420 matches found
CVE-2012-5330
Multiple cross-site scripting XSS vulnerabilities in asaanCart 0.9 allow remote attackers to inject arbitrary web script or HTML via the 1 PATHINFO to calc.php, 2 chat.php, 3 register.php, or 4 index.php in libs/smartyajax/; or the 5 page parameter to libs/smartyajax/index.php...
CVE-2012-5330
As provided, CVE-2012-5330 is an XSS vulnerability in asaanCart 0.9 affecting multiple entry points: the PATH_INFO parameters to calc.php, chat.php, register.php, or index.php in libs/smarty_ajax/, and the page parameter to libs/smarty_ajax/index.php. The description does not specify affected ver...
CVE-2012-5330
Multiple cross-site scripting XSS vulnerabilities in asaanCart 0.9 allow remote attackers to inject arbitrary web script or HTML via the 1 PATHINFO to calc.php, 2 chat.php, 3 register.php, or 4 index.php in libs/smartyajax/; or the 5 page parameter to libs/smartyajax/index.php...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in login.php in NexorONE Online Banking allow remote attackers to inject arbitrary web script or HTML via the 1 visitorlanguage parameter to register.php or 2 message parameter...
CVE-2012-0900
Multiple cross-site scripting XSS vulnerabilities in Beehive Forum 1.0.1 allow remote attackers to inject arbitrary web script or HTML via the PATHINFO to 1 forum/register.php or 2 forum/logon.php...
CVE-2011-3371
Multiple cross-site scripting XSS vulnerabilities in include/functions.php in PunBB before 1.3.6 allow remote attackers to inject arbitrary web script or HTML via the 1 id, 2 formsent, 3 csrftoken, 4 reqconfirm, or 5 delete parameter to delete.php, the 6 id, 7 formsent, 8 csrftoken, 9 reqmessage,...
RunCMS 2.2.2 - register.php SQL Injection
RunCMS 2.2.2 - register.php SQL Injection source: https://www.securityfocus.com/bid/46342/info RunCMS is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to...
Gazelle CMS - Multiple Vulnerabilities
Gazelle CMS - Multiple Vulnerabilities Exploit Title: AnantaGazelle Local File inclusion / Xss Vulnerabilities Date: 23/08/2010 Author: Sweet Contact : [email protected] Software Link: www.anantasoft.com Download:http://www.anantasoft.com/index.php?Gazelle%20CMS/Download Version: AnantaGazelle1...
Unfixed XSS vulnerability at welt1.freewar.de
Security researcher Viper.aT, has submitted on 15/07/2010 a cross-site-scripting XSS vulnerability affecting welt1.freewar.de, which at the time of submission ranked 354694 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 25/12/2011. It is...
myUPB 2.2.6 Local File Inclusion
=============== altbta ====================== Name: myUPB = v2.2.6 Multiple Vulnerabilities Download: http://sourceforge.net/projects/textmb/files/UPB/ Vulnerability: CSRF privilege escalation Tested on: 2.2.6 Author : altbta [email protected] Dork: "Powered by myUPB" ================= backup exploi...
BlaB! Lite 0.5 Remote File Inclusion
'/ -.- ----------------------oOO------OOo---------------------- | | | / / / / | | / / / / / / / / / / / | | // // / / / // / // / // | | ///,// /./,/, // | | Security Sn!pEr.S!Te // 2o1o | ----------------------------------------------------------- | Remote File Inclusion Vulnerability |...
BlaB! Lite 0.5 - Remote File Inclusion
BlaB! Lite 0.5 - Remote File Inclusion '/ -.- ----------------------oOO------OOo---------------------- | | | / / / / | | / / / / / / / / / / / | | // // / / / // / // / // | | ///,// /./,/, // | | Security Sn!pEr.S!Te // 2o1o | ----------------------------------------------------------- |...
BlaB! Lite <= 0.5 Remote File Inclusion Vulnerability
Exploit for php platform in category web applications ====================================================== BlaB! Lite == 0.5 Remote File Inclusion Vulnerability ====================================================== + Script : Chat Scripts » BlaB! Lite: +...
BlaB! Lite 0.5 - Remote File Inclusion
'/ -.- ----------------------oOO------OOo---------------------- | | | / / / / | | / / / / / / / / / / / | | // // / / / // / // / // | | ///,// /./,/, // | | Security Sn!pEr.S!Te // 2o1o | ----------------------------------------------------------- | Remote File Inclusion Vulnerability |...
CVE-2010-1707
Multiple cross-site scripting XSS vulnerabilities in register.php in Piwigo 2.0.9 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 login and 2 mailaddress parameters...
BoastMachine 3.1 - Arbitrary File Upload
:::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::: Exploit Title : boastMachine v3.1 Remote File Upload Vulnerability Author: alnjm33 Software Link: http://boastology.com/pages/dload.php?id=bmachine-3.1.zip Software...
CVE-2009-4460
Multiple cross-site scripting XSS vulnerabilities in Auto-Surf Traffic Exchange Script 1.1 allow remote attackers to inject arbitrary web script or HTML via the rid parameter to 1 index.php, 2 faq.php, and 3 register.php...
CVE-2009-4460
Multiple cross-site scripting XSS vulnerabilities in Auto-Surf Traffic Exchange Script 1.1 allow remote attackers to inject arbitrary web script or HTML via the rid parameter to 1 index.php, 2 faq.php, and 3 register.php...
PHP Auction Cross Site Scripting
======================================================================================== | Title : PHPAUCTION Cross Site Scripting Vulnerability | | Author : indoushka | | email : [email protected] | | Home : Souk Naamane - 04325 - Oum El Bouaghi - Algeria -00213771818860 | | EDB-ID : | |...
phpAuction - Cross-Site Scripting
======================================================================================== | Title : PHPAUCTION Cross Site Scripting Vulnerability | | Author : indoushka | | email : [email protected] | | Home : Souk Naamane - 04325 - Oum El Bouaghi - Algeria -00213771818860 | | EDB-ID : | |...