Lucene search
K

23 matches found

Packet Storm
Packet Storm
added 2017/02/16 12:0 a.m.29 views

Joomla Spider Catalog Lite 1.8.10 SQL Injection

Exploit Title: Joomla! Component Spider Catalog Lite v1.8.10 - SQL Injection Google Dork: inurl:index.php?option=comspidercatalog Date: 16.02.2017 Vendor Homepage: http://web-dorado.com/ Software Buy:...

0.2AI score
Exploits0
exploitpack
exploitpack
added 2017/02/16 12:0 a.m.12 views

Joomla! Component Spider Catalog Lite 1.8.10 - SQL Injection

Joomla! Component Spider Catalog Lite 1.8.10 - SQL Injection Exploit Title: Joomla! Component Spider Catalog Lite v1.8.10 - SQL Injection Google Dork: inurl:index.php?option=comspidercatalog Date: 16.02.2017 Vendor Homepage: http://web-dorado.com/ Software Buy:...

0.3AI score
Exploits0
0day.today
0day.today
added 2017/02/16 12:0 a.m.31 views

Joomla Spider Catalog Lite 1.8.10 Component - SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Joomla! Component Spider Catalog Lite v1.8.10 - SQL Injection Google Dork: inurl:index.php?option=comspidercatalog Date: 16.02.2017 Vendor Homepage: http://web-dorado.com/ Software Buy:...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2017/02/16 12:0 a.m.45 views

Joomla! Component Spider Catalog Lite 1.8.10 - SQL Injection

Exploit Title: Joomla! Component Spider Catalog Lite v1.8.10 - SQL Injection Google Dork: inurl:index.php?option=comspidercatalog Date: 16.02.2017 Vendor Homepage: http://web-dorado.com/ Software Buy:...

7.4AI score
Exploits0
NVD
NVD
added 2015/06/15 2:59 p.m.14 views

CVE-2015-4350

Multiple cross-site request forgery CSRF vulnerabilities in the Spider Catalog module for Drupal allow remote attackers to hijack the authentication of administrators for requests that delete 1 products, 2 ratings, or 3 categories via unspecified vectors...

6.8CVSS7.3AI score0.00649EPSS
Exploits0References3
Prion
Prion
added 2015/06/15 2:59 p.m.11 views

Cross site request forgery (csrf)

Multiple cross-site request forgery CSRF vulnerabilities in the Spider Catalog module for Drupal allow remote attackers to hijack the authentication of administrators for requests that delete 1 products, 2 ratings, or 3 categories via unspecified vectors...

6.8CVSS7.8AI score0.00649EPSS
Exploits0References3
CVE
CVE
added 2015/06/15 2:0 p.m.44 views

CVE-2015-4350

The CVE-2015-4350 entry concerns Drupal’s Spider Catalog contributed module, which has CSRF vulnerabilities. The root cause is insufficient CSRF protection on certain URLs, allowing remote attackers to trigger administrator actions that delete products, ratings, or categories. The issue is tied t...

6.8CVSS7.4AI score0.00649EPSS
Exploits0References3Affected Software1
Patchstack
Patchstack
added 2015/05/15 12:0 a.m.15 views

WordPress Spider Catalog Plugin - Multiple Vulnerabilities

This plugin is prone to a cross site scripting and SQL injection vulnerabilities. Solution Update the plugin...

2.1AI score
Exploits0References1Affected Software1
CNVD
CNVD
added 2015/02/28 12:0 a.m.2 views

Drupal Spider Catalog Module Cross-Site Request Forgery Vulnerability

Drupal is a free, open-source content management system developed in PHP and maintained by the Drupal community.Spider Catalog is one of the modules used to form a product catalog from the website. A cross-site request forgery vulnerability exists in the Drupal Spider Catalog module, which stems...

6.8CVSS7.1AI score0.00649EPSS
Exploits0References1
Drupal
Drupal
added 2015/02/25 12:0 a.m.14 views

SA-CONTRIB-2015-058 - Spider Catalog - Cross Site Request Forgery (CSRF) - Unsupported

Spider Catalog module enables you to build product catalogs. The module doesn't sufficiently protect some URLs against CSRF. A malicious user can cause an administrator to delete products, ratings and categories by getting their browser to make a request to a specially-crafted URL. CVE identifier...

6.8CVSS6.4AI score0.00649EPSS
Exploits0References8
WPVulnDB
WPVulnDB
added 2014/08/01 10:59 a.m.9 views

Spider Catalog - Cross-Site Scripting & SQL Injection Vulnerabilities

The spider-catalog WordPress plugin was affected by a Cross-Site Scripting & SQL Injection Vulnerabilities security vulnerability...

2AI score
Exploits0Affected Software1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.53 views

Wordpress Spider Catalog Plugin 1.4.6 - Multiple Vulnerabilities

No description provided by source. waraxe-2013-SA105 - Multiple Vulnerabilities in Spider Catalog Wordpress Plugin =================================================================================== Author: Janek Vind waraxe Date: 22. May 2013 Location: Estonia, Tartu Web:...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.36 views

Wordpress Spider Catalog 1.1 HTML Code Injection and Cross-Site scripting

No description provided by source. 1 1 0 I'm D4NB4R member from Inj3ct0r Team 1 1 0 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1 Exploit Title: Wordpress Plugin Catalog HTML Code Injection and Cross-site scripting Dork: N/A Date: 31-10-2012 Author: Daniel Barragan D4NB...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.42 views

Joomla Spider Catalog (index.php, product_id parameter) SQL Injection Vulnerability

No description provided by source. 1 1 0 I'm D4NB4R member from Inj3ct0r Team 1 1 0 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1 Exploit Title: Joomla comspidercatalog SQL injection Vulnerability Dork: inurl:index.php?option=comspidercatalog Date: 31-10-2012 Author:...

7.1AI score
Exploits0
securityvulns
securityvulns
added 2013/07/08 12:0 a.m.107 views

[waraxe-2013-SA#105] - Multiple Vulnerabilities in Spider Catalog Wordpress Plugin

waraxe-2013-SA105 - Multiple Vulnerabilities in Spider Catalog Wordpress Plugin =================================================================================== Author: Janek Vind "waraxe" Date: 22. May 2013 Location: Estonia, Tartu Web: http://www.waraxe.us/advisory-105.html Description of...

7.2AI score
Exploits0
Patchstack
Patchstack
added 2013/05/26 12:0 a.m.10 views

WordPress Spider Catalog Plugin 1.4.6 - Multiple Vulnerabilities

Spider Catalog plugin is prone to multiple vulnerabilities. These vulnerabilities are: 1. SQL Injection in Spider Catalog Shortcodes; 2. SQL Injection in "catalog.php" function "catalogaftersearchresults"; 3. SQL Injection in "Categories.php" function "changecat"; 4. SQL Injection in...

2AI score
Exploits0References1Affected Software1
Exploit DB
Exploit DB
added 2013/05/26 12:0 a.m.71 views

WordPress Plugin Spider Catalog 1.4.6 - Multiple Vulnerabilities

waraxe-2013-SA105 - Multiple Vulnerabilities in Spider Catalog Wordpress Plugin =================================================================================== Author: Janek Vind "waraxe" Date: 22. May 2013 Location: Estonia, Tartu Web: http://www.waraxe.us/advisory-105.html Description of...

7AI score
Exploits0
Packet Storm
Packet Storm
added 2013/05/22 12:0 a.m.24 views

Spider Catalog 1.4.6 Cross Site Scripting / Path Disclosure / SQL Injection

waraxe-2013-SA105 - Multiple Vulnerabilities in Spider Catalog Wordpress Plugin =================================================================================== Author: Janek Vind "waraxe" Date: 22. May 2013 Location: Estonia, Tartu Web: http://www.waraxe.us/advisory-105.html Description of...

0.4AI score
Exploits0
Patchstack
Patchstack
added 2012/11/04 12:0 a.m.11 views

WordPress Spider Catalog Plugin 1.1 - HTML Code Injection and Cross-Site Scripting

Spider Catalog plugin is prone to HTML code injection and cross-site scripting vulnerabilities. Solution Update the plugin...

1.3AI score
Exploits0References1Affected Software1
exploitpack
exploitpack
added 2012/11/04 12:0 a.m.21 views

WordPress Plugin Spider Catalog 1.1 - HTML Code Injection Cross-Site Scripting

WordPress Plugin Spider Catalog 1.1 - HTML Code Injection Cross-Site Scripting 1 1 0 I'm D4NB4R member from Inj3ct0r Team 1 1 0 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1 Exploit Title: Wordpress Plugin Catalog HTML Code Injection and Cross-site scripting Dork: N/A...

7.2AI score
Exploits0
Rows per page
Query Builder