CVE-2024-1258 Juanpao JPShop API params.php hard-coded key

A vulnerability was found in Juanpao JPShop up to 1.5.02. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file api/config/params.php of the component API. The manipulation of the argument JWTKEYADMIN leads to use of hard-coded cryptographic k...

CVE-2024-1258 Juanpao JPShop API params.php hard-coded key

A vulnerability was found in Juanpao JPShop up to 1.5.02. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file api/config/params.php of the component API. The manipulation of the argument JWTKEYADMIN leads to use of hard-coded cryptographic k...

ongage.com XSS vulnerability

Vulnerable URL: https://www.ongage.com/wp-content/themes/route/params.php?callback=prompt/OPENBUGBOUNTY/...

maplab ms4w 2.2.1 - Remote File Inclusion Vulnerability

No description provided by source. Bug Found By ka0x D.O.M TEAM we are: anonyph;arp;ka0x;xarnuz Contact: [email protected] FROM SPAIN --- Script: MapLab Version: 2.2.1 Official Site: http://www.maptools.org Download: http://www.maptools.org/dl/ms4w/maplabms4w-2.2.1.zip -- Bug File: params.php Path...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the getParam function in oc-includes/osclass/core/Params.php in OSClass before 2.3.5 allow remote attackers to inject arbitrary web script or HTML via the 1 sCity, 2 sPattern, 3 sPriceMax, and 4 sPriceMin parameters in a search action to...

CVE-2012-0974

Multiple cross-site scripting XSS vulnerabilities in the getParam function in oc-includes/osclass/core/Params.php in OSClass before 2.3.5 allow remote attackers to inject arbitrary web script or HTML via the 1 sCity, 2 sPattern, 3 sPriceMax, and 4 sPriceMin parameters in a search action to...

Orca 2.02.0.2 - params.php?gConf[dir][layouts] Remote File Inclusion

Orca 2.02.0.2 - params.php?gConfdirlayouts Remote File Inclusion Orca - Interactive Forum Script Remote File Inclusion Vulnerability Discovered by : Ciph3r MAIL : [email protected] SP tanx4: Iranian hacker & Kurdish security TEAM sp TANX2: milw0rm.com & google.com & sourceforge.net CMS...

MapLab MS4W 2.2.1 Remote File Inclusion Vulnerability

Bug Found By ka0x D.O.M TEAM we are: anonyph;arp;ka0x;xarnuz Contact: [email protected] FROM SPAIN --- Script: MapLab Version: 2.2.1 Official Site: http://www.maptools.org Download: http://www.maptools.org/dl/ms4w/maplabms4w-2.2.1.zip -- Bug File: params.php Path: /htdocs/gmapfactory/params.php Bu...

Remote file inclusion

PHP remote file inclusion vulnerability in gmapfactory/params.php in MapLab 2.2.1, when registerglobals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the gszAppPath parameter...

CVE-2007-1843

Affected software: MapLab 2.2.1, specifically gmapfactory/params.php. Root cause: when register_globals is enabled, PHP remote file inclusion occurs, allowing an attacker to execute arbitrary PHP code via a URL supplied in the gszAppPath parameter. Impact: arbitrary code execution with network ac...

MapLab MS4W 2.2.1 Remote File Inclusion Vulnerability

No description provided by source. Bug Found By ka0x D.O.M TEAM we are: anonyph;arp;ka0x;xarnuz Contact: [email protected] FROM SPAIN --- Script: MapLab Version: 2.2.1 Official Site: http://www.maptools.org Download: http://www.maptools.org/dl/ms4w/maplabms4w-2.2.1.zip -- Bug File: params.php Path...

MapLab MS4W 2.2.1 - Remote File Inclusion

MapLab MS4W 2.2.1 - Remote File Inclusion Bug Found By ka0x D.O.M TEAM we are: anonyph;arp;ka0x;xarnuz Contact: [email protected] FROM SPAIN --- Script: MapLab Version: 2.2.1 Official Site: http://www.maptools.org Download: http://www.maptools.org/dl/ms4w/maplabms4w-2.2.1.zip -- Bug File: params.p...