CVE-2008-6385

Cross-site scripting XSS vulnerability in index.php in W3matter RevSense 1.0 allows remote attackers to inject arbitrary web script or HTML via the section parameter...

CVE-2008-6385

RevSense 1.0 (W3matter) is vulnerable to a cross-site scripting (XSS) flaw in index.php via the section parameter, caused by insufficient input sanitization. OpenVAS also documents an SQL injection vulnerability for RevSense <= 1.0, sharing the same root cause. Impact per sources includes pote...

RevSense 1.0 - SQL Injection / Cross-Site Scripting

source: https://www.securityfocus.com/bid/32624/info RevSense is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to steal cookie-based authentication...

RevSense 1.0 - SQL Injection Cross-Site Scripting

RevSense 1.0 - SQL Injection Cross-Site Scripting source: https://www.securityfocus.com/bid/32624/info RevSense is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an...

RevSense 1.0 - Authentication Bypass

RevSense 1.0 - Authentication Bypass - RevSense v.1.0 Auth bypass SQL Injection Vulnerability + Script home : http://www.revsense.com/ - Discovered By : d3b4g - Greetz : str0ke / All my freind Dork:Powered by Revsense Go to www.target.com/index.php?section=user&action=login Use following...