20 matches found
Havij <= 1.10 - Persistent XSS
No description provided by source. Exploit Title: Havij Persistent XSS =v1.10 Date: 15/6/2010 Author: hexon Version: 1.10 and below Tested on: Windows XP Service Pack 2 Professional, Windows 7 Code : htttp://site.com/file.php?param=XSS Code Havij Persistent XSS =v1.10 By : Hkhexon [email protected]...
Hexjector <= 1.0.7.2 - Persistent XSS
No description provided by source. Exploit Title: Hexjector Persistent XSS =v1.0.7.2 Date: 25/5/2010 Author: Hexon Software Link: https://sourceforge.net/projects/hexjector/files/HexjectorWin32/Hexjector v1.0.7.2.zip/download Version: v1.0.7.2 and below Tested on: Windows XP SP2, Windows 7,Ubuntu...
blogcms 4.2.1b (sql/xss) Multiple Vulnerabilities
No description provided by source. Digital Security Research Group DSecRG Advisory DSECRG-08-003 Application: Blogcms Versions Affected: Blogcms 4.2.1b Vendor URL: http://blogcms.com/ Bugs: SQL Injestions, SiXSS, XSS Exploits: YES Reported: 15.01.2008 Vendor response: 16.01.2008 Date of Public...
Havij 1.10 Cross Site Scripting
Exploit Title: Havij Persistent XSS =v1.10 Date: 15/6/2010 Author: hexon Software Link: http://itsecteam.com/files/Havij%201.10.rar Version: 1.10 and below Tested on: Windows XP Service Pack 2 Professional, Windows 7 Code : htttp://site.com/file.php?param=XSS Code Havij Persistent XSS =v1.10 By :...
Havij 1.10 - Persistent Cross-Site Scripting
Havij 1.10 - Persistent Cross-Site Scripting Exploit Title: Havij Persistent XSS =v1.10 Date: 15/6/2010 Author: hexon Version: 1.10 and below Tested on: Windows XP Service Pack 2 Professional, Windows 7 Code : htttp://site.com/file.php?param=XSS Code Havij Persistent XSS =v1.10 By : Hkhexon...
Havij Persistent <=v1.10 XSS Vulnerability
Exploit for php platform in category web applications ========================================== Havij Persistent =v1.10 XSS Vulnerability ========================================== Exploit Title: Havij Persistent XSS =v1.10 Date: 15/6/2010 Author: hexon Version: 1.10 and below Tested on: Windows...
Havij 1.10 - Persistent Cross-Site Scripting
Exploit Title: Havij Persistent XSS =v1.10 Date: 15/6/2010 Author: hexon Version: 1.10 and below Tested on: Windows XP Service Pack 2 Professional, Windows 7 Code : htttp://site.com/file.php?param=XSS Code Havij Persistent XSS =v1.10 By : Hkhexon [email protected] ------------- Vulnerability...
Hexjector 1.0.7.2 Cross Site Scripting
Exploit Title: Hexjector Persistent XSS ".""; $url2 is not filtered so XSS codes can be executed. You would need to find a site that is vulnerable either to XSS or SQL Injection to generate this vulnerability.A site that is vulnerable to XSS only will also work because my Hexjector will not stop...
Hexjector 1.0.7.2 - Persistent Cross-Site Scripting
Hexjector 1.0.7.2 - Persistent Cross-Site Scripting Exploit Title: Hexjector Persistent XSS ".""; $url2 is not filtered so XSS codes can be executed. You would need to find a site that is vulnerable either to XSS or SQL Injection to generate this vulnerability.A site that is vulnerable to XSS onl...
Hexjector Persistent <= v1.0.7.2 XSS Vulnerability
Exploit for php platform in category web applications ================================================== Hexjector Persistent ".""; $url2 is not filtered so XSS codes can be executed. You would need to find a site that is vulnerable either to XSS or SQL Injection to generate this vulnerability.A...
kervinet forum 1.1 - Multiple Vulnerabilities
kervinet forum 1.1 - Multiple Vulnerabilities dork: "Copyright KerviNet" eLwauxc 20.06.2009 Blind SQLinj /index.php ------------------------------------------------------------------------------------------------- if$COOKIE'userenter'=="auto" $enterlogin=$COOKIE'enterlogin';...
KerviNet Forum <= 1.1 Multiple Remote Vulnerabilities
No description provided by source. dork: "Copyright KerviNet" eLwauxc 20.06.2009 Blind SQLinj /index.php ------------------------------------------------------------------------------------------------- if$COOKIE'userenter'=="auto" $enterlogin=$COOKIE'enterlogin'; $enterparol=$COOKIE'enterparol';...
[DSECRG-08-017] Flyspray 0.9.9.4 Multiple Security Vulnerabilities
Digital Security Research Group DSecRG Advisory DSECRG-08-017 Application: Flyspray web-based bug tracking system Versions Affected: 0.9.9.4 Vendor URL: http://www.flyspray.org Bugs: SiXSS, Stored XSS, Brute Force Exploits: YES Reported: 08.02.2008 Vendor response: 08.02.2008 Solution: 24.02.2008...
DSECRG-08-013.txt
Digital Security Research Group DSecRG Advisory DSECRG-08-013 Application: MODx CMS Versions Affected: 0.9.6.1, 0.9.6.1p1 Vendor URL: http://modxcms.com/ Bugs: XSS, SiXSS, stored XSS, Change User Password XSRF Vulnerability. Exploits: YES Reported: 11.01.2008 Vendor response: 11.01.2008 Updated...
[DSECRG-08-013] Modx 0.9.6.1, 0.9.6.1p1 Multiple Security Vulnerabilities
Digital Security Research Group DSecRG Advisory DSECRG-08-013 Application: MODx CMS Versions Affected: 0.9.6.1, 0.9.6.1p1 Vendor URL: http://modxcms.com/ Bugs: XSS, SiXSS, stored XSS, Change User Password XSRF Vulnerability. Exploits: YES Reported: 11.01.2008 Vendor response: 11.01.2008 Updated...
[DSECRG-08-011] Astrosoft HelpDesk Multiple XSS
Digital Security Research Group DSecRG Advisory DSECRG-08-011 Application: Astrosoft HelpDesk Versions Affected: Vendor URL: http://astrosoft.ru/ Bugs: Multiple XSS Injections Exploits: YES Reported: 29.01.2008 Vendor response: NONE Date of Public Advisory: 04.02.2008 Authors: Alexandr Polyakov,...
Blogcms 4.2.1b (SQL/XSS) Multiple Remote Vulnerabilities
No description provided by source. Digital Security Research Group DSecRG Advisory DSECRG-08-003 Application: Blogcms Versions Affected: Blogcms 4.2.1b Vendor URL: http://blogcms.com/ Bugs: SQL Injestions, SiXSS, XSS Exploits: YES Reported: 15.01.2008 Vendor response: 16.01.2008 Date of Public...
DSECRG-08-003.txt
Digital Security Research Group DSecRG Advisory DSECRG-08-003 Application: Blogcms Versions Affected: Blogcms 4.2.1b Vendor URL: http://blogcms.com/ Bugs: SQL Injestions, SiXSS, XSS Exploits: YES Reported: 15.01.2008 Vendor response: 16.01.2008 Date of Public Advisory: 16.01.2008 Authors: Alexand...
[DSECRG-08-003] blogcms 4.2.1b Multiple Security Vulnerabilities
Digital Security Research Group DSecRG Advisory DSECRG-08-003 Application: Blogcms Versions Affected: Blogcms 4.2.1b Vendor URL: http://blogcms.com/ Bugs: SQL Injestions, SiXSS, XSS Exploits: YES Reported: 15.01.2008 Vendor response: 16.01.2008 Date of Public Advisory: 16.01.2008 Authors: Alexand...
Blog:CMS 4.2.1b - SQL Injection / Cross-Site Scripting
Digital Security Research Group DSecRG Advisory DSECRG-08-003 Application: Blogcms Versions Affected: Blogcms 4.2.1b Vendor URL: http://blogcms.com/ Bugs: SQL Injestions, SiXSS, XSS Exploits: YES Reported: 15.01.2008 Vendor response: 16.01.2008 Date of Public Advisory: 16.01.2008 Authors: Alexand...