Havalite CMS v1.0.4 - Multiple Web Vulnerabilities

Document Title: =============== Havalite CMS v1.0.4 - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=520 Release Date: ============= 2012-04-22 Vulnerability Laboratory ID VL-ID: ==================================== 520...

Anchor CMS 0.6 Cross Site Scripting

Anchor CMS v0.6 Multiple Persistent XSS Vulnerabilities function xss0document.forms"xss0".submit; function xss1document.forms"xss1".submit; function xss2document.forms"xss2".submit; function xss3document.forms"xss3".submit; function xss4document.forms"xss4".submit; function...

Comment matter Wordpress plugin persistent XSS and Key remote arbitrary tampering-bug warning-the black bar safety net

xss /wp-content/plugins/pinglunla/relay. php? sid=ec51555f3e5e125257457a73609bdbe15cb7c29d"/scriptscriptalert0/scriptscript%20src=" The above URL for tampering with comments. SID, while injecting any script, the script will be saved permanently, affecting all of the open comments feature of the...

Waylu CMS Cross Site Scripting / SQL Injection

1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 x Official Website: http://www.1337day.com 0 1 x...

MiPagina CMS Cross Site Scripting

1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 x Official Website: http://www.1337day.com 0 1 x...

Anchor CMS v0.6 Multiple Persistent XSS Vulnerabilities

Summary Anchor is a content management system, written in PHP5, built for art-directed posts. Description Anchor CMS suffers from multiple stored and reflected XSS vulnerabilities when parsing user input to several parameters via GET and POST method. Attackers can exploit this weakness to execute...

Script-KS CMS 4.0.2 Cross Site Scripting / SQL Injection

1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 x Official Website: http://www.1337day.com 0 1 x...

ReadyDesk Cross Site Scripting

Exploit Title: ReadyDesk Cross Site Scripting Date: 19.04.2012 Author: Sony Software Link: http://www.readydesk.com/ Google Dorks: powered by readydesk Web Browser : Mozilla Firefox Blog : http://st2tea.blogspot.com PoC: http://st2tea.blogspot.com/2012/04/readydesk-cross-site-scripting.html...

EmbryoCore CMS 1.03 SQL Injection

Title: ====== EmbryoCore CMS v1.03 - Multiple Web Vulnerabilities Date: ===== 2012-04-14 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=503 VL-ID: ===== 503 Introduction: ============= EmbryoCore is a blog / content management system written using PHP5 s newest feature...

Ushahidi 2.2 Cross Site Request Forgery / Cross Site Scripting

Exploit Title: Ushahidi 2.2 Multiple Vulnerabilites Date: 04/12/2012 Author: shpendk Software Link: http://download.ushahidi.com/ Version: 2.2 Tested on: Xampp on Windows Vendor Contact: 03/25/2012 - Contacted again: 03/28/2012 - No Response yet: 04/11/2012 - Full Disclosure: 04/12/2012 1 CSRF Ad...

Microsoft Partner Service - Persistent Web Vulnerability

Document Title: =============== Microsoft Partner Service - Persistent Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=433 http://www.vulnerability-lab.com/getcontent.php?id=439 MSRC ID: 12209nj Release Date: ============= 2012-04-13...

Ushahidi 2.2 Multiple Vulnerabilites

Exploit for php platform in category web applications Exploit Title: Ushahidi 2.2 Multiple Vulnerabilites Date: 04/12/2012 Author: shpendk Software Link: http://download.ushahidi.com/ Version: 2.2 Tested on: Xampp on Windows Vendor Contact: 03/25/2012 - Contacted again: 03/28/2012 - No Response...

Ushahidi 2.2 - Multiple Vulnerabilities

Ushahidi 2.2 - Multiple Vulnerabilities Exploit Title: Ushahidi 2.2 Multiple Vulnerabilites Date: 04/12/2012 Author: shpendk Software Link: http://download.ushahidi.com/ Version: 2.2 Tested on: Xampp on Windows Vendor Contact: 03/25/2012 - Contacted again: 03/28/2012 - No Response yet: 04/11/2012...

Microsoft Partners - Persistent Vulnerabilities MSRC

Document Title: =============== Microsoft Partners - Persistent Vulnerabilities MSRC References: =========== Download: http://www.vulnerability-lab.com/resources/videos/439.wmv View: http://www.youtube.com/watch?v=Zou2ZSiL6g http://www.vulnerability-lab.com/getcontent.php?id=433...

Ushahidi 2.2 - Multiple Vulnerabilities

Exploit Title: Ushahidi 2.2 Multiple Vulnerabilites Date: 04/12/2012 Author: shpendk Software Link: http://download.ushahidi.com/ Version: 2.2 Tested on: Xampp on Windows Vendor Contact: 03/25/2012 - Contacted again: 03/28/2012 - No Response yet: 04/11/2012 - Full Disclosure: 04/12/2012 1 CSRF Ad...

Microsoft Partners - Persistent Vulnerabilities MSRC

Document Title: =============== Microsoft Partners - Persistent Vulnerabilities MSRC References: =========== Download: http://www.vulnerability-lab.com/resources/videos/439.wmv View: http://www.youtube.com/watch?v=Zou2ZSiL6g http://www.vulnerability-lab.com/getcontent.php?id=433...

EmbryoCore CMS v1.03 - Multiple Web Vulnerabilities

Document Title: =============== EmbryoCore CMS v1.03 - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=503 Release Date: ============= 2012-04-13 Vulnerability Laboratory ID VL-ID: ==================================== 503...

EmbryoCore CMS v1.03 - Multiple Web Vulnerabilities

Document Title: =============== EmbryoCore CMS v1.03 - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=503 Release Date: ============= 2012-04-13 Vulnerability Laboratory ID VL-ID: ==================================== 503...

Microsoft Partner Service - Persistent Web Vulnerability

Document Title: =============== Microsoft Partner Service - Persistent Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=433 http://www.vulnerability-lab.com/getcontent.php?id=439 MSRC ID: 12209nj Release Date: ============= 2012-04-13...

GroupWare epesiBIM CRM 1.2.1 Cross Site Scripting

Title: ====== GroupWare epesiBIM CRM 1.2.1 - Multiple Web Vulnerabilities Date: ===== 2012-04-10 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=501 VL-ID: ===== 501 Introduction: ============= epesi BIM stands for Business Information Manager. We just did not like the...