CVE-2024-30929

Cross Site Scripting vulnerability in DerbyNet v9.0 and below allows attackers to execute arbitrary code via the 'back' Parameter in playlist.php...

CVE-2024-30929

Cross Site Scripting vulnerability in DerbyNet v9.0 and below allows attackers to execute arbitrary code via the 'back' Parameter in playlist.php...

CVE-2024-30929

CVE-2024-30929 affects DerbyNet v9.0 and earlier; the vulnerability is a cross-site scripting flaw in the playlist.php back parameter that can lead to arbitrary code execution. The CVSS 3.1 base score is 8.0 (AV:N/AC:L/PR:L/UI:R/S:U/C/H/I/H/A:H). Affected product/versions: DerbyNet 9.0 and below....

CVE-2024-30929

Cross Site Scripting vulnerability in DerbyNet v9.0 and below allows attackers to execute arbitrary code via the 'back' Parameter in playlist.php...

DerbyNet 9.0 playlist.php Cross Site Scripting

CVE ID: CVE-2024-30929 Description: A Cross-Site Scripting XSS vulnerability has been found in DerbyNet version 9.0, affecting the playlist.php component. This issue allows remote attackers to execute arbitrary code by exploiting the back parameter. The application does not properly sanitize the...

WordPress /wp-content/plugins/html5-mp3-player-with-playlist/html5plus/playlist.php 信息泄露漏洞

No description provided by source...

WordPress Html5 Mp3 Player Full Path Disclosure

WordPress - Html5 Mp3 Player with Playlist Plugin / || / / / / /\ /\ \ \ \ | / \ / http://h4x0resec.blogspot.com / \ | \ \ / // / \ / / / / Software info |App. : WordPress - html5-mp3-player-with-playlist Plugin |Software: https://wordpress.org/plugins/html5-mp3-player-with-playlist/...

CVE-2013-3530

SQL injection vulnerability in playlist.php in the Spiffy XSPF Player plugin 0.1 for WordPress allows remote attackers to execute arbitrary SQL commands via the playlistid parameter...

Sql injection

SQL injection vulnerability in playlist.php in the Spiffy XSPF Player plugin 0.1 for WordPress allows remote attackers to execute arbitrary SQL commands via the playlistid parameter...

CVE-2013-3530

CVE-2013-3530 affects the Spiffy XSPF Player WordPress plugin (0.1) components playlist.php through the playlist_id parameter, enabling SQL injection. The issue is confirmed in multiple sources (e.g., WPVulndb, PatchStack) and has associated exploit references; exploitation has been reported. Rem...

WordPress Krea3AllMedias SQL Injection

1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 x Official Website: http://www.1337day.com 0 1 x...

Wordpress HD Webplayer 1.1 SQL injection and fix-vulnerability warning-the black bar safety net

Title Wordpress HD Webplayer 1.1 SQL Injection Author: JoinSe7en Program website: http://www.hdwebplayer.com/ Software connected: http://hdwebplayer.com/downloads/hdwebplayerwordpress1.1.zip Affected version: Version 1.1 Tested System: Windows 7, Backtrack 5 r3...

WordPress Plugin HD Webplayer 1.1 - SQL Injection

WordPress Plugin HD Webplayer 1.1 - SQL Injection | | | | \ | | | \ /\ | | | | | | | | | | | | / \ | |/ / | ' \ | | | . | | | | / / /\ \ | | / | | | | | | | | || |\ | | | | | \ \ / \ |||,|| || || ||| | || || \// \ - JoinSe7en...

Wordpress HD Webplayer 1.1 SQL Injection Vulnerability

Exploit for php platform in category web applications | | | | \ | | | \ /\ | | | | | | | | | | | | / \ | |/ / | ' \ | | | . | | | | / / /\ \ | | / | | | | | | | | || |\ | | | | | \ \ / \ |||,|| || || ||| | || || \// \ - JoinSe7en...

WordPress Plugin HD Webplayer 1.1 - SQL Injection

| | | | \ | | | \ /\ | | | | | | | | | | | | / \ | |/ / | ' \ | | | . | | | | / / /\ \ | | / | | | | | | | | || |\ | | | | | \ \ / \ |||,|| || || ||| | || || \// \ - JoinSe7en +----------------------------------------------------------------------+ | Wordpress HD Webplayer 1.1 SQL Injection...

Fully Modded phpBB <= 2021.4.40 Multiple File Include Vulnerabilities

Exploit for unknown platform in category web applications ===================================================================== Fully Modded phpBB = 2021.4.40 Multiple File Include Vulnerabilities ===================================================================== Fully Modded phpBB 2 Remote Fi...

Remote file inclusion

Multiple PHP remote file inclusion vulnerabilities in Teake Nutma Foing 0.2.0 through 0.7.0, as used with phpBB, allow remote attackers to execute arbitrary PHP code via a URL in the phpbbrootpath parameter in 1 index.php, 2 song.php, 3 faq.php, 4 list.php, 5 genm3u.php, and 6 playlist.php...