O2 classic router: persistent cross site scripting (XSS) and cross site request forgery (CSRF)

O2 classic router: persistent cross site scripting XSS and cross site request forgery CSRF References https://vulners.com/cve/CVE-2010-1482 http://int21.de/cve/CVE-2011-0746-o2-router.html Description The default DSL router shipped by the german company O2 is completely vulnerable to persistent...

O2 Classic Router Cross Site Request Forgery / Cross Site Scripting

O2 classic router: persistent cross site scripting XSS and cross site request forgery CSRF References http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1482 http://int21.de/cve/CVE-2011-0746-o2-router.html Description The default DSL router shipped by the german company O2 is completely...

Yaws-Wiki 1.88-1 (Erlang) - Persistent Reflective Cross-Site Scripting

Yaws-Wiki 1.88-1 Erlang - Persistent Reflective Cross-Site Scripting Application: yaws-wiki version affected: 1.88-1 platform: Erlang homepage:http://yaws.hyber.org/ Researcher: Michael Brooks Orignal Advisory:https://sitewat.ch/en/Advisory/4 Install instructions for Ubuntu: sudo apt-get install...

DoceboLms 4.0.4 - Multiple Persistent Cross-Site Scripting Vulnerabilities

DoceboLms 4.0.4 - Multiple Persistent Cross-Site Scripting Vulnerabilities DoceboLMS 4.0.4 Multiple Stored XSS Vulnerabilities function xss1document.forms"xss1".submit; function xss2document.forms"xss2".submit; input type="hidden" name="authentic...

Inside Story : How RSA was got hacked !

Inside Story : How RSA was got hacked ! The hack last month at RSA Security has been shrouded in mystery. How did a hacker manage to infiltrate one of the world's top computer-security companies? And could the data that was stolen be used to impair its SecurID products, which are used by 40 milli...

Claroline 1.10 Persistent XSS Vulnerability

Exploit for php platform in category web applications ------------------------------------------------------------------------ Software................Claroline 1.10 Vulnerability...........Persistent Cross-site Scripting Threat Level............Moderate 2/5...

Easy File Sharing Web Server 5.8 Multiple Vulnerabilities

Exploit for windows platform in category remote exploits ------------------------------------------------------------------------ Software................Easy File Sharing Web Server Version 5.8 Vulnerability...........Persistent Cross-site Scripting Threat Level............Moderate 2/5...

Easy File Sharing Web Server 5.8 Cross Site Scripting

------------------------------------------------------------------------ Software................Easy File Sharing Web Server Version 5.8 Vulnerability...........Persistent Cross-site Scripting Threat Level............Moderate 2/5 Download................http://www.sharing-file.com/ Disclosure...

Claroline 1.10 - Persistent Cross-Site Scripting

Claroline 1.10 - Persistent Cross-Site Scripting ------------------------------------------------------------------------ Software................Claroline 1.10 Vulnerability...........Persistent Cross-site Scripting Threat Level............Moderate 2/5...

Claroline 1.10 Cross Site Scripting

------------------------------------------------------------------------ Software................Claroline 1.10 Vulnerability...........Persistent Cross-site Scripting Threat Level............Moderate 2/5 Download................http://www.claroline.net/ Disclosure Date.........4/6/2011 Tested...

PyroCMS 1.1.0 Cross Site Scripting

------------------------------------------------------------------------ Software................PyroCMS 1.1.0 Vulnerability...........Persistent Cross-site Scripting Threat Level............Moderate 2/5 Download................http://pyrocms.com/ Vendor Contact Date.....3/11/2011 Disclosure...

Simple Machines Forum <= 1.1.13 XSS Vulnerability

Exploit for php platform in category web applications Exploit Title: XSS PersistentSimple Machines Forum alertdocument.cookie; 0day.today 2018-04-08...

Simple Machines Forum <= 1.1.12 XSS Vulnerability

Exploit for php platform in category web applications Exploit Title: XSS PersistentSimple Machines Forum alertdocument.cookie; 0day.today 2018-04-13...

Family Connections CMS 2.3.2 - Persistent Cross-Site Scripting / XML Injection

Family Connections CMS 2.3.2 Stored XSS And XPath Injection function xpathdocument.forms"xml".submit; function xssdocument.forms"xss".submit; a href="javascript: xml;" style="text-deco...

OpenCollab 1.4.3 Cross Site Scripting

------------------------------------------------------------------------ Software................OpenCollab 1.4.3 Vulnerability...........Persistent Cross-site Scripting Threat Level............Moderate 2/5 Download................http://www.opencollab.de/ Vendor Contact Date.....3/10/2011...

Spacenuke v3.2.5 => Persistent XSS Exploiable Vulnerability

Exploit for php platform in category web applications Spacenuke v3.2.5 = Persistent XSS Exploiable Vulnerability ----------------------------------------------------------- I MEMBER FROM IN3CT0R TEAM. 1337 DAY .. My + Author : KnocKout Contact : email protected E-Mail : email protected HomePage :...

Newscoop 3.5.1 Cross Site Scripting

------------------------------------------------------------------------ Software................Newscoop 3.5.1 Vulnerability...........Persistent Cross-site Scripting Threat Level............Moderate 2/5 Download................http://www.sourcefabric.org/en/products/newscoopoverview/ Vendor...

HBGary CEO Speaks Out On Anonymous Hack

Greg Hoglund, CEO of HBGary, admits that lackluster security at his company played a central role in the breach that led to the release of some 50,000 company emails, but also disputes common understanding and reported details of the hack and the group behind it, going so far as to say there was...

RSA Hack Yields SecurID Secrets

RSA Security, a division of EMC Corp. has admitted that it was the victim of a sophisticated attack that resulted in the theft of secrets related to its SecurID two-factor authentication product. The disclosure came in a blog post by RSA chief Art Coviello on Thursday. Coviello said that the...

b2evolution 4.0.3 Persistent XSS Vulnerability

Exploit for php platform in category web applications ------------------------------------------------------------------------ Software................b2evolution 4.0.3 Vulnerability...........Persistent Cross-site Scripting Threat Level............Moderate 2/5...