90 matches found
Digital Scribe 1.x Error Function Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8551/info A problem has been reported in the checking of input by Digital Scribe, potentially allow for cross-site scripting attacks. Because of this, it may be possible for an attacker to steal cookie authentication...
Digital Scribe 1.5 Cross Site Request Forgery
Digital Scribe v1.5 CSRF Vulnerability Author : Muhammet Cagri Tepebasili Date : 11.11.2011 Script Homepage and Download : http://www.digital-scribe.org/ Version : 1.5 Tested on : Linux Mint 11 Exploit : New Password: New E-mail: Greetz : Eymen Sen and Cafer K.Sezer...
Digital Scribe v1.5 CSRF Vulnerability
Exploit for php platform in category web applications Digital Scribe v1.5 CSRF Vulnerability Author : Muhammet Cagri Tepebasili Date : 11.11.2011 Script Homepage and Download : http://www.digital-scribe.org/ Version : 1.5 Tested on : Linux Mint 11 Exploit : New Password: New E-mail: Greetz : Eyme...
Digital Scribe 1.5 (register_form()) Multiple POST XSS Vulnerabilities
Exploit for php platform in category web applications 25: 26: 27: Title:" SIZE=4 Mr., Mrs., etc 28: 29: Last Name:" 30: Password: 31: 32: Password Again: 33: 34: E-Mail:t...
Digital Scribe 1.5 - register_form()' Multiple POST Cross-Site Scripting Vulnerabilities
25: 26: 27: Title:" SIZE=4 Mr., Mrs., etc 28: 29: Last Name:" 30: Password: 31: 32: Password Again: 33: 34: E-Mail:INPUT TYPE=TEXT NAME=email SIZE=34 VALUE=?php echo $POS...
Digital Scribe 1.5 - register_form() Multiple POST Cross-Site Scripting Vulnerabilities
Digital Scribe 1.5 - registerform Multiple POST Cross-Site Scripting Vulnerabilities 25: 26: 27: Title:" SIZE=4 Mr., Mrs., etc 28: 29: Last Name:" 30: Password: 31: 32: Password Again: 33: 34: E-Mail:INP...
Digital Scribe 1.5 Cross Site Scripting
25: 26: 27: Title:" SIZE=4 Mr., Mrs., etc 28: 29: Last Name:" 30: Password: 31: 32: Password Again: 33: 34: E-Mail:INPUT TYPE=TEXT NAME=e...
Digital Scribe 1.5 (register_form()) Multiple POST XSS Vulnerabilities
Summary The Digital Scribe is a free, intuitive system designed to help teachers put student work and homework assignments online. Description Digital Scribe suffers from multiple POST XSS vulnerabilities. Input thru the POST parameters 'title', 'last' and 'email' in register.php is not sanitized...
XSS vulnerability in Scribe CMS
Vulnerability ID: HTB22422 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinscribecms2.html Product: Scribe CMS Vendor: Sigmer Technologies Vulnerable Version: Current at 03.06.2010 and Probably Prior Versions Vendor Notification: 07 June 2010 Vulnerability Type: XSS Cross Site...
Scribe CMS Cross Site Scripting
Vulnerability ID: HTB22422 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinscribecms2.html Product: Scribe CMS Vendor: Sigmer Technologies Vulnerable Version: Current at 03.06.2010 and Probably Prior Versions Vendor Notification: 07 June 2010 Vulnerability Type: XSS Cross Site...
XSS vulnerability in Scribe CMS
Vulnerability ID: HTB22421 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinscribecms1.html Product: Scribe CMS Vendor: Sigmer Technologies Vulnerable Version: Current at 03.06.2010 and Probably Prior Versions Vendor Notification: 07 June 2010 Vulnerability Type: XSS Cross Site...
XSS vulnerability in Scribe CMS
Vulnerability ID: HTB22420 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinscribecms.html Product: Scribe CMS Vendor: Sigmer Technologies Vulnerable Version: Current at 03.06.2010 and Probably Prior Versions Vendor Notification: 07 June 2010 Vulnerability Type: XSS Cross Site Scripti...
Sigmer Technologies Scribe CMS - copy_folder.php Cross-Site Scripting
Sigmer Technologies Scribe CMS - copyfolder.php Cross-Site Scripting source: https://www.securityfocus.com/bid/41000/info Sigmer Technologies Scribe CMS is prone to a cross-site scripting vulnerability because the application fails to sufficiently sanitize user-supplied input. An attacker may...
Sigmer Technologies Scribe CMS - 'copy_folder.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/41000/info Sigmer Technologies Scribe CMS is prone to a cross-site scripting vulnerability because the application fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of a...
Cross-site Scripting (XSS) Vulnerabilities in Scribe CMS
High-Tech Bridge SA Security Research Lab has discovered three vulnerabilities in Scribe CMS which could be exploited to perform cross-site scripting attacks. 1 Cross-site scripting XSS vulnerability in Scribe CMS 1.1 The vulnerability exists due to input sanitation error in the âfâ parameter in...
Digital Scribe 1.4.1 Multiple SQL Injection Vulnerabilities
Digital Scribe 1.4.1 Multiple SQL Injection Vulnerabilities Name Digital Scribe Vendor http://www.digital-scribe.org Versions Affected 1.4.1 Author Salvatore Fresta aka Drosophila Website http://www.salvatorefresta.net Contact salvatorefresta at gmail dot com Date 2009-12-11 X. INDEX I. ABOUT THE...
Digital Scribe 1.4.1 Multiple SQL Injection Vulnerabilities
No description provided by source. Name Digital Scribe Vendor http://www.digital-scribe.org Versions Affected 1.4.1 Author Salvatore Fresta aka Drosophila Website http://www.salvatorefresta.net Contact salvatorefresta at gmail dot com Date 2009-12-11 X. INDEX I. ABOUT THE APPLICATION II...
Digital Scribe 1.4.1 SQL Injection
Digital Scribe 1.4.1 Multiple SQL Injection Vulnerabilities Name Digital Scribe Vendor http://www.digital-scribe.org Versions Affected 1.4.1 Author Salvatore Fresta aka Drosophila Website http://www.salvatorefresta.net Contact salvatorefresta at gmail dot com Date 2009-12-11 X. INDEX I. ABOUT THE...
Digital Scribe 1.4.1 Multiple SQL Injection Vulnerabilities
Exploit for unknown platform in category web applications =========================================================== Digital Scribe 1.4.1 Multiple SQL Injection Vulnerabilities =========================================================== Digital Scribe 1.4.1 Multiple SQL Injection Vulnerabilities...
Digital Scribe 1.4.1 - Multiple SQL Injections
Digital Scribe 1.4.1 - Multiple SQL Injections Digital Scribe 1.4.1 Multiple SQL Injection Vulnerabilities Name Digital Scribe Vendor http://www.digital-scribe.org Versions Affected 1.4.1 Author Salvatore Fresta aka Drosophila Website http://www.salvatorefresta.net Contact salvatorefresta at gmai...