Lucene search
K

12 matches found

CNVD
CNVD
added 2022/07/11 12:0 a.m.21 views

HumHub Cross-Site Scripting Vulnerability (CNVD-2022-82657)

HumHub is a set of open source social networking software written on the Yii PHP framework. HumHub suffers from a cross-site scripting vulnerability that could be exploited by attackers to insert malicious javascript into the space name...

5.9CVSS2AI score0.0057EPSS
Exploits0References1
CNVD
CNVD
added 2020/03/15 12:0 a.m.3 views

Jiaxing Wantsky Information Technology Co., Ltd. OpenSNS_v6.2.0 file upload vulnerabilities exist

OpenSNS is a comprehensive social networking software developed by Thinking Sky. You can use OpenSNS to quickly build a social networking site similar to the same social networking site as New Wave Microblogging. OpenSNSv6.2.0 has a file upload vulnerability that can be exploited by attackers to...

7AI score
Exploits0
Exploit DB
Exploit DB
added 2015/12/23 12:0 a.m.39 views

PhpSocial 2.0.0304_20222226 - Cross-Site Request Forgery

Security Advisory - Curesec Research Team 1. Introduction Affected Product: PhpSocial v2.0.030420222226 Fixed in: not fixed Fixed Version Link: n/a Vendor Webite: http://phpsocial.net Vulnerability Type: CSRF Remote Exploitable: Yes Reported to vendor: 11/21/2015 Disclosed to public: 12/21/2015...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2014/07/29 12:0 a.m.45 views

Oxwall 1.7.0 - Remote Code Execution Exploit

No description provided by source. !/usr/bin/env python Oxwall 1.7.0 Remote Code Execution Exploit Vendor: Oxwall Software Foundation Product web page: http://www.oxwall.org Affected version: 1.7.0 build 7907 and 7906 Summary: Oxwall is unbelievably flexible and easy to use PHP/MySQL social...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2014/07/28 12:0 a.m.26 views

Oxwall 1.7.0 - Remote Code Execution

Oxwall 1.7.0 - Remote Code Execution !/usr/bin/env python Oxwall 1.7.0 Remote Code Execution Exploit Vendor: Oxwall Software Foundation Product web page: http://www.oxwall.org Affected version: 1.7.0 build 7907 and 7906 Summary: Oxwall is unbelievably flexible and easy to use PHP/MySQL social...

8.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.83 views

Pligg CMS (story.php?id) 1.0.4 - SQL Injection Vulnerability

No description provided by source. / ! Pligg CMS story.php?id SQL Injection Vulnerability ! Author : Don Tukulesto [email protected] ! Homepage: http://indonesiancoder.com ! Date : Tue, April 27, 2010 ! Tune in : http://antisecradio.fm choose your weapon / Software Information Vendor :...

7.1AI score
Exploits0
0day.today
0day.today
added 2010/10/28 12:0 a.m.64 views

AlstraSoft E-Friends 4.96 Multiple Remote Vulnerabilities

Exploit for php platform in category web applications ========================================================= AlstraSoft E-Friends 4.96 Multiple Remote Vulnerabilities ========================================================= Name AlstraSoft E-Friends Vendor http://www.alstrasoft.com Versions...

7.1AI score
Exploits0
0day.today
0day.today
added 2010/07/06 12:0 a.m.24 views

PG Social Networking Shell upload Vulnerabilty

Exploit for php platform in category web applications ============================================== PG Social Networking Shell upload Vulnerabilty ============================================== Name : PG Social Networking --Shell upload Vulnerabilty Critical Level :VERY HIGH vendor URL...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2010/04/29 12:0 a.m.104 views

Pligg CMS (story.php?id) SQL Injection Vulnerability

No description provided by source. / ! Pligg CMS story.php?id SQL Injection Vulnerability ! Author : Don Tukulesto [email protected] ! Homepage: http://indonesiancoder.com ! Date : Tue, April 27, 2010 ! Tune in : http://antisecradio.fm choose your weapon / Software Information Vendor :...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2010/04/28 12:0 a.m.44 views

Pligg CMS 1.0.4 SQL Injection

/ ! Pligg CMS story.php?id SQL Injection Vulnerability ! Author : Don Tukulesto [email protected] ! Homepage: http://indonesiancoder.com ! Date : Tue, April 27, 2010 ! Tune in : http://antisecradio.fm choose your weapon / Software Information Vendor : http://www.pligg.com/ Download:...

0.2AI score
Exploits0
Packet Storm
Packet Storm
added 2010/04/28 12:0 a.m.28 views

i-Net Online Community SQL Injection / Cross Site Scripting

Exploit Title: XSS and Authentication bypass in i-Net Online Community site script Date: 27-apr-2010 Author: Sid3^effects Software Link: N/a CVE : Code : XSS and Authentication bypass in i-Net Online Community site script Vendor:http://www.i-netsolution.com/ Author:Sid3^effects aKa haRi Descripti...

0.3AI score
Exploits0
seebug.org
seebug.org
added 2007/12/04 12:0 a.m.15 views

datecomm Social Networking Software Index.PHP远程文件包含漏洞

datecomm Social Networking Software是一款基于PHP的WEB应用程序。 datecomm Social Networking Software不正确过滤用户提交的URI数据,远程攻击者可以利用漏洞以WEB权限执行任意PHP代码。 问题是由于'index.php'脚本对用户提交的'pg'参数缺少过滤,指定远程服务器上的任意文件作为包含参数,可导致以WEB权限执行任意PHP代码。 Datecomm Social Networking Script 目前没有详细解决方案提供: http://www.datecomm.com/...

7.1AI score
Exploits0
Rows per page
Query Builder