WebFairy Mediat 1.4.1 Cross Site Scripting

Exploit Title: Mediat 1.4.1 - Cross-site Script Google Dork: N/A Date: 1 Jan 2019 Exploit Author: Deyaa Muhammad Author EMail: contact at deyaa.me Author Blog: http://deyaa.me Vendor Homepage: http://webfairy.net/ Software Link: https://github.com/WebFairyNet/Mediat Demo Website:...

songlyrics.com XSS vulnerability

Vulnerable URL: http://www.songlyrics.com/index.php?section=search="onmouseover=confirm/XSSPOSED/+test==Search Details: Description| Value ---|--- Patched:| No Latest check for patch:| 25.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 13953 Google Pagerank|...

Ganesha Digital Library 4.0 Multiple Vulnerabilities

Exploit for php platform in category web applications ===================================================== Ganesha Digital Library 4.0 Multiple Vulnerabilities =====================================================...

Ganesha Digital Library 4.0 - Multiple Vulnerabilities

Ganesha Digital Library 4.0 - Multiple Vulnerabilities ===================================================== Ganesha Digital Library 4.0 Multiple Vulnerabilities =====================================================...

Ganesha Digital Library 4.0 - Multiple Vulnerabilities

===================================================== Ganesha Digital Library 4.0 Multiple Vulnerabilities ===================================================== :---------------------------------------------------------------------------------------------------------------------------------------...

ParsaWeb CMS (Search) Remote SQL Injection Vulnerability

No description provided by source. www.BugReport.ir AmnPardaz Security Research Team Title: ParsaWeb CMS SQL Injection Vendor: http://www.parsagostar.com Demo: http://cms.parsagostar.com/ Exploit: Available Impact: High Fix: N/A Original advisory: http://www.bugreport.ir/index53.htm 1. Descriptio...

Tested on Webmin 1.390

Aria-Security Team Persian Security Network http://Aria-Security.Net ---------------------------------- Tested on Webmin 1.390 Cross Site Scripting This vuln was tested on Webmin as an administrator account root and it has worked on the search section file of the system. Value Inserted:...

webmin1390-xss.txt

Aria-Security Team Persian Security Network http://Aria-Security.Net ---------------------------------- Tested on Webmin 1.390 Cross Site Scripting This vuln was tested on Webmin as an administrator account root and it has worked on the search section file of the system. Value Inserted:...

dragonflyCMS.txt

HeLiOsZ - Dark End Team - Internet Security Team Dragonfly CMS 9.0.6.1 and prior XSS IRC: darkend.sytes.net darkend , http://darkend.sytes.net & http://www.darkend.org Rish : Medium Type : web applet Creator: http://www.cpgnuke.com/ Exploit: - The vuln is in the search section,it don't validate t...

simplog 0.9.3 and prior XSS

HeLiOsZ - Dark End Team - Internet Security Team simplog 0.9.3 and prior XSS IRC: darkend.sytes.net darkend , http://darkend.sytes.net & http://www.darkend.org Rish : Medium Type : web applet Creator: http://www.simplog.org/ Exploit: - The vuln is in the search section,it don't validate the imput...

Cross site scripting

Cross-site scripting XSS vulnerability in search.php in PHPKB Knowledge Base allows remote attackers to inject arbitrary web script or HTML via the searchkeyword parameter. NOTE: the issue was originally disputed by the vendor, but on 20060519, the vendor notified CVE that "We have fixed all the...