21 matches found
CVE-2016-10965
The real3d-flipbook-lite plugin 1.0 for WordPress has deleteBook=../ directory traversal for file deletion...
EUVD-2016-1956
Malware in sbrugna...
EUVD-2016-1958
Malware in sbrugna...
CVE-2016-10967
The real3d-flipbook-lite plugin 1.0 for WordPress has XSS via the wp-content/plugins/real3d-flipbook/includes/flipbooks.php bookId parameter...
CVE-2024-34561 WordPress Real3D Flipbook PDF Viewer Lite plugin <= 3.71 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Creative interactive media 3D FlipBook, PDF Viewer, PDF Embedder – Real 3D FlipBook WordPress Plugin allows Stored XSS.This issue affects 3D FlipBook, PDF Viewer, PDF Embedder – Real 3D FlipBook...
WordPress Real3D Flipbook PDF Viewer Lite plugin <= 3.71 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by Manab Jyoti Dowarah Patchstack Alliance in WordPress Plugin Real 3D FlipBook versions = 3.71...
CVE-2016-10967
The real3d-flipbook-lite plugin 1.0 for WordPress has XSS via the wp-content/plugins/real3d-flipbook/includes/flipbooks.php bookId parameter...
CVE-2016-10966
The real3d-flipbook-lite plugin 1.0 for WordPress has bookName=../ directory traversal for file upload...
CVE-2016-10965
The real3d-flipbook-lite plugin 1.0 for WordPress has deleteBook=../ directory traversal for file deletion...
CVE-2016-10965
The real3d-flipbook-lite plugin 1.0 for WordPress has deleteBook=../ directory traversal for file deletion...
CVE-2016-10967
The real3d-flipbook-lite plugin 1.0 for WordPress has XSS via the wp-content/plugins/real3d-flipbook/includes/flipbooks.php bookId parameter...
CVE-2016-10967
The CVE-2016-10967 entry concerns the WordPress plugin real3d-flipbook-lite (v1.0) . The vulnerability is a Cross-Site Scripting (XSS) flaw exploitable via the parameter bookId in the file path wp-content/plugins/real3d-flipbook/includes/flipbooks.php . Root cause is inadequate input handling/san...
CVE-2016-10966
The CVE-2016-10966 entry concerns the WordPress plugin real3d-flipbook-lite version 1.0. The vulnerability is a directory traversal in the file upload process via bookName=../, enabling traversal beyond the intended directory. Details across connected documents confirm the affected product and th...
CVE-2016-10965
The CVE-2016-10965 entry concerns the real3d-flipbook-lite plugin for WordPress (version 1.0). The underlying issue is a deleteBook=../ directory traversal vulnerability that enables traversal for file deletion. Connected sources confirm the affected software and the root cause (directory travers...
WordPress Real3D FlipBook plugin has multiple vulnerabilities
WordPress is a set of WordPress Software Foundation's blogging platform developed using the PHP language, which supports setting up personal blog sites on PHP and MySQL servers.Real3D FlipBook is one of the 3D eBooks and magazines plugin. Real3D FlipBook suffers from a file deletion vulnerability...
WordPress CodeCanyon Real3D FlipBook 2.18.8 File Deletion / Upload / XSS
1 Unauthenticated file/directory deletion Vulnerability exists in a file 'includes/process.php' where the user input eventually goes to PHP unlink or rmdir functions. We can give any file path or directory here. We can even delete the whole wordpress site. In my POC exploit, I'm just deleting the...
WordPress Real3D FlipBook Plugin - Multiple Vulnerabilities
Real3D FlipBook plugin is prone to multiple vulnerabilities, such as XSS. An attacker can upload images in root directory and delete any files from the server. Solution Update WordPress plugin to the newest stable and safe version...
WordPress Plugin Real3D FlipBook - Multiple Vulnerabilities
WordPress Plugin Real3D FlipBook - Multiple Vulnerabilities + POCExploit CodeCanyon Real3D FlipBook WordPress Plugin + http://codecanyon.net/item/real3d-flipbook-wordpress-plugin/6942587 + Multiple Vulnerabilities Found by: Mukarram Khalid +...
WordPress Plugin Real3D FlipBook - Multiple Vulnerabilities
POCExploit CodeCanyon Real3D FlipBook WordPress Plugin + http://codecanyon.net/item/real3d-flipbook-wordpress-plugin/6942587 + Multiple Vulnerabilities Found by: Mukarram Khalid + https://mukarramkhalid.com/wordpress-real-3d-flipbook-plugin-exploit/ + Requirements : Python 3.4.x or higher,...
Real3D FlipBook <= 2.8 - Multiple Vulnerabilities
List of vulnerabilities: - Delete any file or directory from the server Unauthenticated - Upload images in Root directory Unauthenticated - Cross-Site Scripting XSS PoC https://github.com/mukarramkhalid/wordpress-real-3d-flipbook-exploit/blob/master/real3dflipbook-exploit.py...