Lucene search
+L

57 matches found

NVD
NVD
added 2019/09/10 12:15 p.m.20 views

CVE-2017-18604

The sitebuilder-dynamic-components plugin through 1.0 for WordPress has PHP object injection via an AJAX request...

7.5CVSS7.9AI score0.01637EPSS
Exploits2References2
Prion
Prion
added 2019/09/10 12:15 p.m.15 views

Cross site request forgery (csrf)

The sitebuilder-dynamic-components plugin through 1.0 for WordPress has PHP object injection via an AJAX request...

5CVSS7.9AI score0.01637EPSS
Exploits2References2Affected Software1
CVE
CVE
added 2019/09/10 11:8 a.m.49 views

CVE-2017-18604

The CVE-2017-18604 entry concerns the WordPress plugin sitebuilder-dynamic-components (up to version 1.0). Multiple sources confirm a PHP object injection vulnerability reachable via AJAX requests, enabling an unauthenticated/vector-based impact with HIGH integrity risk (CVSS v3.1: 7.5). Affected...

7.5CVSS7.8AI score0.01637EPSS
Exploits2References2Affected Software1
Cvelist
Cvelist
added 2019/09/10 11:8 a.m.21 views

CVE-2017-18604

The sitebuilder-dynamic-components plugin through 1.0 for WordPress has PHP object injection via an AJAX request...

7.9AI score0.01637EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2017/12/27 12:0 a.m.30 views

Parallels Plesk Sitebuilder Remote Detection

Detection of installed version of Parallels Plesk Sitebuilder. This script sends an HTTP GET request and tries to get the version from the response. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective...

7AI score
Exploits0
OpenVAS
OpenVAS
added 2017/12/27 12:0 a.m.38 views

Parallels Plesk Sitebuilder Multiple Vulnerabilities

Parallels Plesk Sitebuilder is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

7.3AI score
Exploits0References1
WPVulnDB
WPVulnDB
added 2017/04/27 12:0 a.m.18 views

SiteBuilder Dynamic Components <= 1.0 - Unauthenticated PHP Object Injection

The plugin sitebuilder-dynamic-components insecurely trusts serialized data submitted over AJAX requests. This opens up the site to a PHP object injection vulnerability potential exploit vector. PoC Attack is exploitable over AJAX calls sites with the sitebuilder-dynamic-components Plugin...

5CVSS2.7AI score0.01637EPSS
Exploits2References1Affected Software1
seebug.org
seebug.org
added 2014/11/13 12:0 a.m.38 views

Parallels Plesk Sitebuilder 9.5 - Multiple Vulnerabilities

No description provided by source. +++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Title : Multiple Vulnerabilities in Parallels® Plesk Sitebuilder Author : alieye vendor : http://www.parallels.com/ Contact : [email protected] Risk : High Class: Remote Google Dork: inurl::2006/Sites...

7.1AI score
Exploits0
0day.today
0day.today
added 2014/10/28 12:0 a.m.38 views

Parallels Plesk Sitebuilder 9.5 - Multiple Vulnerabilities

Exploit for php platform in category web applications +++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Title : Multiple Vulnerabilities in Parallels® Plesk Sitebuilder Author : alieye vendor : http://www.parallels.com/ Contact : email protected Risk : High Class: Remote Google Dork:...

7.1AI score
Exploits0
securityvulns
securityvulns
added 2014/10/16 12:0 a.m.70 views

Multiple Vulnerabilities in Parallels® Plesk Sitebuilder

+++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Title : Multiple Vulnerabilities in Parallels® Plesk Sitebuilder Author : alieye vendor : http://www.parallels.com/ Contact : [email protected] Risk : High Class: Remote Google Dork: inurl::2006/Sites ext:aspx inurl::2006 inurl:.ashx?media...

0.4AI score
Exploits0
exploitpack
exploitpack
added 2014/09/09 12:0 a.m.20 views

Parallels Plesk Sitebuilder 9.5 - Multiple Vulnerabilities

Parallels Plesk Sitebuilder 9.5 - Multiple Vulnerabilities +++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Title : Multiple Vulnerabilities in Parallels® Plesk Sitebuilder Author : alieye vendor : http://www.parallels.com/ Contact : [email protected] Risk : High Class: Remote Google Dor...

Exploits0
Exploit DB
Exploit DB
added 2014/09/09 12:0 a.m.43 views

Parallels Plesk Sitebuilder 9.5 - Multiple Vulnerabilities

+++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Title : Multiple Vulnerabilities in Parallels® Plesk Sitebuilder Author : alieye vendor : http://www.parallels.com/ Contact : [email protected] Risk : High Class: Remote Google Dork: inurl::2006/Sites ext:aspx inurl::2006 inurl:.ashx?media...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2014/07/25 12:0 a.m.52 views

Plesk Sitebuilder XSS / Bypass / Shell Upload / File Download

+++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Title : Multiple Vulnerabilities in Parallels® Plesk Sitebuilder Author : alieye vendor : http://www.parallels.com/ Contact : [email protected] Risk : High Class: Remote Google Dork: inurl::2006/Sites ext:aspx inurl::2006 inurl:.ashx?media...

0.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.13 views

Sitebuilder 1.4 'sitebuilder.cgi' Directory Traversal File Disclosure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8521/info Sitebuilder is said to be prone to a directory traversal vulnerability, potentially allowing users to disclose the contents of system files. The problem occurs due to the application failing to parse user-suppli...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.14 views

SiteBuilder-FX Top.PHP Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/18756/info SiteBuilder-FX is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include an...

7.1AI score
Exploits0
Prion
Prion
added 2011/12/16 11:55 a.m.14 views

Code injection

The Site Editor aka SiteBuilder feature in Parallels Plesk Small Business Panel 10.2.0 does not include the HTTPOnly flag in a Set-Cookie header for a cookie, which makes it easier for remote attackers to obtain potentially sensitive information via script access to this cookie, as demonstrated b...

4.3CVSS6.6AI score0.01054EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2011/12/16 11:0 a.m.51 views

CVE-2011-4766

The CVE-2011-4766 entry concerns Parallels Plesk Small Business Panel 10.2.0, specifically the Site Editor/SiteBuilder and the file wysiwyg/fckconfig.js. The claim is that remote attackers could obtain ASP source code via direct access to that file; however, multiple sources note this is disputed...

5CVSS6.9AI score0.01173EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2011/12/16 11:0 a.m.45 views

CVE-2011-4767

The CVE-2011-4767 issue affects Parallels Plesk Small Business Panel 10.2.0, specifically the Site Editor (SiteBuilder) feature. It describes web pages containing e-mail addresses not intended for deployment-related correspondence, enabling remote attackers to obtain potentially sensitive informa...

5CVSS6.2AI score0.0116EPSS
Exploits0References2Affected Software1
0day.today
0day.today
added 2011/06/23 12:0 a.m.36 views

Ez sitebuilder <= Admin Auth Bypass Vulnerability

Exploit for php platform in category web applications ===================================================================== . . . . | | ||/ | || | / / \ / /\ | | / | \ \ | |/ | \ / | || | // | / // | \ /\ | /|//|||| |\ | / /|| / Exploit-ID is the Exploit Information Disclosure Web :...

7.1AI score
Exploits0
0day.today
0day.today
added 2010/09/02 12:0 a.m.31 views

Parallels Plesk Sitebuilder Persistent Xss Vulnerability

Exploit for php platform in category web applications ======================================================== Parallels Plesk Sitebuilder Persistent Xss Vulnerability ======================================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0...

7.1AI score
Exploits0
Rows per page
Query Builder