WordPress 'wp-comments-post.php'跨站脚本漏洞

WordPress 2.8.1 WordPress是一款流行的blog系统。 WordPress 'wp-comments-post.php'不正确处理用户输入，远程攻击者可以利用漏洞进行跨站脚本攻击，获得敏感信息。 'wp-comments-post.php'脚本对评注信息缺少过滤，提交恶意脚本代码并诱使用户访问可导致获得目标用户浏览器COOKIE等敏感信息。 Bugraq ID: 35797 CNCAN ID：CNCAN-2009072508 厂商解决方案 目前没有解决方案提供： http://wordpress.org/...

WordPress 2.8.1 - url Cross-Site Scripting

WordPress 2.8.1 - url Cross-Site Scripting !/bin/bash echo "wp281.quickprz // iso^kpsbr" SITE=$1 COMMENT=$2 MESSAGE="h4x0riZed by the superfreakaz0rz" if "X$SITE" = "X" ; then echo "$0 postID" echo "f.e. $0 www.worstpress.eu" exit fi if "X$POSTID" = "X" ; then POSTID=1 fi echo "+ building payload...

Loggix Project 9.4.5 Blind SQL Injection

Salvatore "drosophila" Fresta + Application: Loggix Project + Version: 9.4.5 + Website: http://loggix.gotdns.org + Bugs: A Blind SQL Injection + Exploitation: Remote + Date: 10 Apr 2009 + Discovered by: Salvatore "drosophila" Fresta + Author: Salvatore "drosophila" Fresta + Contact: e-mail:...

Loggix Project 9.4.5 SQL Injection

Salvatore "drosophila" Fresta + Application: Loggix Project + Version: 9.4.5 + Website: http://loggix.gotdns.org + Bugs: A Blind SQL Injection + Exploitation: Remote + Date: 10 Apr 2009 + Discovered by: Salvatore "drosophila" Fresta + Author: Salvatore "drosophila" Fresta + Contact: e-mail:...

CVE-2009-0643

CVE-2009-0643 describes a static code injection in Simple PHP News 1.0 final. An attacker can inject arbitrary PHP code into news.txt via the post parameter and then trigger execution by requesting display.php, indicating a combination of unsafeguarded input handling and file-based code execution...

CVE-2009-0499

Cross-site request forgery CSRF vulnerability in the forum code in Moodle 1.7 before 1.7.7, 1.8 before 1.8.8, and 1.9 before 1.9.4 allows remote attackers to delete unauthorized forum posts via a link or IMG tag to post.php...

Wordpress 2.7.0 admin remote code execution vulnerability

这个漏洞出在后台: wp-admin/post.php if currentusercan'editpost', $postID if $last = wpcheckpostlock $post-ID $lastuser = getuserdata $last ; $lastusername = $lastuser ? $lastuser-displayname : 'Somebody'; $message = sprintf 'Warning: %s is currently editing this post' , wpspecialchars $lastusername ;...

Wordpress 2.7.0 admin remote code execution vulnerability-vulnerability warning-the black bar safety net

by Ryatpuretot mail: puretot at gmail dot com team: http://www.80vul.com date: 2008-12-18 Analysis: This vulnerability out in the background: wp-admin/post.php if currentusercan'editpost', $postID if $last = wpcheckpostlock $post-ID $lastuser = getuserdata $last ; $lastusername = $lastuser ?...

MyPHP Forum 3.0 - Edit Topics / Blind SQL Injection

/ ----------------------------------------------------------------------------------- MyPHP Forum Final = 3.0 Edit Topics/Blind SQL Injection Remote Vulnerabilities ----------------------------------------------------------------------------------- Discovered By StAkeRathotmaildotit Download On...

myphpforum-sql.txt

/ ----------------------------------------------------------------------------------- MyPHP Forum Final = 3.0 Edit Topics/Blind SQL Injection Remote Vulnerabilities ----------------------------------------------------------------------------------- Discovered By StAkeRathotmaildotit Download On...

kusaba2-exec.txt

Will work if they have left the loadreceiver.php script un-edited. After execution: Yes these are the exact URLs http://www.kusaba.image.board/url/change this to the same value as your KUROOTDIRpost.php?pc=print "Hello"; http://www.kusaba.image.board/url/change this to the same value as your...

CVE-2008-2962

Multiple cross-site scripting XSS vulnerabilities in MyBlog allow remote attackers to inject arbitrary web script or HTML via the 1 s and 2 sort parameters to index.php, and the 3 id parameter to post.php...

CVE-2008-2963

CVE-2008-2963 affects MyBlog via Multiple SQL injection vulnerabilities. The issues occur in the web app’s PHP files where unsafely handled user input is used in SQL queries: the view parameter to index.php, and the id parameter to member.php and post.php. Root cause is improper input handling le...

Arbitrary file edit, Local file include, Directory traversal and Full path disclosure in WordPress

Здравствуйте 3APA3A! Сообщаю вам о найденной мною Arbitrary file edit, Local file include, Directory traversal и Full path disclosure уязвимостях в WordPress. Дыры в файле templates.php в параметрах file и page и файлах edit-pages.php, categories.php, edit-comments.php, moderation.php, post.php и...

CVE-2007-6566

CVE-2007-6566 describes an SQL injection in post.php of XZero Community Classifieds 4.95.11 and earlier. The vulnerability allows remote attackers to execute arbitrary SQL commands via the subcatid parameter to index.php. The NVD entry lists a CVSS v2 base score of 7.5 (High). No exploitation det...

CVE-2007-5157

CVE-2007-5157 concerns a PHP remote file inclusion vulnerability in the PHP Fidonet Tosser (PhFiTo) 1.3.0 running with phFidoNode. The flaw lies in phfito-post.php, where an attacker can supply a URL in the SRC_PATH parameter to phfito-post and cause arbitrary PHP code execution on the affected s...

phfito-rfi.txt

?????????? ??????????????? ??????????????????? ??????????????????????? ?????????????????????????? ?????????????????????????????? ????????????????????????????????? ??????????????????????????????????? ????????????????????????????????????? ???????????????????????????????????????...

PhFiTo 1.3.0 - SRC_PATH Remote File Inclusion

PhFiTo 1.3.0 - SRCPATH Remote File Inclusion ?????????? ??????????????? ??????????????????? ??????????????????????? ?????????????????????????? ?????????????????????????????? ????????????????????????????????? ??????????????????????????????????? ?????????????????????????????????????...

PhFiTo 1.3.0 - 'SRC_PATH' Remote File Inclusion

?????????? ??????????????? ??????????????????? ??????????????????????? ?????????????????????????? ?????????????????????????????? ????????????????????????????????? ??????????????????????????????????? ????????????????????????????????????? ???????????????????????????????????????...

webed-rfi.txt

--------------------------------------------------------------- Multiple Remote File Inclusion Vulnerability --------------------------------------------------------------- Founded by : Seph1roth Download Script: http://sourceforge.net/projects/ed-engine/ WebED-0.8999.tar.gz Exploit:...