69 matches found
NCT Jobs Portal Script SQL Injection / Cross Site Scripting
Exploit Title: XSS and Authentication bypass in NCT Jobs Portal Script Date: 24-apr-2010 Author: Sid3^effects Software Link: N/a CVE : Code : XSS and Authentication bypass in NCT Jobs Portal Script Vendor:http://www.ncrypted.net/ Author:Sid3^effects Description : NCT Jobs Portal script is a web...
NCT Jobs Portal Script - Cross-Site Scripting / Authentication Bypass
Exploit Title: XSS and Authentication bypass in NCT Jobs Portal Script Date: 24-apr-2010 Author: Sid3^effects Software Link: N/a CVE : Code : XSS and Authentication bypass in NCT Jobs Portal Script Vendor:http://www.ncrypted.net/ Author:Sid3^effects Description : NCT Jobs Portal script is a web...
Old Y article management system of the injection 0day-vulnerability warning-the black bar safety net
Magic springsB. S. N. hacking Defense Vulnerability rating: moderate Vulnerability description: The vulnerability appears in the js. asp, we first look at the source code. Code: If CheckStrRequest"ClassNo" "" then ClassNo = splitCheckStrRequest"ClassNo","|" 'Here is to get the variable using...
The legend of the ASP Backdoor-vulnerability warning-the black bar safety net
If Request"pwd"=Userpwd or Request"pwd"="hxhack" then Session"mgler"=Userpwd Today saw the ASP to see their collection of a little basic and the code knows it is to see so the sentence there should be excess Look at the code I've never seen such a written Request"pwd"="hxhack” might be too dish u...
CVE-2008-6733
Cross-site scripting XSS vulnerability in the error handling page in DotNetNuke 4.6.2 through 4.8.3 allows remote attackers to inject arbitrary web script or HTML via the querystring parameter...
Cross site scripting
Cross-site scripting XSS vulnerability in the error handling page in DotNetNuke 4.6.2 through 4.8.3 allows remote attackers to inject arbitrary web script or HTML via the querystring parameter...
CVE-2008-6733
Cross-site scripting XSS vulnerability in the error handling page in DotNetNuke 4.6.2 through 4.8.3 allows remote attackers to inject arbitrary web script or HTML via the querystring parameter...
CVE-2005-3579
ts.exe aka ts.cgi in Walla TeleSite 3.0 and earlier allows remote attackers to access arbitrary local files via the querystring...
CVE-2005-3579
ts.exe aka ts.cgi in Walla TeleSite 3.0 and earlier allows remote attackers to access arbitrary local files via the querystring...