thestudentroom.co.uk XSS vulnerability

Vulnerable URL: https://www.thestudentroom.co.uk/register.php?do=addmember Details: Description| Value ---|--- Patched:| Yes, at 26.07.2017 Latest check for patch:| 26.07.2017 11:02 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 7816 Google Pagerank| 6 VIP...

thestudentroom.co.uk XSS vulnerability

Open Bug Bounty ID: OBB-115423 Description| Value ---|--- Affected Website:| thestudentroom.co.uk Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention...

tsamail.co.za XSS vulnerability

Vulnerable URL: http://www.tsamail.co.za/register.php Details: Description| Value ---|--- Patched:| Yes, at 23.11.2017 Latest check for patch:| 23.11.2017 08:58 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated Google Pagerank| 1 VIP websi...

genixcms 0.0.3 /register.php SQL注入漏洞

No description provided by source...

webmail.co.za XSS vulnerability

Vulnerable URL: http://www.webmail.co.za/register.php Details: Description| Value ---|--- Patched:| Yes, at 22.11.2017 Latest check for patch:| 22.11.2017 14:09 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 20762 Google Pagerank| 5 VIP website status:| Yes Che...

GeniXCMS 0.0.3 - register.php SQL Injection Vulnerabilities

Exploit for php platform in category web applications Exploit Title: Genixcms register.php multiple SQL vuln Date: 2015-06-23 Exploit Author: cfreer poc-lab Vendor Homepage: http://www.genixcms.org Software Link: https://codeload.github.com/semplon/GeniXCMS/zip/master/GeniXCMS-master.zip Version:...

GeniXCMS 0.0.3 SQL Injection

Exploit Title: Genixcms register.php multiple SQL vuln Date: 2015-06-23 Exploit Author: cfreer poc-lab Vendor Homepage: http://www.genixcms.org Software Link: https://codeload.github.com/semplon/GeniXCMS/zip/master/GeniXCMS-master.zip Version: 0.0.3 Tested on: Apache/2.4.7 Win32 CVE : CVE-2015-39...

GeniXCMS 0.0.3 - register.php SQL Injection

GeniXCMS 0.0.3 - register.php SQL Injection Exploit Title: Genixcms register.php multiple SQL vuln Date: 2015-06-23 Exploit Author: cfreer poc-lab Vendor Homepage: http://www.genixcms.org Software Link: https://codeload.github.com/semplon/GeniXCMS/zip/master/GeniXCMS-master.zip Version: 0.0.3...

GeniXCMS 0.0.3 - 'register.php' SQL Injection

Exploit Title: Genixcms register.php multiple SQL vuln Date: 2015-06-23 Exploit Author: cfreer poc-lab Vendor Homepage: http://www.genixcms.org Software Link: https://codeload.github.com/semplon/GeniXCMS/zip/master/GeniXCMS-master.zip Version: 0.0.3 Tested on: Apache/2.4.7 Win32 CVE : CVE-2015-39...

WordPress RLSWordPressSearch Plugin - SQL Injection

This plugin is prone to SQL injection in register.php agentid parameter. Solution Update the plugin...

WordPress RLSWordPressSearch Plugin - SQL Injection

This plugin is prone to SQL injection in register.php agentid parameter. Solution Update the plugin...

TheWebForum register.php www Parameter XSS - Ver2 (CVE-2006-0134)

A cross-site scripting vulnerability has been reported in TheWebForum. The vulnerability is due to the application not validating the 'www' variable upon submission to the 'register.php' script. Successful exploitation of this vulnerability would allow remote attackers to inject arbitrary web...

WordPress Plugin Pie Register Has Unspecified Vulnerability

WordPress is the WordPress Software Foundation of a set of PHP language development of the blogging platform, the platform supports PHP and MySQL server set up a personal blog site . Pie Register is one of the plug-ins that support customizing the member registration landing page . A security...

PHPB2B某处sql注入（危害巨大）

简要描述： PHPB2B某处sql注入（危害巨大） 详细说明： PHPB2B某处sql注入 官网下载的最新版本 绕过全局防注入。 我们先看看全局防注入怎么写的。 以下是全局防注入用到的函数 function pbattackfilter$StrFiltKey,$StrFiltValue,$ArrFiltReq ifisarray$StrFiltValue $StrFiltValue=@implode",", $StrFiltValue; if pregmatch"/".$ArrFiltReq."/is",$StrFiltValue==1 echo $StrFiltValue;...

Design/Logic Flaw

project/register.php in Tuleap before 7.7, when syscreateprojectinonestep is disabled, allows remote authenticated users to conduct PHP object injection attacks and execute arbitrary PHP code via the data parameter...

Tuleap 7.6-4 PHP Object Injection Vulnerability

Tuleap versions 7.6-4 and below suffer from a PHP object injection vulnerability in register.php...

SS Downloads 1.4.4.1 - templates/register.php Multiple Parameter Reflected XSS

The SS Downloads WordPress plugin was affected by a templates/register.php Multiple Parameter Reflected XSS security vulnerability...

RLSWordPressSearch - register.php agentid Parameter SQL Injection

The RLSWordPressSearch WordPress plugin was affected by a register.php agentid Parameter SQL Injection security vulnerability...

Wordpress 1.5.1 - 2.0.2 wp-register.php Multiple Parameter XSS

...

Tyger Bug Tracking System 1.1.3 Register.php PATH_INFO Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/22799/info Tyger Bug Tracking System is prone to multiple input-validation vulnerabilities, including one SQL-injection issue and two cross-site scripting issues, because the application fails to sufficiently sanitize...