171 matches found
WebsiteBaker 2.8.1 Path Disclosure / SQL Injection
=================================== Vulnerability ID: HTB22929 Reference: http://www.htbridge.ch/advisory/multiplepathdisclosureinwebsitebaker.html Product: WebsiteBaker Vendor: Website Baker Org http://www.websitebaker2.org/ Vulnerable Version: 2.8.1 Vendor Notification: 29 March 2011...
Cross-site Scripting (XSS) Vulnerability in WebsiteBaker
High-Tech Bridge SA Security Research Lab has discovered vulnerability in WebsiteBaker which could be exploited to perform cross-site scripting attacks. 1 Cross-site scripting XSS vulnerability in WebsiteBaker The vulnerability exists due to input sanitation error in the "websitefooter" parameter...
WebsiteBaker 2.8.1 CSRF Vulnerability
Exploit for php platform in category web applications ===================================== WebsiteBaker 2.8.1 CSRF Vulnerability ===================================== Author: Luis Santana Software Link: http://www.websitebaker2.org/modules/downloadgallery/dlc.php?file=88&id=1269641667 Version:...
WebsiteBaker 2.8.1 Cross Site Request Forgery
Exploit Title: WebsiteBaker 2.8.1 CSRF Date: 05/18/10 Author: Luis Santana Software Link: http://www.websitebaker2.org/modules/downloadgallery/dlc.php?file=88&id=1269641667 Version: 2.8.1 Tested on: All CVE : N/A Code : http://hacktalk.net/exploits/websitebakercsrfPOC.zip The full advisory can be...
WebsiteBaker 2.8.1 - Cross-Site Request Forgery
WebsiteBaker 2.8.1 - Cross-Site Request Forgery Author: Luis Santana Software Link: http://www.websitebaker2.org/modules/downloadgallery/dlc.php?file=88&id=1269641667 Version: 2.8.1 Tested on: All Code : http://hacktalk.net/exploits/websitebakercsrfPOC.zip The full advisory can be found at...
WebsiteBaker 2.8.1 - Cross-Site Request Forgery
Author: Luis Santana Software Link: http://www.websitebaker2.org/modules/downloadgallery/dlc.php?file=88&id=1269641667 Version: 2.8.1 Tested on: All Code : http://hacktalk.net/exploits/websitebakercsrfPOC.zip The full advisory can be found at http://hacktalk.net/exploits/websitebakerCSRF.txt...
WebSiteBaker 2.8.1 Database Backup Disclosure
:::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::: Exploit Title : WebSiteBaker 2.8.1 DataBase Backup Exploit Date : 25 - 3 - 2010 Author : Tr0y-x Version : 2.8.1 & May Be Later Tested On : Windows & Linux My Home : WwWDoTSeC-WaRDoTCoM Contact Me : EgAtHackDoTCl...
WebsiteBaker 2.8.1 - DataBase Backup Disclosure
WebsiteBaker 2.8.1 - DataBase Backup Disclosure :::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::: Exploit Title : WebSiteBaker 2.8.1 DataBase Backup Exploit Date : 25 - 3 - 2010 Author : Tr0y-x Version : 2.8.1 & May Be Later Tested On : Windows & Linux My Home :...
WebSiteBaker 2.8.1 DataBase Backup Disclosure
Exploit for php platform in category web applications ============================================= WebSiteBaker 2.8.1 DataBase Backup Disclosure ============================================= :::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::: Exploit Title :...
WebsiteBaker 2.8.1 - DataBase Backup Disclosure
:::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::: Exploit Title : WebSiteBaker 2.8.1 DataBase Backup Exploit Date : 25 - 3 - 2010 Author : Tr0y-x Version : 2.8.1 & May Be Later Tested On : Windows & Linux My Home : WwWDoTSeC-WaRDoTCoM Contact Me : EgAtHackDoTCl...
WebsiteBaker CMS lack of sanitizing
WebsiteBaker CMS lack of sanitizing Discovered by: Nomenumbra Date: 6/4/2006 impact:moderate privilege escalation,possible defacement A user's display name isn't filtered at all, allowing them to insert any HTML of javascript code at will. Nomenumbra/0x4F4C...