Cross site scripting

APfell 1.4 is vulnerable to authenticated reflected cross-site scripting XSS in /apiui/command through the payloadtypescallback function, which allows an attacker to steal remote admin/user session and/or adding new users to the administration panel...

CVE-2020-23014

CVE-2020-23014 affects APfell 1.4 with an authenticated reflected XSS in /apiui/command_ via payloadtypes_callback. The vulnerability can enable theft of admin/user sessions and addition of new users to the administration panel. Public sources in the connected Red Hat advisory reiterate the issue...

Advanced Poll <= 2.0.5-dev Remote Admin Session Generator Exploit

No description provided by source. !/usr/bin/perl -w Advanced Poll 2.0.0 = 2.0.5-dev textfile admin session gen. 0day! KEEP IT PRIVATE 0day! date: 30/07/06 diwou [email protected] PHCKSEC c 2001-2006. see templates for code execution ;. use strict; use warnings; use LWP::UserAgent; use MD5; my...

Advanced Poll 2.0.5-dev - Remote Admin Session Generator

!/usr/bin/perl -w Advanced Poll 2.0.0 = 2.0.5-dev textfile admin session gen. 0day! KEEP IT PRIVATE 0day! date: 30/07/06 diwou PHCKSEC c 2001-2006. see templates for code execution ;. use strict; use warnings; use LWP::UserAgent; use MD5; my...