29 matches found
Joomla! Component com_rokdownloads - Local File Inclusion
A directory traversal vulnerability in the RokDownloads comrokdownloads component before 1.0.1 for Joomla! allows remote attackers to include and execute arbitrary local files via a .. dot dot in the controller parameter to index.php. id: CVE-2010-1056 info: name: Joomla! Component comrokdownload...
Joomla Rokin RokGallery 3.2.6 SQL Injection
Exploit Title : Joomla Rokin RokGallery Components 3.2.6 SQL Injection Author Discovered By : KingSkrupellos Team : Cyberizm Digital Security Army Date : 31/01/2019 Vendor Homepage : rockettheme.com Software Download Link : rockettheme.com/joomla/extensions/rokgallery Software Information Link :...
Multiple vulnerabilities in Refraction theme for WordPress
Hello 3APA3A! In 2012 I've disclosed vulnerabilities in JW Player and in RokBox. Which were fixed by the developers - JW Player developers fixed one hole and promised to fix others later and RokBox developers fixed all holes but it was questionable how they fixed holes related to JW Player. In...
WordPress Refraction Theme XSS / Content Spoofing / Path Disclosure
Hello list! In 2012 I've disclosed vulnerabilities in JW Player and in RokBox. Which were fixed by the developers - JW Player developers fixed one hole and promised to fix others later and RokBox developers fixed all holes but it was questionable how they fixed holes related to JW Player. In...
Joomla RokModule Component (index.php, module parameter) Blind SQLi
No description provided by source. Titulo: Joomla Component RokModule Blind SQLi module Vulnerability Nombre del Componente: Comrokmodule Empresa: http://www.rockettheme.com/ Testeado: Linux Backtrack Autor: Yarolinux Para WebSecurityDev Twitter: @Yarolinux Fecha: 09/09/2012 Bueno la Injeccion Va...
Joomla Component RokModule Blind SQLi [moduleid] Vulnerability
No description provided by source. ================================================================================================================== o Joomla Component RokModule Blind SQLi moduleid Vulnerability Software : comrokmodule version 1.1 Vendor : http://www.rockettheme.com/ Author :...
Multiple vulnerabilities in RokStories for WordPress
Hello 3APA3A! I want to warn you about multiple vulnerabilities in plugin RokStories for WordPress. In August 2012 I wrote about multiple vulnerabilities in RokBox for WordPress http://securityvulns.ru/docs28871.html. These vulnerabilities are similar, since the same developers put the same...
Multiple vulnerabilities in RokMicroNews for WordPress
Hello 3APA3A! I want to warn you about multiple vulnerabilities in plugin RokMicroNews for WordPress. In August 2012 I wrote about multiple vulnerabilities in RokBox for WordPress http://securityvulns.ru/docs28871.html. These vulnerabilities are similar, since the same developers put the same...
Multiple vulnerabilities in RokMicroNews for WordPress
Hello 3APA3A! I want to warn you about multiple vulnerabilities in plugin RokMicroNews for WordPress. In August 2012 I wrote about multiple vulnerabilities in RokBox for WordPress http://securityvulns.ru/docs28871.html. These vulnerabilities are similar, since the same developers put the same...
Multiple vulnerabilities in RokIntroScroller for WordPress
Hello 3APA3A! I want to warn you about multiple vulnerabilities in plugin RokIntroScroller for WordPress. In August 2012 I wrote about multiple vulnerabilities in RokBox for WordPress http://securityvulns.ru/docs28871.html. These vulnerabilities are similar, since the same developers put the same...
Multiple vulnerabilities in RokNewsPager for WordPress
Hello 3APA3A! I want to warn you about multiple vulnerabilities in plugin RokNewsPager for WordPress. In August 2012 I wrote about multiple vulnerabilities in RokBox for WordPress http://securityvulns.ru/docs28871.html. These vulnerabilities are similar, since the same developers put the same...
WordPress RokMicroNews 1.5 XSS / DoS / Shell Upload
Hello list! I want to warn you about multiple vulnerabilities in plugin RokMicroNews for WordPress. In August 2012 I wrote about multiple vulnerabilities in RokBox for WordPress http://securityvulns.ru/docs28871.html. These vulnerabilities are similar, since the same developers put the same...
WordPress RokIntroScroller 1.8 XSS / DoS / Disclosure / Upload
Hello list! I want to warn you about multiple vulnerabilities in plugin RokIntroScroller for WordPress. In August 2012 I wrote about multiple vulnerabilities in RokBox for WordPress http://securityvulns.ru/docs28871.html. These vulnerabilities are similar, since the same developers put the same...
WordPress RokNewsPager 1.17 Disclosure / Shell Upload / XSS / DoS
Hello list! I want to warn you about multiple vulnerabilities in plugin RokNewsPager for WordPress. In August 2012 I wrote about multiple vulnerabilities in RokBox for WordPress http://securityvulns.ru/docs28871.html. These vulnerabilities are similar, since the same developers put the same...
WordPress RokStories 1.25 Disclosure / Shell Upload / XSS / DoS
Hello list! I want to warn you about multiple vulnerabilities in plugin RokStories for WordPress. In August 2012 I wrote about multiple vulnerabilities in RokBox for WordPress http://securityvulns.ru/docs28871.html. These vulnerabilities are similar, since the same developers put the same...
Multiple vulnerabilities in Colormix theme for WordPress
Hello 3APA3A! Last year I've disclosed vulnerabilities in JW Player and in RokBox. Which were fixed by the developers - JW Player developers fixed one hole and promised to fix others later and RokBox fixed all holes but it was questionable how they fixed holes related to JW Player. In December I'...
WordPress Colormix theme XSS / Full path disclosure Vulnerability
Exploit for php platform in category web applications Last year I've disclosed vulnerabilities in JW Player and in RokBox. Which were fixed by the developers - JW Player developers fixed one hole and promised to fix others later and RokBox fixed all holes but it was questionable how they fixed...
WordPress Colormix XSS / Content Spoofing / Path Disclosure
Hello list! Last year I've disclosed vulnerabilities in JW Player and in RokBox. Which were fixed by the developers - JW Player developers fixed one hole and promised to fix others later and RokBox fixed all holes but it was questionable how they fixed holes related to JW Player. In December I've...
Multiple vulnerabilities in RocketTheme themes for WordPress
Hello 3APA3A! Earlier I've wrote to the list about multiple vulnerabilities in multiple themes for WordPress http://seclists.org/fulldisclosure/2012/Dec/236. In that later I've mentioned 16 themes by RocketTheme with Rokbox: Afterburner, Refraction, Solarsentinel, Mixxmag, Iridium, Infuse,...
WordPress RocketTheme Content Spoofing / Cross Site Scripting
Hello list! Earlier I've wrote to the list about multiple vulnerabilities in multiple themes for WordPress http://seclists.org/fulldisclosure/2012/Dec/236. In that later I've mentioned 16 themes by RocketTheme with Rokbox: Afterburner, Refraction, Solarsentinel, Mixxmag, Iridium, Infuse,...