extensions RokQuickCart Vendor : http://www.rockettheme.com/ Download : http://www.rockettheme.com/extensions-joomla/rokquickcart Author : josalijoe Contact :...

PHP ID Page SQL Injection

=============================================== Php ID dog Page SQL Injection Vulnerability =============================================== +Title : Php ID dog Page SQL Injection Vulnerability +Software : Php ID dog Page +Vendor : NN +Download : NN +Author : josalijoe +Contact :...

CMS Articles NA 1.4 SQL Injection

=============================================== CMS Articles NA 1.4 SQL Injection Vulnerability =============================================== +Title : CMS Articles NA 1.4 SQL Injection Vulnerability +Software : CMS Articles NA 1.4 +Vendor : NN +Download : NN +Author : josalijoe +Contact :...

CMS Person SQL Injection

======================================= CMS Person SQL Injection Vulnerability ======================================= +Title : CMS Person SQL Injection Vulnerability +Software : CMS Person +Vendor : NN +Download : NN +Author : josalijoe +Contact : josalijoeathotmaildotcom +Home :...

CMS Show - Job SQL Injection

=========================================== CMS Show - Job SQL Injection Vulnerability =========================================== +Title : CMS Show - Job SQL Injection Vulnerability +Software : CMS Show - Job +Vendor : NN +Download : NN +Author : josalijoe +Contact : josalijoeatyahoodotcom +Home...

Joomla Social User List SQL Injection

=============================================== Joomla Component Social User List SQL Injection =============================================== +Title : Joomla Component Social User List SQL Injection +Software : JomSocial User List JSUL +Vendor : http://www.bestofjoomla.com/ +Download :...

PHP Atividades Program SQL Injection

=================================================== PHP Atividades program SQL Injection Vulnerability =================================================== +Title : PHP Atividades program SQL Injection Vulnerability +Software : Atividades Program +Vendor : http://www.atividadeseducativas.com.br/...

CMS Faculty SQL Injection

=============================================================== CMS Faculty facultyview.php?id SQL Injection Vulnerability =============================================================== +Title : CMS Faculty facultyview.php?id SQL Injection Vulnerability +Software : CMS Faculty +Vendor : NN...