pub-site.com Cross Site Scripting vulnerability OBB-3903289

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

webb-site.com Cross Site Scripting vulnerability OBB-3384023

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Laravel 10.11 Database Disclosure / Information Disclosure

==================================================================================================================================== | Title : Laravel 10.11 Information Disclosure MySQL Credential Disclosure Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser ...

g-site.com Open Redirect vulnerability

Vulnerable URL: http://www.g-site.com/cgi-bin/go.pl?go=https://www.openbugbounty.org/ Details: Description| Value ---|--- Patched:| No Latest check for patch:| 30.10.2017 Vulnerability type:| Open Redirect Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated VIP website...

hotsale.iguang.tw XSS vulnerability

Vulnerable URL: http://hotsale.iguang.tw/redirector2.php?url=http://site.com%22%3E%3Cscript%3Ealert/OPENBUGBOUNTY/%3C/script%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 27.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unkno...

i-site.com XSS vulnerability

Vulnerable URL: http://www.i-site.com/i-news/unsub.php?email=%27%22%3E%3E%3C/title%3E%27%22%3ESCRIPT%3E%22%3E%27%3E%3CSCRIPT%3Ealert%28/XSSPOSED/%29%3C/SCRIPT%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 25.07.2017 Vulnerability type:| XSS Vulnerability status:|...

StaMPi - Local File Inclusion

Exploit Title: StaMPi - Local File Inclusion Google Dork: "Designed by StaMPi" inurl:fotogalerie.php Date: 16/2/15 Author : e . V . E . L Contact: [email protected] PoC: http://site.com/path/fotogalerie.php?id=../../../../../../../../../../etc/passwd%00...

Auction_Software Script Admin Login Bypass vulnerability

No description provided by source. 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1 Name : AuctionSoftware Script Admin Login Bypass vulnerability vendor URL :http://www.brotherscripts.com/ Price: $24.95 Author : altbta l9athotmail.com dork : PHPAuction GPL Enhanced V2.51 ...

Web Wiz Forum Injection Vulnerability

No description provided by source. Title : Web Wiz Forum Injection Vulnerability Author: eXeSoul Home : www.indishell.in or www.andhrahackers.com Email : [email protected] date : 23/3/2011 D0rk : i Powered by Web Wiz Forums category : Web Apps SQli Go To Site :- SQL injection Vulnerability...

MaxForum 1.0.0 - Local File Inclusion

No description provided by source. +---------------------------------------+ | MaxForum v1.0.0 Local File Inclusion | +---------------------------------------+ Author.............: ahwak2000 Mail...............: z.u5athotmaildotcom Software link......: http://www.max4dev.com/ Tested versions....:...

PgMarket <= 2.2.3 (CFG[libdir]) Remote File Inclusion Vulnerability

No description provided by source. C Y B E R - W A R R i O R T I M PgMarket 2.2.3 CFGlibdir Remote File Inclusion Vulnerabilities Author: xoron Class : Remote cont@ct: x0r0nathotmaildotcom Code: include $CFGlibdir . stdlib.inc.php; Exploit:...

eWebeditor Directory Traversal

No description provided by source. Application Info: Name: eWebeditor Version: all version Vulnerability Info: Type: Directory Traversal Risk: Medium Vulnerability: http://site.com/admin/ewebeditor/admin/upload.asp?id=16&dviewmode=&dir =./...

WordPress Booking System Cross Site Scripting

Iranian Exploit DataBase http://exploit.iedb.ir Exploit Title : WordPress booking-system plugin Cross-Site Scripting Vulnerabilities Author : Iranian Exploit DataBase Discovered By : IeDb Email : [email protected] Home : http://exploit.iedb.ir Software Link : http://wordpress.org/ Security Risk...

SelectSurvey CMS - ASP.NET Arbitrary File Upload

SelectSurvey CMS - ASP.NET Arbitrary File Upload ============================================================= SelectSurvey CMS ASP.NET Shell Upload Vulnerability ============================================================= Exploit Title: SelectSurvey.NETv4 CMS ASP.NET Shell Upload Vulnerability...

Visual Chile - SQL Injection / Cross-Site Scripting Vulnerabilities

Visual Chile is a company specializes in providing comprehensive services in Internet. Our web design services, marketing, publication, web programming, positioning, translation and updating of web sites or web pages, are characterized according to the trade policies of our customers, in order to...

PCM (get_gallery.php) SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: PCM getgallery.php SQL Injection Vulnerability Date: 01-10-2012 Author: Mouh Marvel-Dz Facebook : http://www.facebook.com/mouh.marvel Category: webapps Google dork: intext:"PCM" inurl:getgallery.php?id= Tested on: Windows 7...

Microsoft Office 2008 SP0 (Mac) - RTF pFragments

RTF Pfragments exploit for MAC office 2008 Author Abhishek Lyall - abhilyallatgmaildotcom, infoataslitsecuritydotcom Advanced Hacking Trainings - http://training.aslitsecurity.com Web - http://www.aslitsecurity.com/ Blog - http://www.aslitsecurity.blogspot.com/ Office 2007 for MC SP 0...

Wordpress clickdesk-live-support-chat plugin Cross-Site Scripting Vulnerabilities

a bug in Wordpress clickdesk-live-support-chat plugin that allows to us to occur a Cross-Site Scripting on a Remote machin. Www.Aria-security.com/forum/ Wordpress clickdesk-live-support-chat plugin Cross-Site Scripting Vulnerabilities Download......:...

WordPress Plugin wptouch - SQL Injection

WordPress Plugin wptouch - SQL Injection Exploit Title: WordPress wptouch plugin SQL Injection Vulnerability Date: 2011-27-10 Author: longrifle0x software: Wordpress Tools: SQLMAP --------------- POST data --------------- http://www.site.com/wp-content/plugins/wptouch/ajax.php Exploit: id=-1; id=...

WordPress A To Z Category Listing 1.3 SQL Injection

Exploit Title: WordPress A to Z Category Listing plugin 1,BENCHMARK5000000,MD5CHAR115,113,108,109,97,112,0--%20 --------------- Vulnerable code --------------- $initletter = $GET'R'; $sql = "select from ".$tableprefix."terms wpt,".$tableprefix."termtaxonomy wptt where wpt.name like...