Unfixed XSS vulnerability at www.ehb.itu.edu.tr

Security researcher frosTmaturidi, has submitted on 15/07/2008 a cross-site-scripting XSS vulnerability affecting www.ehb.itu.edu.tr, which at the time of submission ranked 19168 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 01/09/2009. It is...

CVE-2007-2169

CVE-2007-2169 describes a static code injection vulnerability in Mozzers SubSystem 1.0, specifically in add.php. The issue allows remote attackers to inject PHP code into subs.php via the (1) Sub-name or (2) Sub-url fields. An earlier report suggests the add action can also be reached through a r...