Server side request forgery (ssrf)

Server-Side Request Forgery SSRF vulnerability in Infoline Project Management System allows Server Side Request Forgery.This issue affects Project Management System: before 4.09.31.125...

Dexs PM System Wordpress Plugin - Authenticated Persistent XSS (0day)

No description provided by source. =============================================================================== | | / / / / / / // / / -/ - / // / / / / // / ////,//////,// ///, / // team PUBLIC SECURITY ADVISORY | |...

WordPress Dexs PM System Plugin - Authenticated Persistent XSS

Dexs PM System plugin is prone to an authenticated persistent XSS vulnerability that exists because of input validation and output sanitization of the subject paramater. It allows an attacker to potentially hijack session authentication Solution Upgrade the plugin...

WordPress Plugin Dexs PM System - (Authenticated) Persistent Cross-Site Scripting

WordPress Plugin Dexs PM System - Authenticated Persistent Cross-Site Scripting =============================================================================== | | / / / / / / // / / -/ - / // / / / / // / ////,//////,// ///, / // team PUBLIC SECURITY ADVISORY | |...

Invision Power Board <= 2.1.5 (from_contact) SQL Injection Exploit

Exploit for unknown platform in category web applications ================================================================== Invision Power Board = 2.1.5 fromcontact SQL Injection Exploit ================================================================== !/usr/bin/perl IPB =2.1.4 exploit possibly...

Invision Power Board 2.1.5 - from_contact SQL Injection

Invision Power Board 2.1.5 - fromcontact SQL Injection !/usr/bin/perl IPB =2.1.4 exploit possibly 2.1.5 too Brought to you by the Ykstortion security team. The bug is in the pm system so you must have a registered user. The exploit will extract a password hash from the forum's data base of the...