CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Exploit for php platform in category web applications Exploit Title: Sharetronix CMS XSRF Vulnerability Version : 3.6.2 Exploit Author: Hesam Bazvand Software Link: http://sharetronix.ir/wp-content/uploads/2014/10/gold.zip Tested on: Windows 10 / Kali Linux Category: WebApps Dork : Use You Mind :...

0.3AI score

Exploits0

exploitpack•added 2018/05/27 12:0 a.m.•69 views

Sharetronix CMS 3.6.2 - Cross-Site Request Forgery Cross-Site Scripting

Sharetronix CMS 3.6.2 - Cross-Site Request Forgery Cross-Site Scripting Exploit Title: Sharetronix CMS XSRF Vulnerability Version : 3.6.2 Exploit Author: Hesam Bazvand Software Link: http://sharetronix.ir/wp-content/uploads/2014/10/gold.zip Tested on: Windows 10 / Kali Linux Category: WebApps Dor...

0.9AI score

Exploits0

Exploit DB•added 2018/05/27 12:0 a.m.•56 views

Sharetronix CMS 3.6.2 - Cross-Site Request Forgery / Cross-Site Scripting

Exploit Title: Sharetronix CMS XSRF Vulnerability Version : 3.6.2 Exploit Author: Hesam Bazvand Software Link: http://sharetronix.ir/wp-content/uploads/2014/10/gold.zip Tested on: Windows 10 / Kali Linux Category: WebApps Dork : Use You Mind :D Email : [email protected] Video :...

7.4AI score

Exploits0

Packet Storm•added 2018/05/26 12:0 a.m.•21 views

Sharetronix CMS 3.6.2 Cross Site Request Forgery / Cross Site Scripting

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•70 views

Sharetronix 3.3 - Multiple Vulnerabilities

No description provided by source. Advisory ID: HTB23214 Product: Sharetronix Vendor: Blogtronix, LLC Vulnerable Versions: 3.3 and probably prior Tested Version: 3.3 Advisory Publication: May 7, 2014 without technical details Vendor Notification: May 7, 2014 Vendor Patch: May 27, 2014 Public...

6.8CVSS6.5AI score0.01947EPSS

Exploits7

securityvulns•added 2014/06/14 12:0 a.m.•182 views

Multiple vulnerabilities in Sharetronix

Advisory ID: HTB23214 Product: Sharetronix Vendor: Blogtronix, LLC Vulnerable Versions: 3.3 and probably prior Tested Version: 3.3 Advisory Publication: May 7, 2014 without technical details Vendor Notification: May 7, 2014 Vendor Patch: May 27, 2014 Public Disclosure: May 28, 2014 Vulnerability...

6.8CVSS0.01947EPSS

Exploits7

NVD•added 2014/06/13 2:55 p.m.•14 views

CVE-2013-5352

Sharetronix 3.1.1.3, 3.1.1, and earlier allows remote attackers to execute arbitrary PHP code via the 1 activitiestext parameter to services/activities/set or 2 commentstext parameter to services/comments/set, which is not properly handled when executing the pregreplace function with the e modifi...

6.8CVSS7.7AI score0.01447EPSS

Exploits0References6

NVD•added 2014/06/13 2:55 p.m.•15 views

CVE-2013-5356

Sharetronix 3.1.1.3, 3.1.1, and earlier does not properly restrict access to unspecified AJAX functionality, which allows remote attackers to bypass authentication via unknown vectors...

7.5CVSS7AI score0.01698EPSS

Exploits0References5

NVD•added 2014/06/13 2:55 p.m.•13 views

CVE-2013-5353

Unrestricted file upload vulnerability in system/controllers/ajax/attachments.php in Sharetronix 3.1.1.3, 3.1.1, and earlier allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in an unspecified...

6.8CVSS7.7AI score0.02293EPSS

Exploits0References5

Prion•added 2014/06/13 2:55 p.m.•10 views

Authentication flaw

Sharetronix 3.1.1.3, 3.1.1, and earlier does not properly restrict access to unspecified AJAX functionality, which allows remote attackers to bypass authentication via unknown vectors...

7.5CVSS7.5AI score0.01698EPSS

Exploits0References5Affected Software1

Prion•added 2014/06/13 2:55 p.m.•9 views

Unrestricted file upload

6.8CVSS8.3AI score0.02293EPSS

Exploits0References5Affected Software1

Prion•added 2014/06/13 2:55 p.m.•11 views

Code injection

6.8CVSS8.2AI score0.01447EPSS

Exploits0References6Affected Software1

Cvelist•added 2014/06/13 2:0 p.m.•17 views

CVE-2013-5356

Sharetronix 3.1.1.3, 3.1.1, and earlier does not properly restrict access to unspecified AJAX functionality, which allows remote attackers to bypass authentication via unknown vectors...

7AI score0.01698EPSS

Exploits0References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by