17 matches found
EUVD-2015-2323
Malware in sbrugna...
EUVD-2014-1047
Malware in sbrugna...
WordPress Photocrati Theme SQL Injection Vulnerability
WordPress is the WordPress Software Foundation's suite of blogging platforms developed using the PHP language, which supports personal blog sites on servers running PHP and MySQL.Photocrati is one of the photography themes. A SQL injection vulnerability exists in the ecomm-sizes.php script in...
CVE-2015-2216
SQL injection vulnerability in ecomm-sizes.php in the Photocrati theme 4.x for WordPress allows remote attackers to execute arbitrary SQL commands via the prodid parameter...
Sql injection
SQL injection vulnerability in ecomm-sizes.php in the Photocrati theme 4.x for WordPress allows remote attackers to execute arbitrary SQL commands via the prodid parameter...
CVE-2015-2216
SQL injection vulnerability in ecomm-sizes.php in the Photocrati theme 4.x for WordPress allows remote attackers to execute arbitrary SQL commands via the prodid parameter...
CVE-2015-2216
The CVE-2015-2216 issue affects the Photocrati WordPress theme (version 4.x). A SQL injection in ecomm-sizes.php can be exploited via the prod_id parameter to execute arbitrary SQL commands. Public exploits exist for this vulnerability per Kaspersky’s advisories. Remediation: upgrade the Photocra...
Photocrati Theme 4.x.x - SQL Injection
http://www.example.com/wp-content/themes/photocrati-theme-path/ecomm-sizes.php?prodid=SQL...
Photocrati Theme 4.x.x - SQL Injection
PoC http://www.example.com/wp-content/themes/photocrati-theme-path/ecomm-sizes.php?prodid=SQL...
WordPress Photocrati Theme 4.x.x SQL Injection
Exploit Title: wordpress theme photocrati 4.X.X SQL INJECTION Google Dork: Designed by Photocrati also powered by Photocrati Date: 23 / 09 / 2011 Exploit Author: ayastar Email : [email protected] Software Link: http://www.photocrati.com Version: 4.X.X Tested on: windows 7 -------- details |...
CVE-2014-100016
Cross-site scripting XSS vulnerability in photocrati-gallery/ecomm-sizes.php in the Photocrati theme for WordPress allows remote attackers to inject arbitrary web script or HTML via the prodid parameter...
CVE-2014-100016
Cross-site scripting XSS vulnerability in photocrati-gallery/ecomm-sizes.php in the Photocrati theme for WordPress allows remote attackers to inject arbitrary web script or HTML via the prodid parameter...
WordPress Photocrati Theme - Full Path Disclosure
Because of this vulnerability, the attackers can obtain sensitive information via an invalid upload request. Solution Update the theme...
Wordpress Theme Photocrati-theme-v4.07 Shell Upload Vulnerability
Exploit for php platform in category web applications Title : Wordpress Theme Photocrati-theme-v4.07 Shell Upload Vulnerability Author : Aloulou Date : 13/05/2014 Facebook : http://www.facebook.com/Aloulou.TN Email: email protected Vendor : www.photocrati.com Google Dork...
WordPress Photocrati Cross Site Scripting
Exploit Title : Wordpress Photocrati-theme Cross Site Scripting Exploit Author : ACC3SS Vendor Homepage : http://www.photocrati.com Google Dork : inurl : inurl:wp-content/themes/photocrati-theme/photocrati-gallery Date : 2014-01-29 Tested on : Windows 7 Location :...
Photocrati Theme - Full Path Disclosure
The photocrati-theme WordPress theme was affected by a Full Path Disclosure security vulnerability...
WordPress "photocrati-theme" Remote File Upload
Exploit for php platform in category web applications .::IN THE NAME OF ALLAH::. Exploit Title: WordPress "photocrati-theme" Remote File Upload "RFU" By : AShiyane Digital Security Team Dork : "inurl:wp-content/themes/photocrati-theme/admin" Tested : Windows 7 / bt5 Exploit : go to gallery in adm...