Online Scheduling System 1.0 - Persistent Cross-Site Scripting

Exploit Title: Online Scheduling System 1.0 - Persistent Cross-Site Scripting Exploit Author: Bobby Cooke Date: 2020-04-30 Vendor Homepage: https://www.sourcecodester.com/php/14168/online-scheduling-system.html Software Link:...

ChemInv 1 Cross Site Scripting

Exploit Title: ChemInv - Authenticated Persistent Cross-Site Scripting Exploit Author: Bobby Cooke Date: 2020-04-29 Software Link: https://github.com/tmorrell/cheminv Software Info: "Cheminv is a web-based chemical inventory system. This responsive database provides an accessible way to organize...

ChemInv 1 Cross Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: ChemInv - Authenticated Persistent Cross-Site Scripting Exploit Author: Bobby Cooke Software Link: https://github.com/tmorrell/cheminv Software Info: "Cheminv is a web-based chemical inventory system. This responsive database...

POS PHP v17.5 - (Employees) Persistent Web Vulnerability

Document Title: =============== POS PHP v17.5 - Employees Persistent Web Vulnerability References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2230 Release Date: ============= 2020-04-29 Vulnerability Laboratory ID VL-ID: ==================================== 22...

POS PHP 17.5 Cross Site Scripting

Document Title: =============== POS PHP v17.5 - Persistent Cross Site Web Vulnerability References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2228 Release Date: ============= 2020-04-28 Vulnerability Laboratory ID VL-ID: ====================================...

POS PHP v17.5 - (Customer) Persistent Web Vulnerability

Document Title: =============== POS PHP v17.5 - Customer Persistent Web Vulnerability References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2228 Release Date: ============= 2020-04-27 Vulnerability Laboratory ID VL-ID: ==================================== 222...

SAS@Home Virtual Summit Showcases New Threat Intel, Industry Changes

As the COVID-19 pandemic continues to force in-person cybersecurity event cancellations, Kaspersky is forging ahead with a virtual security summit, SAS@home. Topics on the agenda include threat intel on advanced persistent threats APTs, new vulnerability research, and topics related to a...

User Management System 2.0 Cross Site Scripting

Exploit Title: User Management System 2.0 - Persistent Cross-Site Scripting Author: Besim ALTINOK Vendor Homepage: https://phpgurukul.com/ Software Link: https://phpgurukul.com/user-registration-login-and-user-management-system-with-admin-panel/ Version: v2.0 Tested on: Xampp Credit: İsmail BOZKU...

Complaint Management System 4.2 - Persistent Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: Complaint Management System 4.2 - Persistent Cross-Site Scripting Author: Besim ALTINOK Vendor Homepage: https://phpgurukul.com/ Software Link: https://phpgurukul.com/complaint-management-sytem/ Version: v4.2 Tested on: Xampp...

User Management System 2.0 - Persistent Cross-Site Scripting

Exploit Title: User Management System 2.0 - Persistent Cross-Site Scripting Author: Besim ALTINOK Vendor Homepage: https://phpgurukul.com/ Software Link: https://phpgurukul.com/user-registration-login-and-user-management-system-with-admin-panel/ Version: v2.0 Tested on: Xampp Credit: İsmail BOZKU...

Complaint Management System 4.2 - Persistent Cross-Site Scripting

Exploit Title: Complaint Management System 4.2 - Persistent Cross-Site Scripting Author: Besim ALTINOK Vendor Homepage: https://phpgurukul.com/ Software Link: https://phpgurukul.com/complaint-management-sytem/ Version: v4.2 Tested on: Xampp Credit: İsmail BOZKURT ------ Details: 1- Vulnerable cod...

Mahara 19.10.2 CMS - Persistent Cross-Site Scripting

Title: Mahara 19.10.2 CMS - Persistent Cross-Site Scripting Author: Vulnerability Laboratory Date: 2020-04-21 Vendor: https://mahara.org Software Link: https://launchpad.net/mahara CVE: N/A Document Title: =============== Mahara v19.10.2 CMS - Persistent Cross Site Vulnerability References Source...

SuperBackup v2.0.5 - Multiple Site Scripting Vulnerabilities

Document Title: =============== SuperBackup v2.0.5 - Multiple Site Scripting Vulnerabilities References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2201 Release Date: ============= 2020-04-22 Vulnerability Laboratory ID VL-ID:...

MITRE ATT&CK APT 29 evaluation proves Microsoft Threat Protection provides deeper end to end view of advanced threats

As attackers use more advanced techniques, it’s even more important that defenders have visibility not just into each of the domains in their environment, but also across them to piece together coordinated, targeted, and advanced attacks. This level of visibility will allow us to get ahead of...

Bad Bot Report 2020: Bad Bots Strike Back

The 7th Annual Bad Bot Report is now available from Imperva. Prepared by data from Imperva’s Threat Research Lab, it provides a comprehensive look at the bad bot landscape and the impact of this malicious traffic across multiple industries. Bad bot traffic rose to 24.1%, it’s highest proportion...

CSZ CMS 1.2.7 - Persistent Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: CSZ CMS 1.2.7 - Persistent Cross-Site Scripting Exploit Author: Metin Yunus Kandemir Vendor Homepage: https://www.cszcms.com/ Software Link: https://sourceforge.net/projects/cszcms/ Version: v1.2.7 Description: Unauthorized user...

Mahara 19.10.2 Cross Site Scripting

Document Title: =============== Mahara v19.10.2 CMS - Persistent Cross Site Vulnerability References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2217 Release Date: ============= 2020-04-21 Vulnerability Laboratory ID VL-ID: ====================================...

CSZ CMS 1.2.7 Cross Site Scripting

Exploit Title: CSZ CMS 1.2.7 - Persistent Cross-Site Scripting Exploit Author: Metin Yunus Kandemir Vendor Homepage: https://www.cszcms.com/ Software Link: https://sourceforge.net/projects/cszcms/ Version: v1.2.7 Description: Unauthorized user that has access private message can embed Javascript...

CSZ CMS 1.2.7 - Persistent Cross-Site Scripting

Exploit Title: CSZ CMS 1.2.7 - Persistent Cross-Site Scripting Exploit Author: Metin Yunus Kandemir Vendor Homepage: https://www.cszcms.com/ Software Link: https://sourceforge.net/projects/cszcms/ Version: v1.2.7 Description: Unauthorized user that has access private message can embed Javascript...

Sky File 2.1.0 Cross Site Scripting / Directory Traversal

Document Title: =============== Sky File v2.1.0 iOS - Multiple Web Vulnerabilities References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2207 Release Date: ============= 2020-04-21 Vulnerability Laboratory ID VL-ID: ==================================== 2207...