Cross site scripting

Persistent cross-site scripting XSS issues in Jorani 0.6.5 allow remote attackers to inject arbitrary web script or HTML via the language parameter to session/language...

Phreebooks 2.0 - Local File Inclusion

涉及文件: /index.php php //initialize our variables, set module to login if not logged in require'includes/applicationtop.php'; 在代码处理开始之前会加载 includes/applicationtop.php 进行一些初始化操作。 涉及文件: /includes/applicationtop.php 131-140行 php // set the language if isset$GET'language' $SESSION'language' =...

MySQL Quick Admin <= 1.5.5 (COOKIE) Local File Inclusion Vulnerability

No description provided by source. MySQL Quick Admin = 1.5.5 COOKIE Local File Inclusion Vulnerability url: http://www.mysqlquickadmin.com/ Author: JosS mail: sys-projectathotmaildotcom site: http://spanish-hackers.com team: Spanish Hackers Team - SHT This was written for educational purpose. Use...