EUVD-2012-1253

Malware in sbrugna...

CVE-2012-1227

Multiple cross-site request forgery CSRF vulnerabilities in admin.php in pluck 4.7 allow remote attackers to hijack the authentication of admins for requests that 1 modify the admin email address or 2 modify the blog title via a settings action; 3 add a page via an editpage action, or 4 add a...

Pluck 4.7 - Directory Traversal Vulnerability

Exploit for php platform in category web applications Exploit Title: Pluck 4.7 Directory Traversal Google Dork: filetype:php inurl:"/data/modules/albums/albumsgetimage.php?image=" Date: 08/05/15 Exploit Author: Wadeek Vendor Homepage: http://www.pluck-cms.org/?file=home Software Link:...

pluck 4.7 CSRF edit index Vulnerability

Exploit for php platform in category web applications 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 +...

CVE-2012-1227

Multiple cross-site request forgery CSRF vulnerabilities in admin.php in pluck 4.7 allow remote attackers to hijack the authentication of admins for requests that 1 modify the admin email address or 2 modify the blog title via a settings action; 3 add a page via an editpage action, or 4 add a...

CVE-2012-1227

The CVE-2012-1227 entry describes CSRF vulnerabilities in pluck 4.7 (admin.php) that could allow an attacker to hijack admin sessions by performing actions such as (1) changing the admin email address, (2) changing the blog title via a settings action, (3) adding a page via editpage, or (4) addin...

Pluck 4.7 Local File Inclusion / Disclosure

Exploit Title: Pluck 4.7 multiple vulnerabilities Google Dork: Powered by pluck Date: 05/08/2011 Author: Bl4k3 Software Link: http://www.pluck-cms.org/?file=download Version: 4.7 Tested on: Debian CVE : / 1-File Inclusion: includeALBUMSDIR.'/'.$GET'album'.'.php'; Require: if...