CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

NVD•added 2008/05/20 5:20 p.m.•18 views

CVE-2008-2349

Zomplog 3.8.2 and earlier allows remote attackers to gain administrative access by creating an admin account via a direct request to install/newuser.php with the admin parameter set to 1...

7.5CVSS6.9AI score0.05654EPSS

Exploits0References4

Packet Storm•added 2008/05/19 12:0 a.m.•66 views

zomplog-admin.txt

======================== WEBXAKEP.NET =========================== Name: "Zomplog 3.8.2 Добавляем админа "Add Admin" /-- Титлы блога "Blog Title" Логин "Username" Пароль "Password" Повторяем пароль "Confirm password" -------------------------------------------------------------...

7.4AI score

Exploits0

seebug.org•added 2008/05/17 12:0 a.m.•23 views

Zomplog <= 3.8.2 (force_download.php) File Disclosure Vulnerability

No description provided by source. Name: "Zomplog 3.8.2 = file disclouse" Version: All Script Download: http://www.zomp.nl/zomplog/ DORK: "powered by zomplog" Discovered By: Stack-Terrorist Exploit: http://localhost/path/upload/forcedownload.php?file=forcedownload.php thnx : alah...

7.1AI score

Exploits0

exploitpack•added 2008/05/16 12:0 a.m.•11 views

Zomplog 3.8.2 - force_download.php File Disclosure

Zomplog 3.8.2 - forcedownload.php File Disclosure Name: "Zomplog 3.8.2 = file disclouse" Version: All Script Download: http://www.zomp.nl/zomplog/ DORK: "powered by zomplog" Discovered By: Stack-Terrorist Exploit: http://localhost/path/upload/forcedownload.php?file=forcedownload.php thnx : alah...

7.4AI score

Exploits0

exploitpack•added 2008/05/16 12:0 a.m.•11 views

Zomplog 3.8.2 - newuser.php Arbitrary Add Admin

Zomplog 3.8.2 - newuser.php Arbitrary Add Admin ======================== WEBXAKEP.NET =========================== Name: "Zomplog 3.8.2 Ð”Ð¾Ð±Ð°Ð²Ð»ÑÐµÐ¼ Ð°Ð´Ð¼Ð¸Ð½Ð° "Add Admin" /-- Ð¢Ð¸Ñ‚Ð»Ñ‹ Ð±Ð»Ð¾Ð³Ð° "Blog Title" Ð›Ð¾Ð³Ð¸Ð½ "Username" ÐŸÐ°Ñ€Ð¾Ð»ÑŒ "Password" ÐŸÐ¾Ð²Ñ‚Ð¾Ñ€ÑÐµÐ¼ Ð¿Ð°Ñ€Ð¾Ð»ÑŒ...

7.4AI score

Exploits0

Cvelist•added 2008/05/13 10:0 p.m.•13 views

CVE-2008-2176

Cross-site scripting XSS vulnerability in admin/category.php in Zomplog 3.8.2 allows remote attackers to inject arbitrary web script or HTML via the catname parameter...

5.7AI score0.00329EPSS

Exploits0References5

securityvulns•added 2008/05/08 12:0 a.m.•77 views

Vulnerability in Multiple Web Application

I found a link about some web applications vulnerability. 1. Chicomos CMS Configuration File Disclosoure 2. Zomplog 3.8.2 Blog Engine Arbitrary Files Download/Disclosoure 3. Wheatlog Blog Engine Auto Create User See below http://kandangjamur.net/tutorial/multiple-application.txt...

0.9AI score

Exploits0

securityvulns•added 2008/05/02 12:0 a.m.•50 views

Zomplog 3.8.2 XSS Vulnerability

---------------------------------------------------------------- Script : Zomplog 3.8.2 Type : XSS Vulnerability ---------------------------------------------------------------- Discovered by : Khashayar Fereidani Or Dr.Crash Our Team : IRCRASH...

6.4AI score

Exploits0

Packet Storm•added 2008/05/02 12:0 a.m.•23 views

zomplog-xss.txt

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by