7 matches found
psnews-lfi.txt
o bug /". . . . .-' -...-'/ o o , . o -...--".\ vuln.: PsNews 1.1 show.php newspath Local File Inclusion author: [email protected] download: http://www.strefaphp.net/index.php?page=download&what=download&fid=12 dork: "Powered by PsNews" ; /news/show.php: ... iferegi"://", $newspath die"Nieautoryzowa...
PsNews 1.1 (show.php newspath) Local File Inclusion Vulnerability
No description provided by source. o bug /". . . . .-' -...-'/ o o , . o -...--".\ vuln.: PsNews 1.1 show.php newspath Local File Inclusion author: [email protected] download: http://www.strefaphp.net/index.php?page=download&what=download&fid=12 dork: "Powered by PsNews" ; /news/show.php:...
PsNews 1.1 - 'show.php?newspath' Local File Inclusion
o bug /". . . . .-' -...-'/ o o , . o -...--".\ vuln.: PsNews 1.1 show.php newspath Local File Inclusion author: [email protected] download: http://www.strefaphp.net/index.php?page=download&what=download&fid=12 dork: "Powered by PsNews" ; /news/show.php: ... iferegi"://", $newspath die"Nieautoryzowa...
PsNews 1.1 - show.php?newspath Local File Inclusion
PsNews 1.1 - show.php?newspath Local File Inclusion o bug /". . . . .-' -...-'/ o o , . o -...--".\ vuln.: PsNews 1.1 show.php newspath Local File Inclusion author: [email protected] download: http://www.strefaphp.net/index.php?page=download&what=download&fid=12 dork: "Powered by PsNews" ;...
CVE-2004-1665
PsNews is affected by cross-site scripting (XSS) flaws in index.php for version 1.1 (and older than 1.2). The OpenVAS/Nessus entries describe multiple parameter XSS allowing the attacker to steal cookies from legitimate users. The root cause is described as XSS in index.php via the no parameter, ...
CVE-2004-1665
Cross-site scripting XSS vulnerability in index.php in PsNews 1.1 allows remote attackers to inject arbitrary web script or HTML via the no parameter...
PSNews 1.1 - 'No' Cross-Site Scripting
source: https://www.securityfocus.com/bid/11124/info PSNews is a Web application that is implemented in PHP. PSNews is affected by a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied URI input. This vulnerability is reported t...