WordPress Responsive Thumbnail Slider 1.0 Shell Upload

POC : For Exploiting This Vulnerability : Go To Add Image Section And Upload File By Self Plugin Uploader Then Upload File With Double Extension Image And By Using A BurpSuite Or Tamper Data Change The File Name From Shell.php.jpg To Shell.php And Shell Is Uploaded . :...

WordPress Plugin Responsive Thumbnail Slider 1.0 - Arbitrary File Upload

Exploit Title: Wordpress Responsive Thumbnail Slider Arbitrary File Upload Date: 2015/8/29 Exploit Author: Arash Khazaei Vendor Homepage: https://wordpress.org/plugins/wp-responsive-thumbnail-slider/ Software Link: https://downloads.wordpress.org/plugin/wp-responsive-thumbnail-slider.zip Version:...

WebSolutions India Design CMS - SQL Injection Vulnerability

Document Title: =============== WebSolutions India Design CMS - SQL Injection Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1577 Release Date: ============= 2015-08-20 Vulnerability Laboratory ID VL-ID: ===================================...

Responsive Portfolio Wall [mod_repowa], 1.0 and below, XSS (Cross Site Scripting)

Responsive Portfolio Wall modrepowa, 1.0, XSS Cross Site Scripting Extension includes vulnerable version of JS library prettyPhoto Vulnerability fixed in version 1.1 Update notice: http://www.joomlabusiness.net/module/responsive-portfolio-wall...

WordPress SmartIT Premium Responsive - Information Disclosure

Because of this vulnerability, the attackers can obtain sensitive information. Solution Update the theme...

WordPress Responsive Lightbox Plugin <= 1.4.11 - XSS

Because of this vulnerability, the attackers can inject arbitrary web script or HTML. Solution Update the plugin...

WordPress Responsive Category Slider Plugin - XSS

Because of this vulnerability, the attackers can inject arbitrary web script or HTML. Solution Update the plugin...

WordPress Plugin Slider REvolution 4.1.4 - Arbitrary File Download

WordPress Plugin Slider REvolution 4.1.4 - Arbitrary File Download Exploit Title : WordPress Slider Revolution Responsive = 4.1.4 Arbitrary File Download vulnerability Exploit Author : Claudio Viviani Vendor Homepage : http://codecanyon.net/item/slider-revolution-responsive-wordpress-plugin/27513...

Multiple Slider Plugins for WordPress 'img' Parameter Local File Inclusion Vulnerability

A Slider plugin for WordPress hosted on the remote web server is affected by a local file inclusion vulnerability due to a failure to properly sanitize user-supplied input to the 'img' parameter of the 'imageview.class.php' script. This allows an unauthenticated, remote attacker to read arbitrary...

WordPress Slider Revolution Responsive File Upload

File upload vulnerability in WordPress Slider Revolution Responsive plugin Vulnerability Type: File Upload For the exploit source code contact DSquare Security sales team...

WP Responsive Preview - XSS

The WordPress Responsive Preview WordPress plugin was affected by a XSS security vulnerability...

Adobe Acrobat and Adobe Reader Deflate Parameter Integer Overflow (CVE-2009-3459)

Portable Document Format PDF is an open file format created by Adobe Systems. It is used for representing two-dimensional documents in a device and resolution independent fixed-layout document format. Successful exploitation of this issue will cause the application to become non-responsive, and m...

WP Support Plus Responsive Ticket System < 4.1 - XSS

The WP Support Plus Responsive Ticket System WordPress plugin was affected by a XSS security vulnerability...

Wordpress WP Support Plus Responsive Ticket System 2.0 Plugin - Multiple Vulnerabilities

No description provided by source. Exploit Title: Wordpress WP Support Plus Responsive Ticket System 2.0 Plugin - Multiple Vulnerabilities Google Dork: N/A Date: 09.09.2014 Exploit Author: Fikri Fadzil - [email protected] Vendor Homepage - http://wpsuportplus.byethost7.com/ Softwar...

Wordpress Support Plus Responsive Ticket System 2.0 Plugin - Multiple Vulnerabilities

Exploit for php platform in category web applications Exploit Title: Wordpress WP Support Plus Responsive Ticket System 2.0 Plugin - Multiple Vulnerabilities Google Dork: N/A Date: 09.09.2014 Exploit Author: Fikri Fadzil - email protected Vendor Homepage - http://wpsuportplus.byethost7.com/...

WordPress Plugin WP Support Plus Responsive Ticket System 2.0 - Multiple Vulnerabilities

WordPress Plugin WP Support Plus Responsive Ticket System 2.0 - Multiple Vulnerabilities Exploit Title: Wordpress WP Support Plus Responsive Ticket System 2.0 Plugin - Multiple Vulnerabilities Google Dork: N/A Date: 09.09.2014 Exploit Author: Fikri Fadzil - [email protected] Vendor...

WordPress Plugin WP Support Plus Responsive Ticket System 2.0 - Multiple Vulnerabilities

Exploit Title: Wordpress WP Support Plus Responsive Ticket System 2.0 Plugin - Multiple Vulnerabilities Google Dork: N/A Date: 09.09.2014 Exploit Author: Fikri Fadzil - [email protected] Vendor Homepage - http://wpsuportplus.byethost7.com/ Software...

CVE-2014-4594

Cross-site scripting XSS vulnerability in index.php in the WordPress Responsive Preview plugin before 1.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the url parameter...

Cross site scripting

Cross-site scripting XSS vulnerability in index.php in the WordPress Responsive Preview plugin before 1.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the url parameter...

CVE-2014-4594

The CVE-2014-4594 entry concerns the WordPress Responsive Preview plugin for WordPress, affected in versions before 1.2. The vulnerability is an XSS in index.php triggered via the url parameter, allowing remote attackers to inject arbitrary web script or HTML. The risk description is supported by...