EUVD-2014-7931

Malware in sbrugna...

EUVD-2020-4587

Malware in sbrugna...

EUVD-2009-4207

Malware in sbrugna...

EUVD-2020-4586

Malware in sbrugna...

TestLink 1.19 - Arbitrary File Download (Unauthenticated)

Exploit Title: TestLink 1.19 - Arbitrary File Download Unauthenticated Google Dork: inurl:/testlink/ Date: 07/12/2021 Exploit Author: Gonzalo Villegas Cl34r Exploit Author Homepage: https://nch.ninja Vendor Homepage: https://testlink.org/ Version:1.16 = 1.19 CVSS:...

SQL Injection Vulnerability in Testlink

TestLink is a set of open source software for managing the software testing process and providing statistical analysis. A SQL injection vulnerability exists in Testlink. An attacker can exploit this vulnerability to execute illegal SQL commands...

Cross site scripting

TestLink before 1.9.20 allows XSS via non-lowercase javascript: in the index.php reqURI parameter. NOTE: this issue exists because of an incomplete fix for CVE-2019-19491...

CVE-2019-19491

TestLink 1.9.19 has XSS via the lib/testcases/archiveData.php edit parameter, the index.php reqURI parameter, or the URI in a lib/testcases/tcEdit.php?doAction=doDeleteStep request...

CVE-2014-8081

lib/execute/execSetResults.php in TestLink before 1.9.13 allows remote attackers to conduct PHP object injection attacks and execute arbitrary PHP code via the filterresultresult parameter...