Lucene search
K

494 matches found

exploitpack
exploitpack
added 2009/12/15 12:0 a.m.13 views

DubSite CMS 1.0 - Cross-Site Request Forgery

DubSite CMS 1.0 - Cross-Site Request Forgery Pentest Information: ==================== Connection has discovered a Cross Site Request ForgeryCSRF vulnerability in DubSite CMS v1.0 Details ======= Tested on OS: Windows XP Tested with Software: Mozilla Firefox 3.5.x Vulnerable Products: DubSite CMS...

0.5AI score
Exploits0
Exploit DB
Exploit DB
added 2009/12/15 12:0 a.m.29 views

DubSite CMS 1.0 - Cross-Site Request Forgery

Pentest Information: ==================== Connection has discovered a Cross Site Request ForgeryCSRF vulnerability in DubSite CMS v1.0 Details ======= Tested on OS: Windows XP Tested with Software: Mozilla Firefox 3.5.x Vulnerable Products: DubSite CMS Affected Versions: 1.0 Vulnerability Type:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2009/12/15 12:0 a.m.21 views

DubSite CMS 1.0 Cross Site Request Forgery

Pentest Information: ==================== Connection has discovered a Cross Site Request ForgeryCSRF vulnerability in DubSite CMS v1.0 Details ======= Tested on OS: Windows XP Tested with Software: Mozilla Firefox 3.5.x Vulnerable Products: DubSite CMS Affected Versions: 1.0 Vulnerability Type:...

0.5AI score
Exploits0
0day.today
0day.today
added 2009/12/15 12:0 a.m.18 views

DubSite CMS v1.0 CSRF Vulnerability

Exploit for unknown platform in category web applications =================================== DubSite CMS v1.0 CSRF Vulnerability =================================== Pentest Information: ==================== Connection has discovered a Cross Site Request ForgeryCSRF vulnerability in DubSite CMS...

7.1AI score
Exploits0
Fedora
Fedora
added 2009/06/16 2:35 a.m.13 views

[SECURITY] Fedora 10 Update: php-ZendFramework-1.7.7-2.fc10

Extending the art & spirit of PHP, Zend Framework is based on simplicity, object-oriented best practices, corporate friendly licensing, and a rigorou sly tested agile codebase. Zend Framework is focused on building more secure, reliable, and modern Web 2.0 applications & web services, and consumi...

2.4AI score
Exploits0
Friends Of PHP
Friends Of PHP
added 2009/02/27 9:0 a.m.11 views

XSS vector in Zend_Filter_StripTags

More info at https://framework.zend.com/security/advisory/ZF2009-02...

7.2AI score
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2009/02/19 12:0 a.m.13 views

FreeBSD : Zend Framework -- Local File Inclusion vulnerability in Zend_View::render() (cf495fd4-fdcd-11dd-9a86-0050568452ac)

Matthew Weier O'Phinney reports : A potential Local File Inclusion LFI vulnerability exists in the ZendView::render method. If user input is used to specify the script path, then it is possible to trigger the LFI. Note that Zend Framework applications that never call the ZendView::render method...

5.5AI score
Exploits0References2
Friends Of PHP
Friends Of PHP
added 2009/02/13 2:43 p.m.12 views

LFI vector in Zend_View::setScriptPath() and render()

More info at https://framework.zend.com/security/advisory/ZF2009-01...

7.2AI score
Exploits0Affected Software1
FreeBSD
FreeBSD
added 2009/02/11 12:0 a.m.15 views

Zend Framework -- Local File Inclusion vulnerability in Zend_View::render()

Matthew Weier O'Phinney reports: A potential Local File Inclusion LFI vulnerability exists in the ZendView::render method. If user input is used to specify the script path, then it is possible to trigger the LFI. Note that Zend Framework applications that never call the ZendView::render method wi...

1.8AI score
Exploits0References1
NVD
NVD
added 2006/11/15 3:7 p.m.12 views

CVE-2006-5900

Cross-site scripting XSS vulnerability in the incubator/tests/Zend/Http/files/testRedirections.php sample code in Zend Framework Preview 0.2.0 allows remote attackers to inject arbitrary web script or HTML via arbitrary parameters...

6.8CVSS5.8AI score0.01191EPSS
Exploits0References3
Cvelist
Cvelist
added 2006/11/15 3:0 p.m.19 views

CVE-2006-5900

Cross-site scripting XSS vulnerability in the incubator/tests/Zend/Http/files/testRedirections.php sample code in Zend Framework Preview 0.2.0 allows remote attackers to inject arbitrary web script or HTML via arbitrary parameters...

5.8AI score0.01191EPSS
Exploits0References3
CVE
CVE
added 2006/11/15 3:0 p.m.41 views

CVE-2006-5900

The CVE-2006-5900 entry concerns a Cross-site scripting (XSS) vulnerability in Zend Framework Preview 0.2.0, specifically in the incubator/tests/Zend/Http/_files/testRedirections.php sample code. The issue arises because arbitrary parameters can be used to inject arbitrary web script or HTML. The...

6.8CVSS6AI score0.01191EPSS
Exploits0References3Affected Software1
Packet Storm
Packet Storm
added 2006/11/07 12:0 a.m.36 views

Armorize-ADV-2006-0009.txt

Armorize Technologies Security Advisory Advisory No: Armorize-ADV-2006-0009 Status: Partial Date: 2006/11/03 Summary: Armorize-ADV-2006-0009 discloses cross-site scripting vulnerability that is found in the sample codes of Zend Framework http://framework.zend.com/, which aims to provide a complet...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2006/11/07 12:0 a.m.42 views

XSS Vulnerability in Zend Framework Preview 0.2.0

Armorize Technologies Security Advisory Advisory No: Armorize-ADV-2006-0009 Status: Partial Date: 2006/11/03 Summary: Armorize-ADV-2006-0009 discloses cross-site scripting vulnerability that is found in the sample codes of Zend Framework http://framework.zend.com/, which aims to provide a complet...

6.6AI score
Exploits0
Rows per page
Query Builder