EUVD-2017-8725

Malware in sbrugna...

EUVD-2017-8727

Malware in sbrugna...

EUVD-2017-8726

Malware in sbrugna...

Scubez Posty Readymade Classifieds SQL Injection Vulnerability

Posty Scubez Posty Readymade Classifieds is a suite of announcement-based website scripts from Posty India. A SQL injection vulnerability exists in Posty Scubez Posty Readymade Classifieds. A remote attacker can exploit this vulnerability by sending the 'ID' parameter to the...

Posty Scubez Posty Readymade Classifieds Cross-Site Scripting Vulnerability

Posty Scubez Posty Readymade Classifieds is a suite of announcement-based website scripts from Posty India. A cross-site scripting vulnerability exists in Posty Scubez Posty Readymade Classifieds. A remote attacker can inject arbitrary web script or HTML by sending the 'ID' parameter to the...

Sql injection

Scubez Posty Readymade Classifieds has SQL Injection via the admin/useractivatesubmit.php ID parameter...

CVE-2017-17567

Scubez Posty Readymade Classifieds has SQL Injection via the admin/useractivatesubmit.php ID parameter...

Code injection

Scubez Posty Readymade Classifieds has XSS via the admin/useractivatesubmit.php ID parameter...

CVE-2017-17568

Scubez Posty Readymade Classifieds has Incorrect Access Control for visiting admin/useractivatesubmit.php aka the backend PHP script, which might allow remote attackers to obtain sensitive information via a direct request...

CVE-2017-17569

Scubez Posty Readymade Classifieds has XSS via the admin/useractivatesubmit.php ID parameter...

CVE-2017-17569

CVE-2017-17569 affects Scubez Posty Readymade Classifieds, where the admin/user_activate_submit.php ID parameter triggers a cross-site scripting (XSS) vulnerability. The root cause is reflected XSS via the ID parameter, allowing injection of arbitrary script/HTML (CNVD-2018-00534 notes the issue ...

CVE-2017-17568

CVE-2017-17568 affects Scubez Posty Readymade Classifieds, with an incorrect access control flaw on the admin/user_activate_submit.php backend script. The underlying issue allows remote attackers to obtain sensitive information via a direct request. Documents indicate potential information disclo...

CVE-2017-17567

CVE-2017-17567 affects Scubez Posty Readymade Classifieds. A SQL injection exists in admin/user_activate_submit.php where the ID parameter is unsafely handled, enabling remote SQL command injection with no authentication and no user interaction. Documented impact includes HIGH confidentiality ris...

CVE-2017-17567

Scubez Posty Readymade Classifieds has SQL Injection via the admin/useractivatesubmit.php ID parameter...

CVE-2017-17568

Scubez Posty Readymade Classifieds has Incorrect Access Control for visiting admin/useractivatesubmit.php aka the backend PHP script, which might allow remote attackers to obtain sensitive information via a direct request...

CVE-2017-17569

Scubez Posty Readymade Classifieds has XSS via the admin/useractivatesubmit.php ID parameter...

Wordpress Job Script by Scubez Plugin - Remote Code Execution

Exploit for php platform in category web applications !C:/Python27/python.exe -u JobScript Remote Code Execution Exploit Vendor: Jobscript Product web page: http://www.jobscript.in Affected version: Unknown Summary: JobScript is inbuilt structured website was developed in PHP and MySQL database...