1344 matches found
Multiple Vulnerabilities in KrisonAV CMS
High-Tech Bridge Security Research Lab discovered multiple vulnerabilities in KrisonAV CMS, which can be exploited to perform cross-site scripting and cross-site request forgery attacks. 1 Cross-Site Scripting XSS vulnerability in KrisonAV CMS: CVE-2013-2712 The vulnerability exists due to...
DEBIAN-CVE-2013-2275
The default configuration for puppet masters 0.25.0 and later in Puppet before 2.6.18, 2.7.x before 2.7.21, and 3.1.x before 3.1.1, and Puppet Enterprise before 1.2.7 and 2.7.x before 2.7.2, allows remote authenticated nodes to submit reports for other nodes via unspecified vectors...
Microsoft Word UNC Path Injector
This module modifies a .docx file that will, upon opening, submit stored netNTLM credentials to a remote host. It can also create an empty docx file. If emailed the receiver needs to put the document in editing mode before the remote server will be contacted. Preview and read-only mode do not wor...
X-Ray 2.0 - VirusTotal frontent version for Suspicious Files Auto Submit
Raymond announce X-Ray 2.0, a program which is frontend for VirusTotal multi scanner. X-Ray will provide users with automatic submission of files that you think are suspicious to 35 Agnitum, Antiy Labs, Avast, AVG, Avira, Bitdefender, QuickHeal, ClamAV, Comodo, Dr.Web, Emsisoft, ESET, F-Prot,...
CVE-2012-5230
Unspecified vulnerability in the JE Story Submit comjesubmit component before 1.9 for Joomla! has unknown impact and attack vectors...
CVE-2012-5230
Unspecified vulnerability in the JE Story Submit comjesubmit component before 1.9 for Joomla! has unknown impact and attack vectors...
Design/Logic Flaw
Unspecified vulnerability in the JE Story Submit comjesubmit component before 1.9 for Joomla! has unknown impact and attack vectors...
CVE-2012-5230
Unspecified vulnerability in the JE Story Submit comjesubmit component before 1.9 for Joomla! has unknown impact and attack vectors...
CVE-2012-5230
CVE-2012-5230 affects the Joomla! JE Story Submit (com_jesubmit) component prior to 1.9. The connected sources confirm an unspecified vulnerability with unknown impact and attack vectors, anchored by a CVSSv2 base score of 7.5 (HIGH). The affected item is specifically the com_jesubmit integration...
CVE-2011-5179
Cross-site scripting XSS vulnerability in skysa-official/skysa.php in Skysa App Bar Integration plugin, possibly before 1.04, for WordPress allows remote attackers to inject arbitrary web script or HTML via the submit parameter...
Notepad Dog microblogging V3. 6. 1 Build 2 0 A 1 2 0 7 1 8 background to get shell-vulnerability warning-the black bar safety net
Notepad Dog microblogging system, the background presence of design defects that can lead to get backstage access to the shell Version: V3. 6. 1 Build 2 0 a 1 2 0 7 1 8 1. System Tools-data backup-custom backup-select a data amount smaller table-more options-select compress backup...
idev-Blog 1.0 Cross Site Request Forgery
Exploit Title: idev-Blog 1.0 CSRF Author: Jonturk75 Vendor or Software Link: http://idevspot.com/ Category:: webapps Demo : http://idevspot.com/demos/idev-blog/admin/ Greetz: Inj3ct0r Exploit DataBase 1337day.com...
idev-DigiMall 2.0 Cross Site Request Forgery
Exploit Title: idev-DigiMall 2.0 CSRF Author: Jonturk75 Vendor or Software Link: http://idevspot.com/ Category:: webapps Demo : http://idevspot.com/demos/idev-digimall/admin Greetz: Inj3ct0r Exploit DataBase 1337day.com ShowHide...
idev-MusicShop 2.0 Cross Site Request Forgery
Exploit Title: idev-MusicShop 2.0 CSRF Author: Jonturk75 Vendor or Software Link: http://idevspot.com/ Category:: webapps Demo : http://idevspot.com/demos/idev-musicshop/admin Greetz: Inj3ct0r Exploit DataBase 1337day.com ShowShowHide...
idev-ArticleDirectory 1.0 CSRF Vulnerability
Exploit for php platform in category web applications Exploit Title: idev-ArticleDirectory 1.0 CSRF Author: Jonturk75 Vendor or Software Link: http://www.idevspot.com/ Category:: webapps Demo : http://idevspot.com/demos/idev-articledirectory/admin/ Greetz: Inj3ct0r Exploit DataBase 1337day.com...
PHP Form & Survey Creator CSRF Vulnerability
Exploit for php platform in category web applications Exploit Title: PHP Form & Survey Creator CSRF Author: Jonturk75 Vendor or Software Link: http://www.scripts.com/viewscript/php-form-survey-creator/29396/ Category:: webapps Demo : http://web.alumnionline.org/phpScripts/PHPFormCreator/admin/...
Ajax PHP Penny Auction CSRF Vulnerability
Exploit for php platform in category web applications Exploit Title: Ajax PHP Penny Auction CSRF Author: Jonturk75 Vendor or Software Link: http://www.scripts.com/viewscript/ajax-php-penny-auction-script-software/28039/ Category:: webapps Demo : http://www.vdsdemoajaxphppennyauction.com/admin/...
Ad Manager Pro Cross Site Request Forgery
Exploit Title: Ad Manager Pro CSRF Vuln add admin Author: Jonturk75 Vendor of Software Link: http://www.scripts.com/viewscript/php-text-ad-management/20881/ Category:: webapps Demo site: http://www.scripts-demo.com/admanagerpro/administration/index.php...
Joomla! Component JE Story Submit - index.php Arbitrary File Upload
Joomla! Component JE Story Submit - index.php Arbitrary File Upload source: https://www.securityfocus.com/bid/51657/info The 'comjesubmit' component for Joomla! is prone to a vulnerability that lets attackers upload arbitrary files because the application fails to adequately sanitize user-supplie...
Joomla! Component JE Story Submit - 'index.php' Arbitrary File Upload
source: https://www.securityfocus.com/bid/51657/info The 'comjesubmit' component for Joomla! is prone to a vulnerability that lets attackers upload arbitrary files because the application fails to adequately sanitize user-supplied input. An attacker can exploit this vulnerability to upload...