6 matches found
CVE-2022-0377 LearnPress < 4.1.5 - Arbitrary Image Renaming
Users of the LearnPress WordPress plugin before 4.1.5 can upload an image as a profile avatar after the registration. After this process the user crops and saves the image. Then a "POST" request that contains user supplied name of the image is sent to the server for renaming and cropping of the...
WordPress Learnpress 4.1.4.1 Plugin - Arbitrary Image Renaming Vulnerability
Exploit Title: WordPress Plugin Learnpress 4.1.4.1 - Arbitrary Image Renaming Exploit Author: Ceylan Bozogullarindan Author Webpage: https://bozogullarindan.com Vendor Homepage: https://thimpress.com/ Software Link: https://thimpress.com/learnpress-plugin/ Version: 4.1.4.1 Tested on: Linux CVE:...
NewWard CMS SQL Injection
Exploit Title : NewWard Cms Sql Injection Vulnerability Author : IrIsT.Ir Discovered By : Am!r Home : http://IrIsT.Ir/forum Software Link : http://www.newward.com/ Security Risk : High Version : All Version Tested on : GNU/Linux Ubuntu - Windows Server - win7 Dork : intext:"Web Site Design by...
Realtor Website System E-Commerce SQL Injection
=============================================== Realtor WebSite System E-Commerce SQL Injection Vulnerability =============================================== .----..--.--.| |--..-----..----.| |.-----..-----. | || | || || -|| || || || | ||| ||||||| ||||| | || || Realtor WebSite System E-Commerce S...
Realtor WebSite System E-Commerce - SQL Injection
Realtor WebSite System E-Commerce - SQL Injection =============================================== Realtor WebSite System E-Commerce SQL Injection Vulnerability =============================================== .----..--.--.| |--..-----..----.| |.-----..-----. | || | || || -|| || || || | ||| |||||||...
XSS on LarkinWEB & Company
XSS Vulnerability On LarkinWEB Database Development, Web Site Design Marketing and Advertising System.. Runing HTML Codes, JScript etch... XSS Vulerability URL : http://www.larkinweb.com/secure/error.asp?msg=XSS Example:...