17 matches found
EUVD-2017-8850
Malware in sbrugna...
EUVD-2017-8851
Malware in sbrugna...
EUVD-2017-8852
Malware in sbrugna...
Techno - Portfolio Management Panel SQL Injection Vulnerability
Techno - Portfolio Management Panel is a set of portfolio management panel scripts. A SQL injection vulnerability exists in Techno - Portfolio Management Panel 2017-11-16 and earlier versions. A remote attacker can exploit the vulnerability by sending the 's' parameter to the panel/search.php fil...
Techno - Portfolio Management Panel Access Control Vulnerability
Techno - Portfolio Management Panel is a set of portfolio management panel scripts. An access control vulnerability exists in Techno - Portfolio Management Panel on 2017-11-16 and prior versions, which stems from the program failing to detect if a panel/portfolio.php?action=delete request is...
Techno - Portfolio Management Panel Information Disclosure Vulnerability
Techno - Portfolio Management Panel is a set of portfolio management panel scripts. An information disclosure vulnerability exists in Techno - Portfolio Management Panel 2017-11-16 and earlier versions. An attacker can exploit the vulnerability by sending an invalid 's' parameter to the...
Sql injection
Techno - Portfolio Management Panel through 2017-11-16 allows SQL Injection via the panel/search.php s parameter...
CVE-2017-17695
Techno - Portfolio Management Panel through 2017-11-16 allows SQL Injection via the panel/search.php s parameter...
Design/Logic Flaw
Techno - Portfolio Management Panel through 2017-11-16 allows XSS via the panel/search.php s parameter...
CVE-2017-17696
Techno - Portfolio Management Panel through 2017-11-16 allows full path disclosure via an invalid s parameter to panel/search.php...
CVE-2017-17694
Techno - Portfolio Management Panel through 2017-11-16 allows XSS via the panel/search.php s parameter...
CVE-2017-17695
Techno - Portfolio Management Panel through 2017-11-16 allows SQL Injection via the panel/search.php s parameter...
CVE-2017-17110
Techno Portfolio Management Panel 1.0 allows an attacker to inject SQL commands via a single.php?id= request...
Sql injection
Techno Portfolio Management Panel 1.0 allows an attacker to inject SQL commands via a single.php?id= request...
CVE-2017-17110
Techno Portfolio Management Panel 1.0 is affected by an SQL injection in the parameter 'id' of the single.php endpoint. The CNVD entry describes a SQL injection vulnerability that lets an attacker inject arbitrary SQL commands via single.php?id=, enabling data access/manipulation. The issue is co...
CVE-2017-17110
Techno Portfolio Management Panel 1.0 allows an attacker to inject SQL commands via a single.php?id= request...
Techno Portfolio Management Panel - id SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Techno - Portfolio Management Panel 1.0 - SQL Injection Vendor Homepage: https://codecanyon.net/user/engtechno Software Link: https://codecanyon.net/item/techno-portfolio-management-panel/20919551 Demo: http://dacy.esy.es/eng/...