CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

SQL injection vulnerability in c.php in CMS WebManager-Pro before 8.1 allows remote attackers to execute arbitrary SQL commands via the id parameter...

7.5CVSS8.4AI score0.01604EPSS

Exploits1References6

NVD•added 2011/10/08 10:55 a.m.•11 views

CVE-2010-4900

Open redirect vulnerability in c.php in CMS WebManager-Pro 8.1 and earlier allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the url parameter...

5.8CVSS6.7AI score0.00285EPSS

Exploits1References4

Prion•added 2011/10/08 10:55 a.m.•5 views

Open redirect

5.8CVSS7.1AI score0.00285EPSS

Exploits1References4Affected Software1

Prion•added 2011/10/08 10:55 a.m.•10 views

Sql injection

SQL injection vulnerability in c.php in CMS WebManager-Pro before 8.1 allows remote attackers to execute arbitrary SQL commands via the id parameter...

7.5CVSS9.1AI score0.01604EPSS

Exploits1References6Affected Software1

CVE•added 2011/10/08 10:0 a.m.•32 views

CVE-2010-4900

CVE-2010-4900 is an open redirect vulnerability in CMS WebManager-Pro prior to or including version 8.1, exploitable via a URL supplied in the url parameter of c.php. The underlying issue allows remote attackers to redirect users to arbitrary sites, enabling phishing-style redirection. The connec...

5.8CVSS6.9AI score0.00285EPSS

Exploits1References4Affected Software1

Cvelist•added 2011/10/08 10:0 a.m.•12 views

CVE-2010-4900

6.7AI score0.00285EPSS

Exploits1References4

Cvelist•added 2011/10/08 10:0 a.m.•17 views

CVE-2010-4899

SQL injection vulnerability in c.php in CMS WebManager-Pro before 8.1 allows remote attackers to execute arbitrary SQL commands via the id parameter...

8.4AI score0.01604EPSS

Exploits1References6

CVE•added 2011/10/08 10:0 a.m.•37 views

CVE-2010-4899

CVE-2010-4899 describes a SQL injection vulnerability in CMS WebManager-Pro via the id parameter in c.php, affecting versions before 8.1. The issue permits remote attackers to execute arbitrary SQL commands, enabling potential data disclosure or modification. Public references corroborate the SQL...

7.5CVSS8.7AI score0.01604EPSS

Exploits1References6Affected Software1

securityvulns•added 2011/03/15 12:0 a.m.•23 views

IAA и XSS уязвимости в CMS WebManager-Pro

Здравствуйте 3APA3A! Сообщаю вам о найденных мною Insufficient Anti-automation и Cross-Site Scripting уязвимостях в CMS WebManager-Pro. Это украинская коммерческая CMS. Insufficient Anti-automation WASC-21: На странице контактов http://site/index.php?menuid=x нет защиты от автоматизированных...

Exploits0

Packet Storm•added 2011/03/14 12:0 a.m.•45 views

CMS WebManager-Pro 7.4.3 Cross Site Scripting

Hello list! I want to warn you about Insufficient Anti-automation and Cross-Site Scripting vulnerabilities in CMS WebManager-Pro. It's Ukrainian commercial CMS. Earlier I already told about interesting RCE vulnerability in this CMS, which I mentioned about last month in article Placing shells...

7.4AI score

Exploits0

Packet Storm•added 2011/02/01 12:0 a.m.•28 views

CMS WebManager-Pro 7.4.3 Code Execution / Cross Site Request Forgery

Hello list! I want to warn you about Remote Code Execution and Cross-Site Request Forgery vulnerabilities in CMS WebManager-Pro. This CMS is widely using at different web sites, including security and government sites. ------------------------- Affected products: -------------------------...

0.5AI score

Exploits0

securityvulns•added 2011/01/31 12:0 a.m.•65 views

RCE и CSRF уязвимости в CMS WebManager-Pro

Здравствуйте 3APA3A! Сообщаю вам о найденных мною Remote Code Execution и Cross-Site Request Forgery уязвимостях в CMS WebManager-Pro это украинская коммерческая CMS. RCE Remote PHP Code Execution WASC-31: В системе возможно включение php тэгов непосредственно в поля для текста контента. Таким...

7.2AI score

Exploits0

Packet Storm•added 2010/11/02 12:0 a.m.•20 views

CMS WebManager-Pro Cross Site Scripting / SQL Injection

Hello Bugtraq! I want to warn you about Cross-Site Scripting and SQL Injection vulnerabilities in CMS WebManager-Pro. It's Ukrainian commercial CMS. ------------------------- Affected products: ------------------------- Vulnerable are CMS WebManager-Pro v.7.4.3 version from FGSStudio and previous...

0.2AI score

Exploits0

securityvulns•added 2010/11/01 12:0 a.m.•355 views

XSS и SQL Injection уязвимости в CMS WebManager-Pro

Здравствуйте 3APA3A! Сообщаю вам о найденных мною Cross-Site Scripting и SQL Injection уязвимостях в CMS WebManager-Pro это украинская коммерческая CMS. XSS WASC-08: http://site/index.php?word=2220onMouseOver=alertdocument.cookie20 SQL Injection Authentication Bypass WASC-19: На странице...

0.1AI score

Exploits0

Exploit DB•added 2010/10/30 12:0 a.m.•31 views

CMS WebManager-Pro 7.4.3 - Cross-Site Scripting / SQL Injection

source: https://www.securityfocus.com/bid/44591/info CMS WebManager-Pro is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability. Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, compromise the application, access or modi...

7.4AI score

Exploits0

exploitpack•added 2010/10/30 12:0 a.m.•28 views

CMS WebManager-Pro 7.4.3 - Cross-Site Scripting SQL Injection

CMS WebManager-Pro 7.4.3 - Cross-Site Scripting SQL Injection source: https://www.securityfocus.com/bid/44591/info CMS WebManager-Pro is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability. Exploiting these issues could allow an attacker to steal cookie-based...

0.3AI score

Exploits0

securityvulns•added 2010/10/05 12:0 a.m.•64 views

Уязвимости в CMS WebManager-Pro

Здравствуйте 3APA3A! Сообщаю вам о найденных мною Arbitrary File Uploading и Code Execution уязвимостях в CMS WebManager-Pro это украинская коммерческая CMS. Arbitrary File Uploading WASC-42: В админке в разделе "файлы" http://site/admin/files.php возможна загрузка произвольных файлов. Code...

0.3AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by