25 matches found
CVE-2016-10551
Affected component: waterline-sequel. Vulnerability: SQL injection when user input is passed into waterline-sequel’s like, contains, startsWith, or endsWith paths, allowing an attacker to inject and execute arbitrary SQL with full DB access. Root cause (as described): input reaching waterline-seq...
SQL Injection
Overview Affected versions of waterline-sequel are vulnerable to SQL injection in cases where user input is passed into the like, contains, startsWith, or endsWith methods. Recommendation Upgrade to at least version 0.5.1 References - Issue 1219 - PR 66 - GitHub Advisory...
Subdreamer 3.0.1 - CMS upload Vulnerability
No description provided by source. ======================================================================================== | Title : Subdreamer.v3.0.1 cms upload Vulnerability | Author : indoushka | email : [email protected] | Home : www.h4kz.com | Web Site : | Dork : Website powered by...
Subdreamer Pro 3.0.4 - CMS Upload Vulnerability
No description provided by source. . \\ \\ / |/ | || | | /\\ \\\\ \\ \\/ \\| | \\/ /\\ \\ | | | | \\ / \\| | | | | /\\ \\ / \\| | | / /| || \\/|// /| \\/ \\/ \\/ \\/ Exploit Title: Subdreamer Pro v3.0.4 CMS upload Vulnerability Author: Battousai Home:...
Subdreamer.v3.0.1 cms upload Vulnerability
Exploit for unknown platform in category web applications ========================================== Subdreamer.v3.0.1 cms upload Vulnerability ========================================== ======================================================================================== | Title :...