EUVD-2004-2734

Malware in sbrugna...

EUVD-2024-51481

Malicious code in bioql PyPI...

CVE-2024-13267

Improper Neutralization of Directives in Statically Saved Code 'Static Code Injection' vulnerability in Drupal Opigno TinCan Question Type allows PHP Local File Inclusion.This issue affects Opigno TinCan Question Type: from 7.X-1.0 before 7.X-1.3...

CVE-2024-13267 Opigno TinCan Question Type - Critical - Arbitrary PHP code execution - SA-CONTRIB-2024-031

Improper Neutralization of Directives in Statically Saved Code 'Static Code Injection' vulnerability in Drupal Opigno TinCan Question Type allows PHP Local File Inclusion.This issue affects Opigno TinCan Question Type: from 7.X-1.0 before 7.X-1.3...

CVE-2024-13267

The Drupal Opigno TinCan Question Type module (7.X-1.0 through 7.X-1.3) is affected by SA-CONTRIB-2024-031, describing improper neutralization of directives in statically saved code that enables a static code injection vulnerability. This can allow Remote Code Execution (RCE) and/or Cross Site Sc...

CVE-2024-13267 Opigno TinCan Question Type - Critical - Arbitrary PHP code execution - SA-CONTRIB-2024-031

Improper Neutralization of Directives in Statically Saved Code 'Static Code Injection' vulnerability in Drupal Opigno TinCan Question Type allows PHP Local File Inclusion.This issue affects Opigno TinCan Question Type: from 7.X-1.0 before 7.X-1.3...

Drupal 安全漏洞

Drupal is an open source content management system developed in the PHP language by the Drupal community. A security vulnerability exists in Drupal Opigno TinCan Question Type versions 7.X-1.0 through 7.X-1.3, which stems from an unsuccessful neutralization of directives in statically saved code,...

Opigno TinCan Question Type - Critical - Arbitrary PHP code execution - SA-CONTRIB-2024-031

The Opigno TinCan Question Type module is related to Opigno LMS distribution. The module adds a new question type for the Quiz module. With this new question type, you will be able to import TinCan Packages to your Drupal instance and to use it as a question. Uploaded files were not sufficiently...

Drupal Opigno TinCan Question Type module < 7.x-1.3 - Authenticated Remote Code Execution (RCE) vulnerability

Authenticated Remote Code Execution RCE vulnerability discovered by Juraj Nemec in WordPress Module Opigno TinCan Question Type versions 7.x-1.3...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Uncanny Owl Tin Canny LearnDash Reporting before 3.4.4 allows authenticated remote attackers to inject arbitrary web script or HTML via the searchkey GET Parameter in TinCanContentListTable.php, message GET Parameter in licensing.php,...

tincan ltd (section) SQL Injection Vulnerability

No description provided by source. +/=============================================+ + Title : tincan ltd section SQL Injection Vulnerability + site s.p : www.tincan.co.ukhttp://www.tincan.co.uk + Author : altbta + Email : [email protected] + home : v4-team.comhttp://v4-team.com & tryag.cc...

HTB22957: XSRF &#40;CSRF&#41; in phpList

Vulnerability ID: HTB22957 Reference: http://www.htbridge.ch/advisory/xsrfcsrfinphplist.html Product: phpList Vendor: Tincan Ltd http://www.phplist.com/ Vulnerable Version: 2.10.13 and probably prior versions Vendor Notification: 12 April 2011 Vulnerability Type: CSRF Cross-Site Request Forgery...

HTB22956: XSS vulnerabilities in phpList

Vulnerability ID: HTB22956 Reference: http://www.htbridge.ch/advisory/xssvulnerabilitiesinphplist.html Product: phpList Vendor: Tincan Ltd http://www.phplist.com/ Vulnerable Version: 2.10.13 and probably prior versions Vendor Notification: 12 April 2011 Vulnerability Type: XSS Risk level: Medium...

phpList 2.10.13 Cross Site Request Forgery / Cross Site Scripting

============================== Vulnerability ID: HTB22956 Reference: http://www.htbridge.ch/advisory/xssvulnerabilitiesinphplist.html Product: phpList Vendor: Tincan Ltd http://www.phplist.com/ Vulnerable Version: 2.10.13 and probably prior versions Vendor Notification: 12 April 2011 Vulnerabilit...

tincan ltd - &#039;section&#039; SQL Injection

+/=============================================+ + Title : tincan ltd section SQL Injection Vulnerability + site s.p : www.tincan.co.uk + Author : altbta + Email : [email protected] + home : v4-team.com & tryag.cc +=============================================/+...

Tincan LTD SQL Injection

+/=============================================+ + Title : tincan ltd section SQL Injection Vulnerability + site s.p : www.tincan.co.uk + Author : altbta + Email : [email protected] + home : v4-team.com & tryag.cc +=============================================/+...

tincan ltd - section SQL Injection

tincan ltd - section SQL Injection +/=============================================+ + Title : tincan ltd section SQL Injection Vulnerability + site s.p : www.tincan.co.uk + Author : altbta + Email : [email protected] + home : v4-team.com & tryag.cc +=============================================/+...

tincan ltd (section) SQL Injection Vulnerability

Exploit for unknown platform in category web applications ================================================ tincan ltd section SQL Injection Vulnerability ================================================ =============================================== DorK : intext:'powered by tincan ltd' and...

PHPList远程文件包含漏洞

BUGTRAQ: 9046 PHPlist是一款由PHP编写的时事通讯应用程序。 PHPlist由于不充分过滤用户提交的请求，远程攻击者可以利用这个漏洞包含远程服务器上的恶意PHP文件，以WEB权限执行。 PHPlist 2.6.2 临时解决方法： 如果您不能立刻安装补丁或者升级，建议您采取以下措施以降低威胁： 如果使用Apache，使用.htaccess文件限制"admin"目录访问： FilesMatch ".php|inc$" Order allow,deny deny from all /FilesMatch FilesMatch "index.php$" Order...

phpList <= 2.10.8 Local File Inclusion Vulnerability

Exploit for unknown platform in category web applications ==================================================== phpList Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 0 -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-1 AmnPardaz Security...