Lucene search
K

22 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2010-3479

Malware in sbrugna...

6.8CVSS6.4AI score0.01117EPSS
Exploits1References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.11 views

EUVD-2010-3478

Malware in sbrugna...

6.8CVSS6.4AI score0.02367EPSS
Exploits1References7
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.21 views

php microcms 1.0.1 - Multiple Vulnerabilities

No description provided by source. ''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | | | | | || / \ || | | | || ||// \/|/ http://www.exploit-db.com/moaub-15-php-microcms-1-0-1-multiple-remote-vulnerabilities/ ''' Title : PHP MicroCMS 1.0.1 Multiple Remote...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.27 views

PHP MicroCMS 1.0.1 CSRF and XSS Vulnerabilities

No description provided by source. Vulnerability ID: HTB22765 Reference: http://www.htbridge.ch/advisory/xsrfcsrfinphpmicrocms.html Product: PHP MicroCMS Vendor: ApPHP http://www.apphp.com/ Vulnerable Version: 1.0.1 and probably prior versions Vendor Notification: 21 December 2010 Vulnerability...

7.1AI score
Exploits0
0day.today
0day.today
added 2011/01/07 12:0 a.m.22 views

PHP MicroCMS 1.0.1 CSRF and XSS Vulnerabilities

Exploit for php platform in category web applications Product: PHP MicroCMS Vendor: ApPHP http://www.apphp.com/ Vulnerable Version: 1.0.1 and probably prior versions Vendor Notification: 21 December 2010 Vulnerability Type: CSRF Cross-Site Request Forgery Status: Not Fixed, Vendor Alerted, Awaiti...

7.1AI score
Exploits0
securityvulns
securityvulns
added 2011/01/07 12:0 a.m.50 views

XSRF (CSRF) in PHP MicroCMS

Vulnerability ID: HTB22765 Reference: http://www.htbridge.ch/advisory/xsrfcsrfinphpmicrocms.html Product: PHP MicroCMS Vendor: ApPHP http://www.apphp.com/ Vulnerable Version: 1.0.1 and probably prior versions Vendor Notification: 21 December 2010 Vulnerability Type: CSRF Cross-Site Request Forger...

7AI score
Exploits0
securityvulns
securityvulns
added 2011/01/07 12:0 a.m.42 views

XSS vulnerability in PHP MicroCMS

Vulnerability ID: HTB22764 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinphpmicrocms.html Product: PHP MicroCMS Vendor: ApPHP http://www.apphp.com/ Vulnerable Version: 1.0.1 and probably prior versions Vendor Notification: 21 December 2010 Vulnerability Type: XSS Cross Site Scripti...

0.1AI score
Exploits0
exploitpack
exploitpack
added 2011/01/06 12:0 a.m.20 views

PHP MicroCMS 1.0.1 - Cross-Site Request Forgery Cross-Site Scripting

PHP MicroCMS 1.0.1 - Cross-Site Request Forgery Cross-Site Scripting Vulnerability ID: HTB22765 Reference: http://www.htbridge.ch/advisory/xsrfcsrfinphpmicrocms.html Product: PHP MicroCMS Vendor: ApPHP http://www.apphp.com/ Vulnerable Version: 1.0.1 and probably prior versions Vendor Notification...

0.8AI score
Exploits0
Exploit DB
Exploit DB
added 2011/01/06 12:0 a.m.41 views

PHP MicroCMS 1.0.1 - 'page_text' Cross-Site Scripting

source: https://www.securityfocus.com/bid/45702/info PHP MicroCMS is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the conte...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2011/01/06 12:0 a.m.21 views

PHP MicroCMS 1.0.1 Cross Site Request Forgery / Cross Site Scripting

================================== Vulnerability ID: HTB22765 Reference: http://www.htbridge.ch/advisory/xsrfcsrfinphpmicrocms.html Product: PHP MicroCMS Vendor: ApPHP http://www.apphp.com/ Vulnerable Version: 1.0.1 and probably prior versions Vendor Notification: 21 December 2010 Vulnerability...

0.2AI score
Exploits0
exploitpack
exploitpack
added 2011/01/06 12:0 a.m.17 views

PHP MicroCMS 1.0.1 - page_text Cross-Site Scripting

PHP MicroCMS 1.0.1 - pagetext Cross-Site Scripting source: https://www.securityfocus.com/bid/45702/info PHP MicroCMS is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code ...

6.8AI score
Exploits0
Exploit DB
Exploit DB
added 2011/01/06 12:0 a.m.21 views

PHP MicroCMS 1.0.1 - Cross-Site Request Forgery / Cross-Site Scripting

Vulnerability ID: HTB22765 Reference: http://www.htbridge.ch/advisory/xsrfcsrfinphpmicrocms.html Product: PHP MicroCMS Vendor: ApPHP http://www.apphp.com/ Vulnerable Version: 1.0.1 and probably prior versions Vendor Notification: 21 December 2010 Vulnerability Type: CSRF Cross-Site Request Forger...

7.4AI score
Exploits0
htbridge
htbridge
added 2010/12/21 12:0 a.m.29 views

Cross-site Request Forgery (CSRF) Vulnerabilities in PHP MicroCMS

High-Tech Bridge SA Security Research Lab has discovered vulnerabilities in PHP MicroCMS which could be exploited to perform cross-site request forgery attacks. 1 Cross-site request forgery CSRF vulnerabilities in PHP MicroCMS 1.1 The vulnerability exists due to insufficient validation of the...

5.1CVSS7.4AI score
Exploits0Affected Software1
NVD
NVD
added 2010/09/22 8:0 p.m.26 views

CVE-2010-3480

Directory traversal vulnerability in index.php in ApPHP PHP MicroCMS 1.0.1, when magicquotesgpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. dot dot in the page parameter...

6.8CVSS7.2AI score0.02367EPSS
Exploits1References6
Prion
Prion
added 2010/09/22 8:0 p.m.17 views

Sql injection

Multiple SQL injection vulnerabilities in login.php in ApPHP PHP MicroCMS 1.0.1, when magicquotesgpc is disabled, allow remote attackers to execute arbitrary SQL commands via the 1 username and 2 password variables, possibly related to include/classes/Login.php. NOTE: some of these details are...

6.8CVSS9.5AI score0.01117EPSS
Exploits1References7Affected Software1
CVE
CVE
added 2010/09/22 7:0 p.m.60 views

CVE-2010-3481

CVE-2010-3481 affects ApPHP PHP MicroCMS 1.0.1. It discloses multiple SQL injection vulnerabilities in login.php when magic_quotes_gpc is disabled, allowing remote attackers to potentially execute arbitrary SQL via (1) user_name and (2) password variables, possibly tied to include/classes/Login.p...

6.8CVSS9AI score0.01117EPSS
Exploits1References7Affected Software1
Cvelist
Cvelist
added 2010/09/22 7:0 p.m.26 views

CVE-2010-3480

Directory traversal vulnerability in index.php in ApPHP PHP MicroCMS 1.0.1, when magicquotesgpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. dot dot in the page parameter...

7.2AI score0.02367EPSS
Exploits1References6
0day.today
0day.today
added 2010/09/16 12:0 a.m.27 views

PHP MicroCMS 1.0.1 Multiple Remote Vulnerabilities

Exploit for php platform in category web applications ================================================== PHP MicroCMS 1.0.1 Multiple Remote Vulnerabilities ================================================== Title : PHP MicroCMS 1.0.1 Multiple Remote Vulnerabilities Affected Version : PHP MicroCMS...

7.1AI score
Exploits0
OpenVAS
OpenVAS
added 2010/09/16 12:0 a.m.33 views

PHP MicroCMS Local File Include and SQL Injection Vulnerabilities

PHP MicroCMS is prone to a local file-include vulnerability and multiple SQL-injection vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit the local file-include vulnerability using directory- traversal strings to view and execute arbitrary local fil...

6.8CVSS7.2AI score0.02367EPSS
Exploits1References2
Packet Storm
Packet Storm
added 2010/09/16 12:0 a.m.29 views

Month Of Abysssec Undisclosed Bugs - PHP MicroCMS 1.0.1

''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | wronglogin = false; if !$this-isloggedin && $POST'submit' == "Login" && !empty$POST'username' && !empty$POST'password' $this-dologin$POST'username', $POST'password'; else if $POST'submitlogout' == "Logout"...

7.4AI score
Exploits0
Rows per page
Query Builder