630 matches found
EI-Tube 3 - SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: PHP EI-Tube Script - Sql Injection Exploit Author: Meisam Monsef - email protected Vendor Homepage: https://codecanyon.net/item/eitube-youtube-api-v3-site-builder/22722912?srank=17 Version: 3 Tested on: ubuntu special thanks :...
CVE-2018-20508
CrashFix 1.0.4 has SQL Injection via the Userstatus parameter. This is related to actionIndex in UserController.php, and the protected\models\User.php search function...
CVE-2018-8580
CVE-2018-8580 is an information-disclosure vulnerability in Microsoft SharePoint Server where certain search modes are vulnerable to a CSRF-like cross-site search attack. An attacker can induce queries as a logged-in user to infer whether documents are present in search results, without exposing ...
389-ds-base: Mishandled search requests in servers/slapd/search.c:do_search() allows for denial of service
It was found that a specially crafted search query could lead to excessive CPU consumption in the dosearch function. An unauthenticated attacker could use this flaw to provoke a denial of service...
Red Hat 389 Directory Server Denial of Service Vulnerability (CNVD-2019-02473)
Red Hat 389 Directory Server formerly known as Fedora Directory Server is an enterprise-class Linux directory server from Red Hat. The server fully supports the LDAPv3 specification and features scalability, multi-master replication, and more. A security vulnerability exists in the 'dosearch'...
oxford-med.com.ua XSS vulnerability
Open Bug Bounty ID: OBB-682966 Description| Value ---|--- Affected Website:| oxford-med.com.ua Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
kcentr.ru XSS vulnerability
Open Bug Bounty ID: OBB-682642 Description| Value ---|--- Affected Website:| kcentr.ru Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
cannondalebikes.pl XSS vulnerability
Open Bug Bounty ID: OBB-681890 Description| Value ---|--- Affected Website:| cannondalebikes.pl Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
CVE-2018-17218
An issue was discovered in PTC ThingWorx Platform 6.5 through 8.2. There is reflected XSS in the SQUEAL search function...
blog.boyet.com XSS vulnerability
Open Bug Bounty ID: OBB-678243 Description| Value ---|--- Affected Website:| blog.boyet.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
CVE-2018-15679
An issue was discovered in BTITeam XBTIT 2.5.4. The "keywords" parameter in the search function available at /index.php?page=forums&action=search is vulnerable to reflected cross-site scripting...
Cross site scripting
An issue was discovered in BTITeam XBTIT 2.5.4. The "keywords" parameter in the search function available at /index.php?page=forums&action=search is vulnerable to reflected cross-site scripting...
CVE-2018-15679
An issue was discovered in BTITeam XBTIT 2.5.4. The "keywords" parameter in the search function available at /index.php?page=forums&action=search is vulnerable to reflected cross-site scripting...
mises.ru XSS vulnerability
Open Bug Bounty ID: OBB-672382 Description| Value ---|--- Affected Website:| mises.ru Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
investors.interactivebrokers.com XSS vulnerability
Open Bug Bounty ID: OBB-669152 Description| Value ---|--- Affected Website:| investors.interactivebrokers.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6....
visitisleofman.com XSS vulnerability
Open Bug Bounty ID: OBB-667721 Description| Value ---|--- Affected Website:| visitisleofman.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
homegallery.es XSS vulnerability
Open Bug Bounty ID: OBB-664998 Description| Value ---|--- Affected Website:| homegallery.es Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
act-b7.co.il XSS vulnerability
Open Bug Bounty ID: OBB-663135 Description| Value ---|--- Affected Website:| act-b7.co.il Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
ecstasybliss.com XSS vulnerability
Open Bug Bounty ID: OBB-663050 Description| Value ---|--- Affected Website:| ecstasybliss.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
ece.si XSS vulnerability
Open Bug Bounty ID: OBB-662126 Description| Value ---|--- Affected Website:| ece.si Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...