4 matches found
CVE-2012-1900
Cross-site request forgery CSRF vulnerability in admin/index.php in RazorCMS 1.2.1 and earlier allows remote attackers to hijack the authentication of administrators for requests that delete arbitrary web pages via a showcats action...
CVE-2012-1900
CVE-2012-1900 affects RazorCMS 1.2.1 and earlier. The vulnerability is a Cross-Site Request Forgery in admin/index.php that lets remote attackers hijack an administrator’s session to perform showcats actions that delete arbitrary web pages. Root cause: CSRF in the admin interface enabling unautho...
PHP Script Directory Software (sbcat_id) SQL Injection Vulnerability
Exploit for php platform in category web applications == Author: BorN To K!LL - h4ck3r Contact: email protected == Script: PHP script directory software Version: n/a Link: http://www.softbizsolutions.com/script-directory-software.php == 3xploit: path/showcats.php?sbcatid=SQL-Injection 3xample:...
PT-2010-2669 · Open Source Matters · Joomla!
Name of the Vulnerable Software and Affected Versions: Joomla! component com ksadvertiser affected versions not specified Description: The issue allows remote attackers to execute arbitrary SQL commands. This is achieved by exploiting the pid parameter in a showcats action to index.php...