Lucene search
K

58 matches found

myhack58
myhack58
added 2009/11/17 12:0 a.m.16 views

PSArt news publishing system 0day-vulnerability warning-the black bar safety net

PSArt news publishing system PSArt Ver 1.2.0 multi-file existsSql injection, the streaking of a system. Google: the Power by CNBaJing. CN Injected statement: http://www.sqnc.edu.cn/kxfzg/news.asp?id=128%20and%201=2%20union%20select%201,username,3,4,5,6,7,password,9%20from%20admin...

0.7AI score
Exploits0
Exploit DB
Exploit DB
added 2009/06/12 12:0 a.m.34 views

TransLucid 1.75 - Multiple Vulnerabilities

transLucid - Cross Site Scripting and HTML Injection Vulnerabilities Version Affected: 1.75 newest Info: transLucidonline is the easy website publishing system with which anyone can create and maintain web content, in multiple languages and based on a growing list of ready-made, professional...

7.4AI score
Exploits0
myhack58
myhack58
added 2009/05/02 12:0 a.m.13 views

Concave Yaya news publishing system WebBasicInfo. asp administrator privileges unauthenticated vulnerability-vulnerability warning-the black bar safety net

Found by:skerwww. zerobox. org The affected version Concave Yaya news publishing system 4. 7ACC version Other version not tested Vulnerability description Concave Yaya news publishing system is an ASP program in conjunction with the ACC and MYSQL CMS system Vulnerability is the path where the...

1.6AI score
Exploits0
Exploit DB
Exploit DB
added 2008/09/03 12:0 a.m.41 views

TransLucid 1.75 - 'FCKeditor' Arbitrary File Upload

www.BugReport.ir AmnPardaz Security Research Team Title: TransLucid 1.75 fckeditor Remote Arbitrary File Upload Vendor: www.translucidonline.com Vulnerable Version: 1.75 prior versions also may be affected Exploitation: Remote with browser Exploit: Available Impact: Medium Fix: N/A Original...

7AI score
Exploits0
CVE
CVE
added 2008/03/26 5:0 p.m.99 views

CVE-2003-1553

Technical details about CVE-2003-1553 (affected product/version, root cause, impact, mitigation) are not provided in the connected documents; no public details are available here. Monitor for updates.

4.3CVSS6.8AI score0.02102EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2008/03/26 5:0 p.m.53 views

CVE-2003-1553

Haakon Nilsen Simple Internet Publishing System SIPS 0.2.2 stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain password and other user information via a direct request to a user-specific configuration directory...

6.4AI score0.02102EPSS
Exploits1References4
securityvulns
securityvulns
added 2007/10/29 12:0 a.m.61 views

SAXON version 5.4 XSS Attack Vulnerability

netVigilance Security Advisory 54 SAXON version 5.4 XSS Attack Vulnerability Description: SAXON is a simple accessible online news publishing system for personal and small corporate site owners. Publish news, using configurable templates, on any .php page on your site. Publish news on a 'per...

4.3CVSS0.8AI score0.01849EPSS
Exploits2
Exploit DB
Exploit DB
added 2006/11/07 12:0 a.m.20 views

NewP News Publishing System 1.0 - 'Class.Database.php' Remote File Inclusion

source: https://www.securityfocus.com/bid/20893/info NewP News Publishing system is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue may allow an attacker to compromise the application and the underlying system; other...

7AI score
Exploits0
Cvelist
Cvelist
added 2006/10/20 1:0 a.m.24 views

CVE-2006-5411

Unrestricted file upload vulnerability in upload.php for Free Web Publishing System FreeWPS, possibly 2.11 and earlier, allows remote attackers to upload and execute arbitrary PHP programs...

7.6AI score0.0257EPSS
Exploits1References5
CVE
CVE
added 2006/10/20 1:0 a.m.47 views

CVE-2006-5411

The CVE-2006-5411 entry concerns an unrestricted file upload in Free Web Publishing System (FreeWPS) via upload.php, potentially affecting version 2.11 and earlier. Remote attackers could upload and execute arbitrary PHP programs. The vulnerability enables partial confidentiality, integrity, and ...

7.5CVSS7.9AI score0.0257EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2006/09/13 10:0 p.m.18 views

CVE-2000-1241

Unspecified vulnerability in Haakon Nilsen simple, integrated publishing system SIPS before 0.2.4 has an unknown impact and attack vectors, related to a "grave security fault."...

6.6AI score0.01399EPSS
Exploits0References1
Cvelist
Cvelist
added 2006/09/13 10:0 p.m.22 views

CVE-2006-4733

PHP remote file inclusion vulnerability in sipssys/code/box.inc.php in Haakon Nilsen simple, integrated publishing system SIPS 0.3.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the configsipssys parameter. NOTE: the product's documentation recommends placing the...

7.5AI score0.03161EPSS
Exploits1References6
CVE
CVE
added 2006/03/23 11:0 a.m.46 views

CVE-2006-1363

The CVE-2006-1363 issue affects Free Web Publishing System (FreeWPS) 2.11 (Justin White/YTZ). A remote attacker can upload a PHP file to the /upload directory via the dirPath parameter and then access that file to execute arbitrary PHP code, enabling remote code execution. Impact is partial confi...

7.5CVSS7.5AI score0.02793EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2006/03/23 11:0 a.m.28 views

CVE-2006-1363

images.php in Justin White aka YTZ Free Web Publishing System FreeWPS 2.11 allows remote attackers to execute arbitrary PHP code by uploading a .php file into the /upload directory as specified in the dirPath parameter, then performing a direct request to that file...

7.5AI score0.02793EPSS
Exploits0References4
Packet Storm
Packet Storm
added 2006/02/13 12:0 a.m.23 views

farsiNews.txt

FarsiNews 2.5 Multiple Vulnerabilities FarsiNews is a News Publishing System That uses Flat files to store its Datas... Farsinews is a persian and improved translation of CuteNews, AjFork, CuteHack and CuteSQL... for more information about FarsiNews Publishing System visit...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2004/05/02 12:0 a.m.27 views

Props 0.6.1 XSS and Remote File Viewing Vulnerability

Title: Props 0.6.1 XSS and Remote File Viewing Vulnerability. Software: Props 0.6.1 Vendor: http://props.sourceforge.net/ Platform: PHP4 and MySQL Description: PROPS is an open, extensible Internet publishing system designed specifically for periodicals such as newspapers and magazines who want t...

Exploits0
NVD
NVD
added 2003/12/31 5:0 a.m.39 views

CVE-2003-1553

Haakon Nilsen Simple Internet Publishing System SIPS 0.2.2 stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain password and other user information via a direct request to a user-specific configuration directory...

4.3CVSS6.4AI score0.02102EPSS
Exploits1References4
NVD
NVD
added 2002/05/29 4:0 a.m.10 views

CVE-2002-0267

preferences.php in Simple Internet Publishing System SIPS before 0.3.1 allows remote attackers to gain administrative privileges via a linebreak in the "theme" field followed by the Status::admin command, which causes the Status line to be entered into the password file...

10CVSS7AI score0.02615EPSS
Exploits0References4
Rows per page
Query Builder