EUVD-2015-1072

Malware in sbrugna...

Moodle 4.2.2 Information Disclosure Vulnerability (MSA-23-0034)

Moodle is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:moodle:moodle";...

CVE-2015-10059

A vulnerability has been found in s134328 Webapplication-Veganguide and classified as problematic. This vulnerability affects unknown code of the file p05-integration/app/shared/api/apiService.js. The manipulation of the argument country/city leads to cross site scripting. The attack can be...

Cross site scripting

A vulnerability has been found in s134328 Webapplication-Veganguide and classified as problematic. This vulnerability affects unknown code of the file p05-integration/app/shared/api/apiService.js. The manipulation of the argument country/city leads to cross site scripting. The attack can be...

CVE-2015-10059

CVE-2015-10059 affects the s134328 Webapplication-Veganguide. The vulnerability resides in the file p05-integration/app/shared/api/apiService.js where manipulating the country/city argument can trigger cross-site scripting. The issue is exploitable remotely, per the records. A patch is available:...

PT-2023-10238 · Unknown · S134328 Webapplication-Veganguide

Name of the Vulnerable Software and Affected Versions: s134328 Webapplication-Veganguide affected versions not specified Description: A vulnerability has been found in the s134328 Webapplication-Veganguide, classified as problematic. It affects unknown code of the file...

DOMDig - DOM XSS Scanner For Single Page Applications

DOMDig is a DOM XSS scanner that runs inside the Chromium web browser and it can scan single page applications SPA recursively. Unlike other scanners, DOMDig can crawl any webapplication including gmail by keeping track of DOM modifications and XHR/fetch/websocket requests and it can simulate a...

CVE-2021-43633

Sourcecodester Messaging Web Application 1.0 is vulnerable to stored XSS. If a sender inserts valid scripts into the chat, the script will be executed on the receiver chat...

Brocade Fabric OS 安全漏洞

Brocade Fabric OS FOS is a set of embedded operating systems used in switches, routers, and other devices from Brocade. A security vulnerability exists in Brocade Fabric OS, which can be exploited by an attacker to bypass data access restrictions via the WebApplication Debug to obtain sensitive...

BSA-2021-1494

Security Advisory ID : BSA-2021-1494 Component : WebApplication Revision : 1.0 The Web application of Brocade Fabric OS before versions Brocade Fabric OS v9.0.1a and v8.2.3a contains debug statements that expose sensitive information to the program's standard output device. An attacker who has...

Buffer overflow

Some Kyocera printers such as the ECOSYS M5526cdw 2R72000.001.701 were affected by a buffer overflow vulnerability in the URI paths of the web application that would allow an unauthenticated attacker to perform a Denial of Service attack, crashing the device, or potentially execute arbitrary code...

Sifter - A OSINT, Recon And Vulnerability Scanner

Sifter is a osint, recon & vulnerability scanner. It combines a plethara of tools within different module sets in order to quickly perform recon tasks, check network firewalling, enumerate remote and local hosts, and scan for the 'blue' vulnerabilities within microsft and if unpatched, exploit...

Yachtcontrol Webapplication 1.0 - Unauthenticated Remote Code Execution

Exploit Title: Yachtcontrol Webapplication 1.0 - Unauthenticated Remote Code Execution Google Dork: N/A Date: 2019-12-06 Exploit Author: Hodorsec Vendor Homepage: http://www.yachtcontrol.nl/en/ Version: 1.0 Software Link: http://download.yachtcontrol.nl/klant/Software/ &...

Yachtcontrol Webapplication 1.0 - Unauthenticated Remote Code Execution

Yachtcontrol Webapplication 1.0 - Unauthenticated Remote Code Execution Exploit Title: Yachtcontrol Webapplication 1.0 - Unauthenticated Remote Code Execution Google Dork: N/A Date: 2019-12-06 Exploit Author: Hodorsec Vendor Homepage: http://www.yachtcontrol.nl/en/ Version: 1.0 Software Link:...

Yachtcontrol 2019-10-06 Remote Code Execution Exploit #RCE

Exploit for windows platform in category remote exploits Exploit Title: Yachtcontrol Webapplication - Unauthenticated Remote Code Execution Exploit Author: Hodorsec Vendor Homepage: http://www.yachtcontrol.nl/en/ Software Link: http://download.yachtcontrol.nl/klant/Software/ &...

Yachtcontrol 2019-10-06 Remote Code Execution

Exploit Title: Yachtcontrol Webapplication - Unauthenticated Remote Code Execution Google Dork: N/A Date: 2019-12-06 Exploit Author: Hodorsec Vendor Homepage: http://www.yachtcontrol.nl/en/ Software Link: http://download.yachtcontrol.nl/klant/Software/ &...

DomainMOD <= 4.09.03 Multiple Vulnerabilities

DomainMOD is prone to multiple cross-site scripting XSS vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

MailStore 10.0.1 Cross Site Scripting / Open Redirect

secuvera-SA-2017-02: Reflected XSS and Open Redirect in MailStore Server Affected Products MailStore Server Version 10.0.1.12148 was tested according to the vendor: - MailStore 9.2 to 10.0.1 is affected by the Reflected XSS Vulnerability - Mailstore 9.0 to 10.0.1 is affected by the Open Redirect...

WordPress Welcome Announcement 1.0.5 Cross Site Scripting

Exploit Title: Wordpress Welcome Announcement Cross Site Scripting Exploit Author: bl4ckmohajem Vendor Homepage: https://wordpress.org/plugins/welcome-announcement/ Tested On: Windows7 Software Link: https://downloads.wordpress.org/plugin/welcome-announcement.1.0.5.zip Version: 1.0.5 Vulnerable...

ManageEngine Asset Explorer v6.1 - Persistent Vulnerability

Document Title: =============== ManageEngine Asset Explorer v6.1 - Persistent Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1488 Release Date: ============= 2015-06-22 Vulnerability Laboratory ID VL-ID: ===================================...