7657 matches found
FlatNuke 3.1.4 (FlatPoll) Persistent XSS Vulnerability
Exploit for php platform in category web applications ------------------------------------------------------------------------- + FlatNuke alertdocument.cookie&body=This is my comment ------------------------------------------------------------------------------------------------ 0day.today...
Folder Plus 2.5.1 iOS - Persistent XSS Vulnerability
No description provided by source. Document Title: =============== Folder Plus v2.5.1 iOS - Persistent Item Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1348 Release Date: ============= 2014-10-24 Vulnerability Laboratory ID VL-ID:...
Dell SonicWall GMS 7.2.x - Code Injection
No description provided by source. Document Title: =============== Dell SonicWall GMS v7.2.x - Persistent Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1222 Release Date: ============= 2014-10-21 Vulnerability Laboratory ID VL-ID:...
PayPal Arbitrary Code Execution
Document Title: =============== PayPal Inc - Filter Bypass & Arbitrary Code Execution Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=936 Video: http://www.vulnerability-lab.com/getcontent.php?id=1275 Vulnerability Magazine:...
WordPress Plugin SupportEzzy Ticket System 1.2.5 - Persistent Cross-Site Scripting
WordPress Plugin SupportEzzy Ticket System 1.2.5 - Persistent Cross-Site Scripting Exploit Title: SupportEzzy Ticket System - WordPress Plugin Stored XSS Vulnerability Date: 12-10-2014 Exploit Author: Halil Dalabasmaz Version: v1.2.5 Vendor Homepage:...
WordPress Plugin SupportEzzy Ticket System 1.2.5 - Persistent Cross-Site Scripting
Exploit Title: SupportEzzy Ticket System - WordPress Plugin Stored XSS Vulnerability Date: 12-10-2014 Exploit Author: Halil Dalabasmaz Version: v1.2.5 Vendor Homepage: http://codecanyon.net/item/supportezzy-ticket-system-wordpress-plugin/8908617 Software Test Link:...
ZTE ZXDSL 831 Multiple Cross Site Scripting Vulnerability
Exploit for hardware platform in category web applications Exploit Title: ZTE ZXDSL 831 Multiple Cross Site Scripting Date: 11/3/2014 Exploit Author: Paulos Yibelo Vendor Homepage: zte.com.cn Software Link: - Version: - Tested on: Windows 7 CVE :- TR-069 Client page: Stored. executes when users g...
Supr Shopsystem - Persistent UI Vulnerability
Document Title: =============== Supr Shopsystem - Persistent UI Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1353 Release Date: ============= 2014-11-07 Vulnerability Laboratory ID VL-ID: ==================================== 1353 Common...
PayPal MultiOrder Shipping Cross Site Scripting
Document Title: =============== PayPal Inc BugBounty 107 MultiOrder Shipping API - Persistent History Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1048 PayPal Security UID: dq115aYq Release Date: ============= 2014-10-27 Vulnerability...
SeasonApps iTransfer 1.1 Script Insertion
Document Title: =============== SeasonApps iTransfer 1.1 - Persistent UI Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1347 Release Date: ============= 2014-10-27 Vulnerability Laboratory ID VL-ID: ==================================== 134...
ZTE ZXDSL 831 Cross Site Scripting
Exploit Title: ZTE ZXDSL 831 Multiple Cross Site Scripting Date: 11/3/2014 Exploit Author: Paulos Yibelo Vendor Homepage: zte.com.cn Software Link: - Version: - Tested on: Windows 7 CVE :- TR-069 Client page: Stored. executes when users go to http://192.168.1.1/tr69cfg.html...
BookFresh Persistent Cross Site Scripting
Document Title: =============== BookFresh - Persistent Clients Invite Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1351 Release Date: ============= 2014-10-28 Vulnerability Laboratory ID VL-ID: ==================================== 1351...
Supr Shopsystem - Persistent UI Vulnerability
Document Title: =============== Supr Shopsystem - Persistent UI Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1353 Release Date: ============= 2014-11-07 Vulnerability Laboratory ID VL-ID: ==================================== 1353 Common...
Mouse Media Script 1.6 - Persistent Cross-Site Scripting
Exploit Title: Mouse Media Script Stored XSS Vulnerability Google Dork: "is your best source of fun." inurl:/view/popular Date: 04-10-2014 Exploit Author: Halil Dalabasmaz Version: v1.6 Software Link: http://codecanyon.net/item/mouse-media-script/7773254 Software Test Link: http://media.nisgeo.co...
MODx CMS 2.2.14 - Cross-Site Request Forgery Bypass / Reflected Cross-Site Scripting / Persistent Cross-Site Scripting
Advisory ID: 92152 Product: MODX Revolution Vendor: MODX Vulnerable Versions: 2.0.02.2.14 Tested Version: 2.2.14 Advisory Publication: 16 July, 2014 without technical details Vendor Notification: 16 July, 2014 Vendor Patch: 15 July, 2014 Public Disclosure: 2 November , 2014 Vulnerability Type:...
PayPal Inc BB #88 - Bypass & Arbitrary Code Execution
Document Title: =============== PayPal Inc BB 88 - Bypass & Arbitrary Code Execution References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=936 Video: http://www.vulnerability-lab.com/getcontent.php?id=1275 Release Date: ============= 2014-11-05 Vulnerability...
(0Day) Denon AVR-3313CI 'Friendlyname' Persistent Cross-Site Scripting Vulnerability
This vulnerability allows remote attackers to insert persistent JavaScript on vulnerable installations of the Denon AVR-3313CI audio/video receiver's web portal. Authentication is not required to persist the attack. However, user interaction is required to exploit this vulnerability in that the...
Folder Plus v2.5.1 iOS - Persistent Item Vulnerability
Document Title: =============== Folder Plus v2.5.1 iOS - Persistent Item Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1348 Release Date: ============= 2014-10-24 Vulnerability Laboratory ID VL-ID: ==================================== 134...
SEC Consult SA-20141029-1 :: Persistent cross site scripting in Confluence RefinedWiki Original Theme
SEC Consult Vulnerability Lab Security Advisory 20141029-1 ======================================================================= title: Persistent cross site scripting product: Confluence RefinedWiki Original Theme vulnerable version: 3.x - 4.0.x fixed version: 4.0.12 impact: high homepage:...
ZTE Modem ZXDSL 531BIIV7.3.0f_D09_IN - Persistent Cross-Site Scripting
ZTE Modem ZXDSL 531BIIV7.3.0fD09IN - Persistent Cross-Site Scripting Exploit Title: ZTE Modem Stored XSS Vulnerability Date: 30-10-2014 Exploit Author: Ravi Rajput aka Gr3y n00b IHT team Version: ZXDSL 531BIIV7.3.0fD09IN Software Link:http://wwwen.zte.com.cn Tested on : Windows 7 code : GET...