carandclassic.co.uk XSS vulnerability

Open Bug Bounty ID: OBB-643155 Description| Value ---|--- Affected Website:| carandclassic.co.uk Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Discuz! trade.php 数据库'注射'漏洞

文件trade.php: $message = trim$message; if$message $message = daddslashes$tradelog'message', 1."\t\t\t".$discuzuid."\t".$discuzuser."\t".$timestamp."\t".nl2brstriptagssubstr$message, 0, 200; //$message用substr处理了下,取前200个字符 else $message = daddslashes$tradelog'message', 1; $db-query"UPDATE...

CjOverkill trade.php XSS

The remote server runs a version of CjOverkill, a free traffic trading script which is as old as or older than version 4.0.3. The remote version of this software is affected by a cross-site scripting vulnerability in the script 'trade.php'. This issue is due to a failure of the application to...

CjOverkill trade.php XSS

The remote server runs a version of CjOverkill, a free traffic trading script which is as old as or older than version 4.0.3. The remote version of this software is affected by a cross-site scripting vulnerability in the script SPDX-FileCopyrightText: 2004 David Maciejak Some text descriptions...

CVE-2004-2193

Cross-site scripting XSS vulnerability in trade.php for CJOverkill 4.0.3 allows remote attackers to inject arbitrary web script or HTML via the 1 tms0 or 2 url parameters...

CVE-2004-2193

Cross-site scripting XSS vulnerability in trade.php for CJOverkill 4.0.3 allows remote attackers to inject arbitrary web script or HTML via the 1 tms0 or 2 url parameters...

CjOverkill trade.php Multiple Method XSS

The remote server runs a version of CjOverkill, a free traffic trading script that is as old as or older than version 4.0.3. The remote version of this software is affected by a cross-site scripting vulnerability in the script 'trade.php'. This issue is due to a failure of the application to...