30 matches found
CVE-2023-53938
RockMongo 1.1.7 contains a stored cross-site scripting vulnerability that allows attackers to inject malicious scripts through multiple unencoded input parameters. Attackers can exploit the vulnerability by submitting crafted payloads in database, collection, and login parameters to execute...
EUVD-2025-204351
RockMongo 1.1.7 contains a stored cross-site scripting vulnerability that allows attackers to inject malicious scripts through multiple unencoded input parameters. Attackers can exploit the vulnerability by submitting crafted payloads in database, collection, and login parameters to execute...
CVE-2023-53938
RockMongo 1.1.7 contains a stored cross-site scripting vulnerability that allows attackers to inject malicious scripts through multiple unencoded input parameters. Attackers can exploit the vulnerability by submitting crafted payloads in database, collection, and login parameters to execute...
CVE-2023-53938
RockMongo 1.1.7 contains a stored cross-site scripting vulnerability that allows attackers to inject malicious scripts through multiple unencoded input parameters. Attackers can exploit the vulnerability by submitting crafted payloads in database, collection, and login parameters to execute...
CVE-2023-53938
RockMongo 1.1.7 contains a stored cross-site scripting vulnerability exploitable via multiple unencoded input parameters (database, collection, login). The root cause is input parameters not being encoded before rendering, enabling attackers to inject arbitrary JavaScript into a victim’s browser....
CVE-2023-53938 RockMongo 1.1.7 Stored Cross-Site Scripting Vulnerability via Multiple Parameters
RockMongo 1.1.7 contains a stored cross-site scripting vulnerability that allows attackers to inject malicious scripts through multiple unencoded input parameters. Attackers can exploit the vulnerability by submitting crafted payloads in database, collection, and login parameters to execute...
CVE-2023-53938 RockMongo 1.1.7 Stored Cross-Site Scripting Vulnerability via Multiple Parameters
RockMongo 1.1.7 contains a stored cross-site scripting vulnerability that allows attackers to inject malicious scripts through multiple unencoded input parameters. Attackers can exploit the vulnerability by submitting crafted payloads in database, collection, and login parameters to execute...
rockmongo 安全漏洞
rockmongo is a MongoDB management tool for Chaos Personal Developers. A security vulnerability exists in RockMongo version 1.1.7, which stems from a stored cross-site scripting vulnerability that could lead to the execution of arbitrary JavaScript...
PT-2025-52317
Name of the Vulnerable Software and Affected Versions RockMongo version 1.1.7 Description RockMongo 1.1.7 contains a stored cross-site scripting issue that allows attackers to inject malicious scripts through multiple unencoded input parameters. Attackers can exploit this by submitting crafted...
EUVD-2013-4948
Malware in sbrugna...
EUVD-2013-4949
Malware in sbrugna...
RockMongo 1.1.7 Cross Site Scripting
Exploit Title: RockMongo 1.1.7 - Stored Cross-Site Scripting XSS Discovery by: Rafael Pedrero Discovery Date: 2020-09-19 Vendor Homepage: https://github.com/iwind/rockmongo/ Software Link : https://github.com/iwind/rockmongo/ Tested Version: 1.1.7 Tested on: Windows 7 and 10 Vulnerability Type:...
RockMongo 1.1.7 - Stored Cross-Site Scripting (XSS)
Exploit Title: RockMongo 1.1.7 - Stored Cross-Site Scripting XSS Discovery by: Rafael Pedrero Discovery Date: 2020-09-19 Vendor Homepage: https://github.com/iwind/rockmongo/ Software Link : https://github.com/iwind/rockmongo/ Tested Version: 1.1.7 Tested on: Windows 7 and 10 Vulnerability Type:...
RockMongo 1.1.7 - Stored Cross-Site Scripting Vulnerability
Exploit Title: RockMongo 1.1.7 - Stored Cross-Site Scripting XSS Discovery by: Rafael Pedrero Vendor Homepage: https://github.com/iwind/rockmongo/ Software Link : https://github.com/iwind/rockmongo/ Tested Version: 1.1.7 Tested on: Windows 7 and 10 Vulnerability Type: Stored Cross-Site Scripting...
RockMongo has multiple vulnerabilities
RockMongo is a PHP5 written MongoDB management tool . Cross-site request forgery and cross-site scripting vulnerabilities exist in RockMongo version 1.1.8. An attacker can exploit the vulnerabilities to execute arbitrary and scripted code within a user's browser session in the context of an...
RockMongo 1.1.8 Cross Site Request Forgery / Cross Site Scripting
Exploit Title: RockMongo v1.1.8 - PHP MongoDB Administrator Multiple Vulnerabilities Date: 11.04.2016 Exploit Author: Ozer Goker Vendor Homepage: http://rockmongo.com Software Link: https://github.com/iwind/rockmongo Version: app version 1.1.8 What is RockMongo? RockMongo, a MongoDB administratio...
RockMongo PHP MongoDB Administrator 1.1.8 - Multiple Vulnerabilities
Exploit for php platform in category web applications Exploit Title: RockMongo v1.1.8 - PHP MongoDB Administrator Multiple Vulnerabilities Date: 11.04.2016 Exploit Author: Ozer Goker Vendor Homepage: http://rockmongo.com Software Link: https://github.com/iwind/rockmongo Version: app version 1.1.8...
RockMongo PHP MongoDB Administrator 1.1.8 - Multiple Vulnerabilities
Exploit Title: RockMongo v1.1.8 - PHP MongoDB Administrator Multiple Vulnerabilities Date: 11.04.2016 Exploit Author: Ozer Goker Vendor Homepage: http://rockmongo.com Software Link: https://github.com/iwind/rockmongo Version: app version 1.1.8 What is RockMongo? RockMongo, a MongoDB administratio...
RockMongo PHP MongoDB Administrator 1.1.8 - Multiple Vulnerabilities
RockMongo PHP MongoDB Administrator 1.1.8 - Multiple Vulnerabilities Exploit Title: RockMongo v1.1.8 - PHP MongoDB Administrator Multiple Vulnerabilities Date: 11.04.2016 Exploit Author: Ozer Goker Vendor Homepage: http://rockmongo.com Software Link: https://github.com/iwind/rockmongo Version: ap...
Rockmongo Detection
The script sends a HTTP request to the server and attempts to extract the version from the reply. SPDX-FileCopyrightText: 2015 SCHUTZWERK GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...