13 matches found
EUVD-2008-3559
Malware in sbrugna...
EUVD-2008-3558
Malware in sbrugna...
Pligg 9.9.5 'CAPTCHA' Registration Automation Security Bypass Weakness
No description provided by source. source: http://www.securityfocus.com/bid/30518/info Pligg is prone to a security-bypass weakness. Successfully exploiting this issue will allow an attacker to register multiple new users through an automated process. This may lead to other attacks. Pligg 9.9.5 i...
Pligg 9.9.5 - CSRF Protection Bypass and Captcha Bypass
No description provided by source. Written By Michael Brooks Special thanks to str0ke! Pligg - XSRF Protection Bypass and Captcha Bypass affects 9.9.5 XSRF Protection Bypass html !-- Remove this iframe from this file and place it on a site that you want to force people to vote for. Change these...
Pligg 9.9.5 Cross Site Request Forgery
Written By Michael Brooks Special thanks to str0ke! Pligg - XSRF Protection Bypass and Captcha Bypass affects 9.9.5 XSRF Protection Bypass ' width="0%" height="0%" var pliggstorytovotefor="/story.php?title=pliggxss"; function r var Z=false; ifwindow.XMLHttpRequest try Z=new XMLHttpRequest...
Pligg 9.9.5 XSRF Protection Bypass and Captcha Bypass
No description provided by source. Written By Michael Brooks Special thanks to str0ke! Pligg - XSRF Protection Bypass and Captcha Bypass affects 9.9.5 XSRF Protection Bypass html !-- Remove this iframe from this file and place it on a site that you want to force people to vote for. Change these...
Pligg 9.9.5b Upload Shell / SQL Injection Exploit
!/usr/bin/perl =about Pligg 9.9.5 Beta Perl exploit AUTHOR discovered & written by Ams ax330d doggy gmail dot com VULN. DESCRIPTION: Vulnerability hides in 'evb/checkurl.php' unfiltered $GET'url' parameter. Actually, it has filtration. Filtration strips tags and converts html special chars , but ...
Pligg 9.9.5b - Arbitrary File Upload / SQL Injection
!/usr/bin/perl =about Pligg 9.9.5 Beta Perl exploit AUTHOR discovered & written by Ams ax330d doggy gmail dot com VULN. DESCRIPTION: Vulnerability hides in 'evb/checkurl.php' unfiltered $GET'url' parameter. Actually, it has filtration. Filtration strips tags and converts html special chars , but ...
Pligg 9.9.5b (check_url.php url) Upload Shell/SQL Injection Exploit
No description provided by source. !/usr/bin/perl =about Pligg 9.9.5 Beta Perl exploit AUTHOR discovered & written by Ams ax330d doggy gmail dot com VULN. DESCRIPTION: Vulnerability hides in 'evb/checkurl.php' unfiltered $GET'url' parameter. Actually, it has filtration. Filtration strips tags and...
Pligg 9.9.5b (check_url.php url) Upload Shell/SQL Injection Exploit
Exploit for unknown platform in category web applications =================================================================== Pligg 9.9.5b checkurl.php url Upload Shell/SQL Injection Exploit =================================================================== !/usr/bin/perl =about Pligg 9.9.5 Beta...
Pligg 9.9.5b - Arbitrary File Upload SQL Injection
Pligg 9.9.5b - Arbitrary File Upload SQL Injection !/usr/bin/perl =about Pligg 9.9.5 Beta Perl exploit AUTHOR discovered & written by Ams ax330d doggy gmail dot com VULN. DESCRIPTION: Vulnerability hides in 'evb/checkurl.php' unfiltered $GET'url' parameter. Actually, it has filtration. Filtration...
Cross site scripting
Cross-site scripting XSS vulnerability in index.php in Pligg 9.9.5 allows remote attackers to inject arbitrary web script or HTML via the category parameter...
CVE-2008-3572
Cross-site scripting XSS vulnerability in index.php in Pligg 9.9.5 allows remote attackers to inject arbitrary web script or HTML via the category parameter...