CVE-2026-8943 GoStats for WordPress <= 1.4 - Cross-Site Request Forgery via gostats_manage() Function

The GoStats for WordPress plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.4. This is due to missing or incorrect nonce validation on the gostatsmanage function. This makes it possible for unauthenticated attackers to update the plugin's...

CVE-2026-8943 GoStats for WordPress <= 1.4 - Cross-Site Request Forgery via gostats_manage() Function

The GoStats for WordPress plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.4. This is due to missing or incorrect nonce validation on the gostatsmanage function. This makes it possible for unauthenticated attackers to update the plugin's...

EUVD-2008-5563

Malware in sbrugna...

EUVD-2008-6847

Malware in sbrugna...

EUVD-2010-1398

Malware in sbrugna...

EUVD-2009-0256

Malware in sbrugna...

SQL Injection Vulnerability in HDCMS v2.0 siteId Function

HDCMS is a content management system software package developed in PHP+Mysql. It provides customers with powerful and complete functionality to accomplish rapid website development. A SQL injection vulnerability exists in the HDCMS v2.0 siteId function, which can be exploited by remote attackers ...

SQL Injection Vulnerability in PHPMyWind sysevent.php File

PHPMyWind is a PHP MySQL-based development , W3C-compliant building engine . A SQL injection vulnerability exists in the PHPMyWind sysevent.php file. The vulnerability is due to the system siteid parameter does not filter the data submitted by the user, a remote attacker can exploit the...

PHPCMS siteid parameter has SQL injection vulnerability

PHPCMS is a web content management system based on PHP and Mysql architecture. The system includes modules such as news, pictures, downloads, information and products. PHPCMS is vulnerable to SQL injection. As the program failed to securely filter the encryption operation of siteid parameters...

iScripts AutoHoster 3.0 - siteid SQL Injection

iScripts AutoHoster 3.0 - siteid SQL Injection Exploit Title: iScripts AutoHoster v3.0 Script - SQL Injection Google Dork: N/A Date: 04.02.2017 Vendor Homepage: http://www.iscripts.com/ Software Buy: http://www.iscripts.com/autohoster/ Demo: http://www.demo.iscripts.com/autohoster/demo/ Version:...

iScripts AutoHoster 3.0 - &#039;siteid&#039; SQL Injection

Exploit Title: iScripts AutoHoster v3.0 Script - SQL Injection Google Dork: N/A Date: 04.02.2017 Vendor Homepage: http://www.iscripts.com/ Software Buy: http://www.iscripts.com/autohoster/ Demo: http://www.demo.iscripts.com/autohoster/demo/ Version: 3.0 Tested on: Win7 x64, Kali Linux x64 Exploit...

search.detik.com XSS vulnerability

Vulnerable URL: http://search.detik.com/searchfoto?query=NoGe=dcnav=prompt'OPENBUGBOUNTY'...

科创CMS search_process_hn.jsp 参数siteId SQL注入漏洞

No description provided by source...

科创CMS addLinks_do.jsp 参数siteid SQL注入漏洞

No description provided by source...

ASP Dynamika 2.5 Cross Site Scripting

Exploit Title : ASP Dynamika 2.5 Cross Site Scripting Vulnerability Exploit Author : Persian Hack Team Vendor Homepage : http://www.dynamika.co.il/ Google Dork : "Powered By : Dynamika" Date : 2015/12/08 Version : 2.5 Vulnerable Paramter siteid= Bypass '"--alert0xa Demo:...

Sql injection

SQL injection vulnerability in detailad.asp in Pre Classified Listings ASP allows remote attackers to execute arbitrary SQL commands via the siteid parameter...

CVE-2010-1370

SQL injection vulnerability in detailad.asp in Pre Classified Listings ASP allows remote attackers to execute arbitrary SQL commands via the siteid parameter...

CVE-2010-1370

SQL injection vulnerability in detailad.asp in Pre Classified Listings ASP allows remote attackers to execute arbitrary SQL commands via the siteid parameter...

CVE-2010-1370

CVE-2010-1370 describes an SQL injection vulnerability in detailad.asp within Pre Classified Listings ASP, allowing remote attackers to execute arbitrary SQL commands via the siteid parameter. The NVD entry lists a base score of 7.5 (High) with network attack vector, low attack complexity, and no...

dotNETCMS v1. 3 vulnerability 0day-vulnerability warning-the black bar safety net

Affected versions: dotNETCMS v1. 3 Vulnerability description: 前些 天 在 t00ls.net discussion the discovery of this system, and new cloud that vulnerability almost. By IIS6. 0 resolve get the shell. Exploit method: the article first black and white front First registered members, and then into the...