37 matches found
CVE-2020-18066
Cross Site Scripting vulnerability in ZrLog 2.1.0 via the 1 userName and 2 email parameters in post/addComment...
Cross site request forgery (csrf)
CSRF in admin/ajax-hub.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to post a comment on any article via a crafted request...
coinimaging.com XSS vulnerability
Open Bug Bounty ID: OBB-598563 Description| Value ---|--- Affected Website:| coinimaging.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
Cross site scripting
In Crea8social 2018.2, there is Stored Cross-Site Scripting via a post comment...
CVE-2018-9121
In Crea8social 2018.2, there is Stored Cross-Site Scripting via a post comment...
CVE-2018-9121
In Crea8social 2018.2, there is Stored Cross-Site Scripting via a post comment...
CVE-2018-9121
CVE-2018-9121 affects Crea8social 2018.2 with a Stored Cross‑Site Scripting (XSS) vulnerability in post comments. The NVD notes CVSS2/3 base scores of 3.5 (LOW) and 5.4 (MEDIUM) respectively, indicating a potential impact on integrity/ confidentiality as described. Connected sources reiterate sto...
Colorful Blog - Persistent Cross-Site Scripting
Exploit Title : ----------- : Colorful Blog - Stored Cross Site Scripting Author : ----------------- : Besim Google Dork : --------- : - Date : -------------------- : 13/10/2016 Type : -------------------- : webapps Platform : --------------- : PHP Vendor Homepage :-- : - Software link : --------...
ApPHP MicroBlog 1.0.2 - Stored Cross Site Scripting
Exploit for php platform in category web applications Exploit Title : ApPHP MicroBlog 1.0.2 - Stored Cross Site Scripting Author : Besim Google Dork : Date : 12/10/2016 Type : webapps Platform : PHP Vendor Homepage : - Software link : http://www.scriptdungeon.com/jump.php?ScriptID=9162 Descriptio...
CSICE Cross Site Request Forgery / Cross Site Scripting
http://www.csice.org/ Suffers from XSS and CSRF cross site scripting and cross site request forgery attacks. The vulnerability lies in the Post comment filelds in the following page move to this page 'only for authenticated user' http://www.csice.org/student/subjects.html and choose a subject and...
CSICE XSS and CSRF Vulnerability
Exploit for unknown platform in category web applications ================================ CSICE XSS and CSRF Vulnerability ================================ http://www.csice.org/ Suffers from XSS and CSRF cross site scripting and cross site request forgery attacks. The vulnerability lies in the...
Authentication flaw
PHP Jabbers Post Comment 3.0 allows remote attackers to bypass authentication and gain administrative access by setting the PostCommentsAdmin cookie to "logged."...
CVE-2008-4721
PHP Jabbers Post Comment 3.0 allows remote attackers to bypass authentication and gain administrative access by setting the PostCommentsAdmin cookie to "logged."...
CVE-2008-4721
CVE-2008-4721 affects PHP Jabbers Post Comment 3.0. The vulnerability allows remote attackers to bypass authentication and gain administrative access by setting the PostCommentsAdmin cookie to "logged." The connected documents confirm the attack vector is via a manipulated cookie, leading to unau...
PhpGuestbook <= 1.0 XSS
PhpGuestbook = 1.0 XSS Post Comment:- Name: 'scriptalertdocument.cookie/script Website: Comment: 'scriptalertdocument.cookie/script Found By: Qex...
DEBIAN-CVE-2006-0985
Multiple cross-site scripting XSS vulnerabilities in the "post comment" functionality of WordPress 2.0.1 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 name, 2 website, and 3 comment parameters...
CVE-2005-2816
Cross-site scripting XSS vulnerability in Greymatter allows remote attackers to inject arbitrary web script or HTML via a post comment, which is recorded in a log file but not properly handled when the administrator uses "View Control Panel Log" to read the log file...