EUVD-2012-1798

Malware in sbrugna...

wonderdesk.com XSS vulnerability

Open Bug Bounty ID: OBB-694294 Description| Value ---|--- Affected Website:| wonderdesk.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| hidden until disclosure Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| hidden...

CVE-2012-1788

Multiple cross-site scripting XSS vulnerabilities in wonderdesk.cgi in WonderDesk SQL 4.14 allow remote attackers to inject arbitrary web script or HTML via the 1 cusemail parameter in a custlostpw action; or 2 helpname, 3 helpemail, 4 helpwebsite, or 5 helpexampleurl parameters in an...

CVE-2012-1788

CVE-2012-1788 corresponds to multiple cross-site scripting (XSS) vulnerabilities in WonderDesk SQL 4.14, exposed via wonderdesk.cgi. The affected component is WonderDesk SQL, with XSS achievable through parameters in cust_lostpw (cus_email) and hd_modify_record (help_name, help_email, help_websit...

CVE-2012-1788

Multiple cross-site scripting XSS vulnerabilities in wonderdesk.cgi in WonderDesk SQL 4.14 allow remote attackers to inject arbitrary web script or HTML via the 1 cusemail parameter in a custlostpw action; or 2 helpname, 3 helpemail, 4 helpwebsite, or 5 helpexampleurl parameters in an...

WonderDesk Cross Site Scripting

Exploit Title: WonderDesk Cross Site Scripting Date: 26.02.2012 Author: Sony Software Link: http://www.wonderdesk.com/ Google Dorks: inurl:wonderdesk.cgi?do Web Browser : Mozilla Firefox Blog : http://st2tea.blogspot.com PoC: http://st2tea.blogspot.com/2012/02/wonderdesk-cross-site-scripting.html...