9 matches found
CVE-2023-3410
The Bricks theme for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘customTag' attribute in versions up to, and including, 1.10.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with access to the Bricks Builder...
CVE-2023-48987
Blind SQL Injection vulnerability in CU Solutions Group CUSG Content Management System CMS before v.7.75 allows a remote attacker to execute arbitrary code, escalate privileges, and obtain sensitive information via a crafted script to the pages.php component...
FS Expedia Clone SQL Injection Vulnerability
FS Expedia Clone is an online travel reservation management system based on PHP and MySQL. The system supports booking of airline tickets, hotel reservations and car rentals via the Internet or telephone agents. A SQL injection vulnerability exists in FS Expedia Clone version 1.0. A remote attack...
Yellow Pages Script 3.2 SQL Injection
Exploit Title: Yellow Pages Script v3.2 - SQL Injection Google Dork: N/A Date: 11.03.2017 Vendor Homepage: https://www.phpjabbers.com/ Software: https://www.phpjabbers.com/yellow-pages-script/ Demo: http://demo.phpjabbers.com/index.php?demo=yps&front=1&lid=1 Version: 3.2 Tested on: Win7 x64, Kali...
Yellow Pages Script 3.2 - 'category_id' SQL Injection
Exploit Title: Yellow Pages Script v3.2 - SQL Injection Google Dork: N/A Date: 11.03.2017 Vendor Homepage: https://www.phpjabbers.com/ Software: https://www.phpjabbers.com/yellow-pages-script/ Demo: http://demo.phpjabbers.com/index.php?demo=yps&front=1&lid=1 Version: 3.2 Tested on: Win7 x64, Kali...
Yellow Pages Script 3.2 - category_id Parameter SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Yellow Pages Script v3.2 - SQL Injection Google Dork: N/A Date: 11.03.2017 Vendor Homepage: https://www.phpjabbers.com/ Software: https://www.phpjabbers.com/yellow-pages-script/ Demo:...
Yellow Pages Script 3.2 - category_id SQL Injection
Yellow Pages Script 3.2 - categoryid SQL Injection Exploit Title: Yellow Pages Script v3.2 - SQL Injection Google Dork: N/A Date: 11.03.2017 Vendor Homepage: https://www.phpjabbers.com/ Software: https://www.phpjabbers.com/yellow-pages-script/ Demo:...
MC Yellow Pages Script - SQL Injection Vulnerability
Exploit for php platform in category web applications Vulnerability: SQL Injection Web Vulnerability Date: 15.01.2017 Vendor Homepage: http://microcode.ws/ Script Name: MC Yellow Pages Script Script Buy Now: http://microcode.ws/product/mc-yellow-pages-php-script/3800 Author: İhsan Şencan Author...
MC Yellow Pages Script - SQL Injection
Vulnerability: SQL Injection Web Vulnerability Date: 15.01.2017 Vendor Homepage: http://microcode.ws/ Script Name: MC Yellow Pages Script Script Buy Now: http://microcode.ws/product/mc-yellow-pages-php-script/3800 Author: İhsan Şencan Author Web: http://ihsan.net Mail : ihsanbeygirihsannoktanet S...