PT-2026-28493

Name of the Vulnerable Software and Affected Versions TSPortal versions prior to 34 Description TSPortal, the WikiTide Foundation’s in-house platform used by the Trust and Safety team, was found to have a flaw that allowed attackers to create arbitrary user records in the database. This was...

PHPGurukul Job Portal SQL注入漏洞

PHPGurukul Job Portal is a PHP-based job search website system from PHPGurukul. A SQL injection vulnerability exists in PHPGurukul Job Portal version 1.0, which originates from the search parameter in /jobportal/index.php...

FS Trademe Clone - id SQL Injection

FS Trademe Clone - id SQL Injection Exploit Title: FS Trademe Clone - 'id' SQL Injection Date: 2017-10-24 Exploit Author: 8bitsec Vendor Homepage: https://fortunescripts.com/ Software Link: https://fortunescripts.com/product/trademe-clone/ Version: 24 October 17 Tested on: Kali Linux 2.0 | Mac OS...

Classified Portal Software 5.1 SQL Injection

Exploit Title: Classified Portal Software 5.1 - SQL Injection Google Dork: N/A Date: 11.04.2017 Vendor Homepage: http://www.myclassifiedscript.com/ Software: http://www.myclassifiedscript.com/demo.html Demo: http://www.clpage.com/ Version: 5.1 Tested on: Win7 x64, Kali Linux x64 Exploit Author:...

MyClassifiedScript 5.1 - SQL Injection

Exploit Title: Classified Portal Software 5.1 - SQL Injection Google Dork: N/A Date: 11.04.2017 Vendor Homepage: http://www.myclassifiedscript.com/ Software: http://www.myclassifiedscript.com/demo.html Demo: http://www.clpage.com/ Version: 5.1 Tested on: Win7 x64, Kali Linux x64 Exploit Author:...

eClinicalWorks (CCMR) - Multiple Vulnerabilities

Title: eClinicalWorks CCMR - Multiple Vulnerabilities Vendor: https://www.eclinicalworks.com Product: eClinicalWorks Population Health CCMR Client Portal Software URL: https://www.eclinicalworks.com/products-services/population-health-ccmr/ Credit: Jerold Hoong -----------------------------------...

IBM WebSphere Portal JCR Information Disclosure (PI36150)

The version of IBM WebSphere Portal installed on the remote Windows host is affected by an information disclosure vulnerability due to improper access control enforcement of the JCR component. A remote, unauthenticated attacker, using a specially crafted request, can exploit this to gain access t...

Portix-PHP 0.4 Index.PHP Directory Traversal Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/4038/info Portix-PHP is freely available web portal software. It is written in PHP and will run on most Unix and Linux variants. Portix-PHP is prone to directory traversal attacks. The script index.php does not sufficient...

magic-portal 2.1 - SQL Injection Vulnerability

No description provided by source. :::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::: Exploit Title :magic-portal SQL injection Vulnerability Author: alnjm33 Software Link: Version: 2.1 Tested on: Version 2.1 My home : Sec-war.com...

In-portal 4.3.1 - index.php?env Local File Inclusion

In-portal 4.3.1 - index.php?env Local File Inclusion @ ===================================================================================@ / Title : Local File Inclusion Vulnerability \ Software : In-Portal 4.3.1 Vendor : http://www.in-portal.net/ - - Date : 01 August 2009 Indonesia Author :...

MetaDot 5.6.5.4b5 - Multiple Vulnerabilities

MetaDot 5.6.5.4b5 - Multiple Vulnerabilities MetaDot Multiple Vulnerabilities Vendor: Metadot Corporation Product: MetaDot Version: = 5.6.5.4b5 Website: http://www.metadot.com/ BID: 9439 Description: Metadot is a popular open source portal software GPL recognized for its revolutionary ease-of-use...

Portix-PHP 0.4 - 'index.php' Directory Traversal

source: https://www.securityfocus.com/bid/4038/info Portix-PHP is freely available web portal software. It is written in PHP and will run on most Unix and Linux variants. Portix-PHP is prone to directory traversal attacks. The script index.php does not sufficiently filter '../' sequences from web...