29 matches found
EUVD-2005-4492
Malware in sbrugna...
EUVD-2014-8145
Malware in sbrugna...
CVE-2020-15539
SQL injection can occur in We-com Municipality portal CMS 2.1.x via the cerca/ keywords field...
CVE-2020-15538
XSS can occur in We-com Municipality portal CMS 2.1.x via the cerca/ search bar...
OVOO Movie Portal CMS 3.3.3 SQL Injection
Exploit Title: OVOO Movie Portal CMS v3.3.3 - SQL Injection Date: 2023-08-12 Exploit Author: Ahmet Ümit BAYRAM Vendor: https://codecanyon.net/item/ovoomovie-video-streaming-cms-with-unlimited-tvseries/20180569 Tested on: Kali Linux & MacOS CVE: N/A Request POST /filtermovies/1 HTTP/2 Host:...
Job Portal CMS 2.3.0.2 SQL Injection
==================================================================================================================================== | Title : Job Portal CMS V2.3.0.2 Sql Injection Vulnerability | | Author : indoushka | | Telegram : @indoushka | | Tested on : windows 10 Français V.Pro | | Vendor ...
We-COM Municipality portal CMS cross-site scripting vulnerability
We-COM Municipality portal CMS is a Content Management System CMS from the Italian company We-COM. A cross-site scripting vulnerability exists in We-COM Municipality portal CMS version 2.1.x. The vulnerability stems from a lack of proper validation of client-side data in the web application and c...
CVE-2020-15539
CVE-2020-15539 affects We-COM Municipality portal CMS 2.1.x. Multiple connected sources confirm an SQL injection vulnerability exploitable via the cerca/ keywords field, caused by insufficient input validation and unsafe SQL construction. Public references note that exploitation could allow remot...
We-Com Municipality Portal CMS 2.1.x Cross Site Scripting / SQL Injection
Exploit Title: We-com Municipality portal CMS SQL Injection & XSS Vulnerability Google Dork:N/A Date: 2020-04-17 Exploit Author: @ThelastVvV Vendor Homepage: https://www.we-com.it/ Version: 2.1.x Tested on: 5.5.0-kali1-amd64 --------------------------------------------------------- Vendor contact...
We-Com Municipality Portal CMS 2.1.x Cross Site Scripting / SQL Injection Vulnerabilities
Exploit for php platform in category web applications Exploit Title: We-com Municipality portal CMS SQL Injection & XSS Vulnerability Exploit Author: @ThelastVvV Vendor Homepage: https://www.we-com.it/ Version: 2.1.x Tested on: 5.5.0-kali1-amd64...
CVE-2014-8304
Cross-site scripting XSS vulnerability in In-Portal CMS 5.2.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the nexttemplate parameter to admin/index.php...
Cross site scripting
Cross-site scripting XSS vulnerability in In-Portal CMS 5.2.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the nexttemplate parameter to admin/index.php...
CVE-2014-8304
Cross-site scripting XSS vulnerability in In-Portal CMS 5.2.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the nexttemplate parameter to admin/index.php...
CVE-2014-8304
CVE-2014-8304 is an XSS vulnerability in In-Portal CMS 5.2.0 and earlier. The issue allows remote attackers to inject arbitrary web script or HTML via the next_template parameter to admin/index.php. Affected component: In-Portal CMS web interface (admin panel). Root cause is input handling in nex...
XSS vulnerability in In-Portal CMS
Hello 3APA3A! After I informed developers in August about multiple vulnerabilities in In-Portal CMS and they answered they would fix them soon so wait for disclosure of the first vulnerabilities, I found new hole in this CMS at their official site. This is Cross-Site Scripting vulnerability in...
Vulnerabilities in In-Portal CMS
Hello 3APA3A! These are Cross-Site Scripting and Brute Force vulnerabilities in In-Portal CMS. ------------------------- Affected products: ------------------------- Vulnerable are In-Portal CMS 5.2.0 and previous versions. In version In-Portal CMS 5.2.1 at 31.08.2014 developers fixed XSS...
In-Portal CMS 5.2.0 Cross Site Scripting
Hello list! These are Cross-Site Scripting and Brute Force vulnerabilities in In-Portal CMS. ------------------------- Affected products: ------------------------- Vulnerable are In-Portal CMS 5.2.0 and previous versions. In version In-Portal CMS 5.2.1 at 31.08.2014 developers fixed XSS...
In-Portal CMS Cross Site Scripting
Hello list! After I informed developers in August about multiple vulnerabilities in In-Portal CMS and they answered they would fix them soon so wait for disclosure of the first vulnerabilities, I found new hole in this CMS at their official site. This is Cross-Site Scripting vulnerability in...
Car Portal CMS 3.0 - Multiple Vulnerabilities
No description provided by source...
Tangora Portal CMS 4.0 Action Parameter Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/16034/info Tangora Portal CMS is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have...