Havalite CMS v1.0.4 Multiple Vulnerabilities

Exploit for php platform in category web applications Title: ====== Havalite CMS v1.0.4 - Multiple Web Vulnerabilities Date: ===== 2012-04-23 Introduction: ============= Havalite, a lightweight, open source CMS, based on php and SQLite. It\\\'s licensed under the GNU General Public License. - A...

C4B XPhone UC Web 4.1.890S R1 - Cross Site Vulnerability

Document Title: =============== C4B XPhone UC Web 4.1.890S R1 - Cross Site Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=484 Release Date: ============= 2012-04-23 Vulnerability Laboratory ID VL-ID: ==================================== 48...

ACC PHP eMail v1.1 - Multiple Web Vulnerabilites

Title: ====== ACC PHP eMail v1.1 - Multiple Web Vulnerabilites Date: ===== 2012-04-13 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=505 VL-ID: ===== 505 Introduction: ============= Acc PHP eMail is a email subscription and management script. Manage subscribers them an...

Havalite CMS 1.0.4 Cross Site Scripting

Title: ====== Havalite CMS v1.0.4 - Multiple Web Vulnerabilities Date: ===== 2012-04-23 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=520 VL-ID: ===== 520 Introduction: ============= Havalite, a lightweight, open source CMS, based on php and SQLite. It\\\'s licensed...

idev Game Site CMS v1.0 - Multiple Web Vulnerabilites

Title: ====== idev Game Site CMS v1.0 - Multiple Web Vulnerabilites Date: ===== 2012-04-08 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=494 VL-ID: ===== 494 Introduction: ============= Start your own Flash web game website. Search engine optimized. Embed your Adsense...

Havalite CMS v1.0.4 - Multiple Web Vulnerabilities

Document Title: =============== Havalite CMS v1.0.4 - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=520 Release Date: ============= 2012-04-22 Vulnerability Laboratory ID VL-ID: ==================================== 520...

Anchor CMS 0.6 Cross Site Scripting

Anchor CMS v0.6 Multiple Persistent XSS Vulnerabilities function xss0document.forms"xss0".submit; function xss1document.forms"xss1".submit; function xss2document.forms"xss2".submit; function xss3document.forms"xss3".submit; function xss4document.forms"xss4".submit; function...

Comment matter Wordpress plugin persistent XSS and Key remote arbitrary tampering-bug warning-the black bar safety net

xss /wp-content/plugins/pinglunla/relay. php? sid=ec51555f3e5e125257457a73609bdbe15cb7c29d"/scriptscriptalert0/scriptscript%20src=" The above URL for tampering with comments. SID, while injecting any script, the script will be saved permanently, affecting all of the open comments feature of the...

Script-KS CMS 4.0.2 Cross Site Scripting / SQL Injection

1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 x Official Website: http://www.1337day.com 0 1 x...

MiPagina CMS Cross Site Scripting

1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 x Official Website: http://www.1337day.com 0 1 x...

Waylu CMS Cross Site Scripting / SQL Injection

1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 x Official Website: http://www.1337day.com 0 1 x...

Anchor CMS v0.6 Multiple Persistent XSS Vulnerabilities

Summary Anchor is a content management system, written in PHP5, built for art-directed posts. Description Anchor CMS suffers from multiple stored and reflected XSS vulnerabilities when parsing user input to several parameters via GET and POST method. Attackers can exploit this weakness to execute...

ReadyDesk Cross Site Scripting

Exploit Title: ReadyDesk Cross Site Scripting Date: 19.04.2012 Author: Sony Software Link: http://www.readydesk.com/ Google Dorks: powered by readydesk Web Browser : Mozilla Firefox Blog : http://st2tea.blogspot.com PoC: http://st2tea.blogspot.com/2012/04/readydesk-cross-site-scripting.html...

EmbryoCore CMS 1.03 SQL Injection

Title: ====== EmbryoCore CMS v1.03 - Multiple Web Vulnerabilities Date: ===== 2012-04-14 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=503 VL-ID: ===== 503 Introduction: ============= EmbryoCore is a blog / content management system written using PHP5 s newest feature...

Ushahidi 2.2 Cross Site Request Forgery / Cross Site Scripting

Exploit Title: Ushahidi 2.2 Multiple Vulnerabilites Date: 04/12/2012 Author: shpendk Software Link: http://download.ushahidi.com/ Version: 2.2 Tested on: Xampp on Windows Vendor Contact: 03/25/2012 - Contacted again: 03/28/2012 - No Response yet: 04/11/2012 - Full Disclosure: 04/12/2012 1 CSRF Ad...

Ushahidi 2.2 Multiple Vulnerabilites

Exploit for php platform in category web applications Exploit Title: Ushahidi 2.2 Multiple Vulnerabilites Date: 04/12/2012 Author: shpendk Software Link: http://download.ushahidi.com/ Version: 2.2 Tested on: Xampp on Windows Vendor Contact: 03/25/2012 - Contacted again: 03/28/2012 - No Response...

Microsoft Partners - Persistent Vulnerabilities MSRC

Document Title: =============== Microsoft Partners - Persistent Vulnerabilities MSRC References: =========== Download: http://www.vulnerability-lab.com/resources/videos/439.wmv View: http://www.youtube.com/watch?v=Zou2ZSiL6g http://www.vulnerability-lab.com/getcontent.php?id=433...

Microsoft Partners - Persistent Vulnerabilities MSRC

Document Title: =============== Microsoft Partners - Persistent Vulnerabilities MSRC References: =========== Download: http://www.vulnerability-lab.com/resources/videos/439.wmv View: http://www.youtube.com/watch?v=Zou2ZSiL6g http://www.vulnerability-lab.com/getcontent.php?id=433...

Microsoft Partner Service - Persistent Web Vulnerability

Document Title: =============== Microsoft Partner Service - Persistent Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=433 http://www.vulnerability-lab.com/getcontent.php?id=439 MSRC ID: 12209nj Release Date: ============= 2012-04-13...

Ushahidi 2.2 - Multiple Vulnerabilities

Ushahidi 2.2 - Multiple Vulnerabilities Exploit Title: Ushahidi 2.2 Multiple Vulnerabilites Date: 04/12/2012 Author: shpendk Software Link: http://download.ushahidi.com/ Version: 2.2 Tested on: Xampp on Windows Vendor Contact: 03/25/2012 - Contacted again: 03/28/2012 - No Response yet: 04/11/2012...