7637 matches found
DornCMS Application 1.4 - Multiple Web Vulnerabilities
DornCMS Application 1.4 - Multiple Web Vulnerabilities Document Title: =============== DornCMS Application v1.4 - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1113 Release Date: ============= 2013-10-14 Vulnerability...
Zikula CMS v1.3.5 - Multiple Web Vulnerabilities
Document Title: =============== Zikula CMS v1.3.5 - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1114 Release Date: ============= 2013-10-15 Vulnerability Laboratory ID VL-ID: ==================================== 1114 Comm...
Zikula CMS v1.3.5 - Multiple Web Vulnerabilities
Document Title: =============== Zikula CMS v1.3.5 - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1114 Release Date: ============= 2013-10-15 Vulnerability Laboratory ID VL-ID: ==================================== 1114 Comm...
DornCMS Application v1.4 - Multiple Web Vulnerabilities
Document Title: =============== DornCMS Application v1.4 - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1113 Release Date: ============= 2013-10-13 Vulnerability Laboratory ID VL-ID: ==================================== 11...
DornCMS Application v1.4 - Multiple Web Vulnerabilities
Document Title: =============== DornCMS Application v1.4 - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1113 Release Date: ============= 2013-10-13 Vulnerability Laboratory ID VL-ID: ==================================== 11...
Mac OS X Persistent Payload Installer
This module provides a persistent boot payload by creating a launch item, which can be a LaunchAgent or a LaunchDaemon. LaunchAgents run with user level permissions and are triggered upon login by a plist entry in /Library/LaunchAgents. LaunchDaemons run with elevated privilleges, and are launche...
Wordpress Quick Contact Form Plugin 6.0 - Persistent XSS
Exploit for php platform in category web applications TITLE ===== Quick Contact Form - Persistent Cross Site Scripting Vulnerability AUTHOR ====== Zy0d0x DATE ==== 10/06/2013 VENDOR ====== Quick Plugins - http://quick-plugins.com/ AFFECTED PRODUCT ================ Quick Contact Form Wordpress...
WordPress Quick Contact Form Plugin 6.0 - Persistent XSS
Persistent XSS vulnerability has been discovered in Quick Contact Form plugin, because of a lack of input validation and output sanitization of the "qcfname4" paramater. Solution Upgrade to version 6.1...
VidiScript 1.0.3a Cross Site Scripting
. \ /| | \ \ \ \ | | | | / \ / \ /\ / \ / / / / / \ /\ / \ / / / | | | Y \ / \ | | \ /\ \ \ | | /\ /\ / || || /\ \ /|| / /// \ /|| \ // / / / / / / http://thecrowscrew.org Exploit Title: VidiScript Persistent XSS Vulnerability Author: Gabby Google Dork: Powered By VidiScript...
Unix Command Shell, Reverse TCP (via nodejs)
Continually listen for a connection and spawn a command shell via nodejs This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 3231 include Msf::Payload::Single include...
Microsoft SharePoint 2013 (Cloud) - Persistent Exception Handling Web Vulnerability
Title: ====== Microsoft SharePoint 2013 Cloud - Persistent Exception Handling Web Vulnerability Date: ===== 2013-09-11 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=812 Security Bulletin: MS13-067 http://technet.microsoft.com/de-de/security/bulletin/MS13-067 Microsoft...
SilverStripe Framework CMS 3.0.5 Cross Site Scripting
Title: ====== SilverStripe Framework CMS 3.0.5 - Multiple Vulnerabilities Date: ===== 2013-09-23 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=1084 VL-ID: ===== 1084 Common Vulnerability Scoring System: ==================================== 3.9 Introduction:...
WebAssist PowerCMS PHP - Multiple Web Vulnerabilities
Title: ====== WebAssist PowerCMS PHP - Multiple Web Vulnerabilities Date: ===== 2013-09-28 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=1098 VL-ID: ===== 1098 Common Vulnerability Scoring System: ==================================== 4 Introduction: ============= Desi...
SilverStripe Framework CMS 3.0.5 - Multiple Web Vulnerabilities
Title: ====== SilverStripe Framework CMS 3.0.5 - Multiple Vulnerabilities Date: ===== 2013-09-23 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=1084 VL-ID: ===== 1084 Common Vulnerability Scoring System: ==================================== 3.9 Introduction:...
Persistent cross-site scripting (XSS) via DailyMotionRenderer
A number of renderer classes used by the widget macro were previously identified that contained URL validation flaws leading to persistent cross-site scripting XSS vulnerabilities. The modified classes now make use of the isUrlMatch method from the WidgetConnectorUtil class in the implementation ...
WebAssist PowerCMS PHP - Multiple Web Vulnerabilities
Document Title: =============== WebAssist PowerCMS PHP - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1098 Release Date: ============= 2013-09-27 Vulnerability Laboratory ID VL-ID: ==================================== 1098...
WebAssist PowerCMS PHP - Multiple Web Vulnerabilities
Document Title: =============== WebAssist PowerCMS PHP - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1098 Release Date: ============= 2013-09-27 Vulnerability Laboratory ID VL-ID: ==================================== 1098...
SilverStripe Framework CMS 3.0.5 - Multiple Vulnerabilities
Document Title: =============== SilverStripe Framework CMS 3.0.5 - Multiple Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1084 Release Date: ============= 2013-09-22 Vulnerability Laboratory ID VL-ID: ===================================...
SilverStripe Framework CMS 3.0.5 - Multiple Vulnerabilities
Document Title: =============== SilverStripe Framework CMS 3.0.5 - Multiple Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1084 Release Date: ============= 2013-09-22 Vulnerability Laboratory ID VL-ID: ===================================...
Paypal Bug Bounty #99 Cross Site Scripting
Title: ====== Paypal Inc Bug Bounty 99 - Filter Bypass & Persistent Web Vulnerability Date: ===== 2013-09-20 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=984 PayPal Security UID: nj1071UU VL-ID: ===== 984 Common Vulnerability Scoring System:...