movie4me.in XSS vulnerability

Open Bug Bounty ID: OBB-577459 Description| Value ---|--- Affected Website:| movie4me.in Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

MyBB 1.8.1 /report.php 跨站脚本漏洞

No description provided by source. !/usr/bin/env python coding: utf-8 import re from pocsuite.net import req from pocsuite.poc import POCBase, Output from pocsuite.utils import register This poc requires a valid username and it's password to work Users can register one manually. class...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in BugFree 2.1.3 allow remote attackers to inject arbitrary web script or HTML via 1 the ActionType parameter to Bug.php, the ReportMode parameter to 2 Report.php or 3 ReportLeft.php, or the PATHINFO to 4 AdminProjectList.php, 5 AdminGroupList.php...

CVE-2014-9241

Multiple cross-site scripting XSS vulnerabilities in MyBB aka MyBulletinBoard 1.8.x before 1.8.2 allow remote attackers to inject arbitrary web script or HTML via the 1 type parameter to report.php, 2 signature parameter in a doeditsig action to usercp.php, or 3 title parameter in the...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in MyBB aka MyBulletinBoard 1.8.x before 1.8.2 allow remote attackers to inject arbitrary web script or HTML via the 1 type parameter to report.php, 2 signature parameter in a doeditsig action to usercp.php, or 3 title parameter in the...

Mybb 1.8.1 /report.php 跨站脚本漏洞

No description provided by source. !/usr/bin/env python coding: utf-8 import re from pocsuite.net import req from pocsuite.poc import POCBase, Output from pocsuite.utils import register from termcolor import cprint class TestPOCPOCBase: vulID = '1629' version = '1' author = 'chensy @ Knownsec'...

nuBuilder Remote File inclusion Vulnerability

No description provided by source. Software: nuBuilder 10.04.x and lowermaybe? Type: Remote File Inclusion Download: http://sourceforge.net/projects/nubuilder/files/ Author: Ahlspiess Email: [email protected] Vulnerable file: report.php report.php file content 1 ?php 2 / 3 File: report.ph...

Traidnt up 2.0 (report.php trtext) Blind SQL Injection Vulnerability

Traidnt up is a php online upload script assignmessage,charset$errors."انتظر سوف يتم تحويلك للملف مرة أخري".""; $traidnt-display"message.tpl"; else $ip = getenv'REMOTEADDR'; $reportquery = $db-query" INSERT INTO report reportkey ,reportwhy ,reportip VALUES '$fileid', '$trtext', '$ip';";...

House Style 0.1.2 - 'readfile()' Local File Disclosure

Exploit Title: House Style 0.1.2 = readfile Local File Disclosure Vulnerability Date: 11/07/2012 Author: GoLdM Vendor or Software Link: http://sourceforge.net/projects/housestyle/ Version: 1.03 Category:: readfile Local File Disclosure Vulnerability2 Tested on: Xp SP 2 Ex : House Style...

nuBuilder - Remote File Inclusion

nuBuilder - Remote File Inclusion Software: nuBuilder 10.04.x and lowermaybe? Type: Remote File Inclusion Download: http://sourceforge.net/projects/nubuilder/files/ Author: Ahlspiess Email: [email protected] Vulnerable file: report.php report.php file content 1 ?php 2 / 3 File: report.php...

nuBuilder - Remote File Inclusion

Software: nuBuilder 10.04.x and lowermaybe? Type: Remote File Inclusion Download: http://sourceforge.net/projects/nubuilder/files/ Author: Ahlspiess Email: [email protected] Vulnerable file: report.php report.php file content 1 ?php 2 / 3 File: report.php 4 Author: nuSoftware 5 Created:...

nuBuilder Remote File inclusion Vulnerability

Exploit for php platform in category web applications ============================================= nuBuilder Remote File inclusion Vulnerability ============================================= Software: nuBuilder 10.04.x and lowermaybe? Type: Remote File Inclusion Download:...

CVE-2009-4730

SQL injection vulnerability in report.php in x10 Adult Media Script 1.7 allows remote attackers to execute arbitrary SQL commands via the id parameter...

Sql injection

SQL injection vulnerability in report.php in x10 Adult Media Script 1.7 allows remote attackers to execute arbitrary SQL commands via the id parameter...

CVE-2009-4730

The CVE-2009-4730 entry describes a SQL injection vulnerability in report.php of the x10 Adult Media Script 1.7. The vulnerability allows remote attackers to execute arbitrary SQL commands through the id parameter, enabling potential data exposure or modification. The connected documents confirm ...

CVE-2009-3533

SQL injection vulnerability in report.php in Meeting Room Booking System MRBS before 1.4.2 allows remote attackers to execute arbitrary SQL commands via the typematch parameter. NOTE: some of these details are obtained from third party information...

Sql injection

SQL injection vulnerability in report.php in Meeting Room Booking System MRBS before 1.4.2 allows remote attackers to execute arbitrary SQL commands via the typematch parameter. NOTE: some of these details are obtained from third party information...

CVE-2009-3533

CVE-2009-3533 : The Meeting Room Booking System (MRBS) is vulnerable in its reporting page, report.php, where the typematch parameter is not properly sanitized before being used in a SQL query. This allows remote attackers to inject arbitrary SQL and potentially read/modify data in the MRBS datab...

CVE-2009-3359

Multiple cross-site scripting XSS vulnerabilities in Match Agency BiZ 1.0 allow remote attackers to inject arbitrary web script or HTML via the 1 important parameter to editprofile.php and 2 pid parameter to report.php...

Match Agency BiZ 1.0 Cross Site Scripting

/ | | \ \ / / | | \ \ / / | |\ \ /\ / / | | | | | | \ V /| | | \ V V / | | || | || / ||| // ,|, | |/ | | | |/ / | ' \ | | / | | | | | | | |||,|| || || Match Agency BiZ 1.0 Remote XSS Vulnerabilities Discovered By : Moudi Contact : Download : http://www.matchagency.biz/ Greetings : Mizoz,...