34 matches found
EUVD-2016-10290
Malware in sbrugna...
EUVD-2017-9954
Malware in sbrugna...
EUVD-2012-1027
Malware in sbrugna...
CVE-2012-10005
A vulnerability has been found in manikandan170890 php-form-builder-class and classified as problematic. Affected by this vulnerability is an unknown functionality of the file PFBC/Element/Textarea.php of the component Textarea Handler. The manipulation of the argument value leads to cross site...
CVE-2012-10005
A vulnerability has been found in manikandan170890 php-form-builder-class and classified as problematic. Affected by this vulnerability is an unknown functionality of the file PFBC/Element/Textarea.php of the component Textarea Handler. The manipulation of the argument value leads to cross site...
Cross site scripting
A vulnerability has been found in manikandan170890 php-form-builder-class and classified as problematic. Affected by this vulnerability is an unknown functionality of the file PFBC/Element/Textarea.php of the component Textarea Handler. The manipulation of the argument value leads to cross site...
CVE-2012-10005 manikandan170890 php-form-builder-class Textarea Textarea.php cross site scripting
A vulnerability has been found in manikandan170890 php-form-builder-class and classified as problematic. Affected by this vulnerability is an unknown functionality of the file PFBC/Element/Textarea.php of the component Textarea Handler. The manipulation of the argument value leads to cross site...
php-form-builder-class 跨站脚本漏洞
php-form-builder-class is an application by manikandan170890, an individual developer. A cross-site scripting vulnerability exists in php-form-builder-class, which stems from a problem with an unknown function in the PFBC/Element/Textarea.php file in the component Textarea Handler, where...
CVE-2022-23375
WikiDocs version 0.1.18 has an authenticated remote code execution vulnerability. An attacker can upload a malicious file using the image upload form through index.php...
CVE-2017-18863
Certain NETGEAR devices are affected by command execution via a PHP form. This affects WN604 3.3.3 and earlier, WNAP210v2 3.5.20.0 and earlier, WNAP320 3.5.20.0 and earlier, WNDAP350 3.5.20.0 and earlier, WNDAP360 3.5.20.0 and earlier, WNDAP620 2.0.11 and earlier, WNDAP660 3.5.20.0 and earlier,...
CVE-2017-18863
Certain NETGEAR devices are affected by command execution via a PHP form. This affects WN604 3.3.3 and earlier, WNAP210v2 3.5.20.0 and earlier, WNAP320 3.5.20.0 and earlier, WNDAP350 3.5.20.0 and earlier, WNDAP360 3.5.20.0 and earlier, WNDAP620 2.0.11 and earlier, WNDAP660 3.5.20.0 and earlier,...
Command injection
Certain NETGEAR devices are affected by command execution via a PHP form. This affects WN604 3.3.3 and earlier, WNAP210v2 3.5.20.0 and earlier, WNAP320 3.5.20.0 and earlier, WNDAP350 3.5.20.0 and earlier, WNDAP360 3.5.20.0 and earlier, WNDAP620 2.0.11 and earlier, WNDAP660 3.5.20.0 and earlier,...
CVE-2017-18863
Certain NETGEAR devices are affected by command execution via a PHP form. This affects WN604 3.3.3 and earlier, WNAP210v2 3.5.20.0 and earlier, WNAP320 3.5.20.0 and earlier, WNDAP350 3.5.20.0 and earlier, WNDAP360 3.5.20.0 and earlier, WNDAP620 2.0.11 and earlier, WNDAP660 3.5.20.0 and earlier,...
CVE-2017-18863
CVE-2017-18863 affects several NETGEAR devices (WN604; WNAP210v2; WNAP320; WNDAP350; WNDAP360; WNDAP620; WNDAP660; WND930; WAC120) where a PHP form enables command execution. Root cause: input handling in the web interface allows arbitrary commands to be executed due to a PHP form vulnerability. ...
CVE-2016-9484
The generated PHP form code does not properly validate user input folder directories, allowing a remote unauthenticated attacker to perform a path traversal and access arbitrary files on the server. The PHP FormMail Generator website does not use version numbers and is updated continuously. Any P...
Zigaform - SQL injection vulnerability
Zigaform the modelforms. in php form parameters into SQL statements cause SQL injection Injection point: http://localhost/PATH/formbuilder/frontend/viewform/? form=SQL payload: AND SELECT 2120 FROMSELECT COUNT,CONCAT0x716a7a6271,SELECT ELT2120=2120,1,0x7171767071,FLOORRAND02,md5233x FROM...
Zigaform - SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Zigaform - PHP Form Builder - Contact & Survey v2.9.1 - SQL Injection Google Dork: N/A Date: 10.02.2017 Vendor Homepage: http://php-form-builder.zigaform.com/ Software Buy:...
Zigaform - SQL Injection
Zigaform - SQL Injection Exploit Title: Zigaform - PHP Form Builder - Contact & Survey v2.9.1 - SQL Injection Google Dork: N/A Date: 10.02.2017 Vendor Homepage: http://php-form-builder.zigaform.com/ Software Buy: https://codecanyon.net/item/zigaform-php-form-builder-contact-survey/14889427 Demo:...
Zigaform PHP Form Builder Contact And Survey 2.9.1 SQL Injection
Exploit Title: Zigaform - PHP Form Builder - Contact & Survey v2.9.1 - SQL Injection Google Dork: N/A Date: 10.02.2017 Vendor Homepage: http://php-form-builder.zigaform.com/ Software Buy: https://codecanyon.net/item/zigaform-php-form-builder-contact-survey/14889427 Demo:...
RoseOnlineCMS <= 3 B1 Remote Login Bypass Exploit
No description provided by source. '/ -.- --------------------oOO------OOo------------------- | RoseOnlineCMS = 3 B1 Remote Login Bypass Exploit | | works only with magicquotesgpc = off | ------------------------------------------------------ ! Discovered: cr4wl3r cr4wl3r!linuxmail.org ! Download...