26 matches found
Persian E107 - Cross-Site Scripting
Persian E107 - Cross-Site Scripting ======================================================================================== | Title : Persian E107 XSS Vulnerability | Author : indoushka | email : [email protected] | Home : Souk Naamane - 04325 - Oum El Bouaghi - Algeria -00213771818860 | | Web...
e107 <= 0.7.15 (extended_user_fields) Blind SQL Injection Exploit
No description provided by source. !/usr/bin/env perl e107 = 0.7.15 "extendeduserfields" Blind SQL Injection Exploit Description ------------------------------------------------------------------- e107 contains one flaw that allows an attacker to carry out an SQL injection attack. The issue is du...
Unfixed XSS vulnerability at wikkawiki.org
Security researcher Sid, has submitted on 22/05/2007 a cross-site-scripting XSS vulnerability affecting wikkawiki.org, which at the time of submission ranked 154411 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 22/05/2007. It is currently...
CVE-2007-2551
Cross-site scripting XSS vulnerability in usersettings.php in WikkaWiki Wikka Wiki before 1.1.6.3 allows remote attackers to inject arbitrary web script or HTML via the name parameter...
Innovate Portal 2.0 - acp.php Remote Code Execution
Innovate Portal 2.0 - acp.php Remote Code Execution DEVIL TEAM IRC: 72.20.18.6:6667 devilteam ======== Contact: [email protected] or http://www.rahim.webd.pl/ cod3d by Kacper -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Greetings DragonHeart and all DEVIL TEAM...
CVE-2005-4224
Multiple "potential" SQL injection vulnerabilities in e107 0.7 might allow remote attackers to execute arbitrary SQL commands via 1 the email, hideemail, image, realname, signature, timezone, and xupexist parameters in signup.php, 2 the contentcomment, contentrating, and contentsummary parameters...