44 matches found
CVE-2020-37225
Powie's WHOIS Domain Check 0.9.31 contains a persistent cross-site scripting vulnerability that allows authenticated attackers to inject arbitrary JavaScript by exploiting unsanitized input fields in plugin settings. Attackers can submit malicious payloads through textarea and input elements in t...
EUVD-2008-2668
Malware in sbrugna...
EUVD-2012-1237
Malware in sbrugna...
EUVD-2008-4328
Malware in sbrugna...
EUVD-2008-4336
Malware in sbrugna...
EUVD-2008-4338
Malware in sbrugna...
EUVD-2012-1236
Malware in sbrugna...
EUVD-2025-3305
Malicious code in bioql PyPI...
CVE-2025-23641 WordPress Powie's pLinks PagePeeker plugin <= 1.0.2 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in PowieT Powie's pLinks PagePeeker plinks allows DOM-Based XSS.This issue affects Powie's pLinks PagePeeker: from n/a through = 1.0.2...
WordPress Powie's pLinks PagePeeker plugin <= 1.0.2 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by SOPROBRO in WordPress Plugin Powie's pLinks PagePeeker versions = 1.0.2...
WordPress plugin Powie pLinks PagePeeker 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site...
Powie's WHOIS Domain Check < 0.9.33 - Authenticated Stored Cross-Site Scripting
The plugin does not properly sanitise and encode user input when output back in its settings page, leading to authenticated from high privileged users stored Cross-Site Scripting XSS issues...
Powie PForum 1.1x Username Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/4165/info Powie PForum is web forum software, written in PHP and back-ended by MySQL. It will run on most Unix and Linux variants, as well as Microsoft Windows operating systems. PForum is prone to cross-site scripting...
Powie pNews 2.11 - (SQL Injection / XSS) Remote Vulnerabilities
Exploit for php platform in category web applications Exploit Title: Powie pNews 2.11 - SQL Injection / XSS Remote Vulnerabilities Date: 26/6/2012 Author: GoLdM Vendor or Software Link: http://powie.de/ Version: 2.11 Category:: SQL Injection / XSS Google dork: intext:"-- pNews 2.11 © Thomas...
Powie pFile 1.01 SQL injection vulnerability
Exploit for php platform in category web applications +----------------------------------------------------------------------+ Exploit Title: Powie pFile 1.01 SQL injection vulnerability Google Dork: inurl:pfile/file.php?id= intext:"-- pFile 1.01 OS" Date: 22/06/2012 Exploit Author: Tunisian...
CVE-2012-1211
Cross-site scripting XSS vulnerability in pfile/kommentar.php in Powie pFile 1.02 allows remote attackers to inject arbitrary web script or HTML via the filecat parameter...
Cross site scripting
Cross-site scripting XSS vulnerability in pfile/kommentar.php in Powie pFile 1.02 allows remote attackers to inject arbitrary web script or HTML via the filecat parameter...
Sql injection
SQL injection vulnerability in pfile/file.php in Powie pFile 1.02 allows remote attackers to execute arbitrary SQL commands via the id parameter...
CVE-2012-1210
CVE-2012-1210 describes an SQL injection in Powie pFile 1.02, specifically in pfile/file.php, exploitable via the id parameter to allow remote execution of arbitrary SQL commands. The CVSS v2 base score is 7.5 (HIGH) with network access, low attack complexity, no authentication, and partial impac...
CVE-2012-1211
CVE-2012-1211: XSS in Powie pFile 1.02 via pfile/kommentar.php (filecat parameter). Affected component: Powie pFile 1.02; vulnerability described as cross-site scripting, enabling remote script/HTML injection. CVSS v2 base score 4.3 (Medium) with network attack vector, no authentication, partial ...