Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

Esoftpro Online Contact Manager Multiple Vulnerability

🗓️ 04 Jul 2010 00:00:00Reported by L0rd CrusAd3rType 
zdt
 zdt🔗 0day.today👁 34 Views

Esoftpro Online Contact Manager - ultimate online database system, store & retrieve contact info, email client, PDA interface. Multiple vulnerabilitie

Code
======================================================
Esoftpro Online Contact Manager Multiple Vulnerability
======================================================


1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0
0     _                   __           __       __                     1
1   /' \            __  /'__`\        /\ \__  /'__`\                   0
0  /\_, \    ___   /\_\/\_\ \ \    ___\ \ ,_\/\ \/\ \  _ ___           1
1  \/_/\ \ /' _ `\ \/\ \/_/_\_<_  /'___\ \ \/\ \ \ \ \/\`'__\          0
0     \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/           1
1      \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\           0
0       \/_/\/_/\/_/\ \_\ \/___/  \/____/ \/__/ \/___/  \/_/           1
1                  \ \____/ >> Exploit database separated by exploit   0
0                   \/___/          type (local, remote, DoS, etc.)    1
1                                                                      1
0  [+] Site            : Inj3ct0r.com                                  0
1  [+] Support e-mail  : submit[at]inj3ct0r.com                        1
0                                                                      0
1                ###########################################           1
0                I'm L0rd CrusAd3r member from Inj3ct0r Team           1
1                ###########################################           0
0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1


Author: L0rd CrusAd3r aka VSN [[email protected]]
Exploit Title: Esoftpro Online Contact Manager Multiple Vulnerability
Vendor url:http://www.esoftpro.com/
Version:3
Published: 2010-07-4
Greetz to:r0073r (inj3ct0r.com), Sid3^effects, MaYur, MA1201, Sonic Bluehat, Sai, KD, M4n0j.
Special Greetz: Topsecure.net, inj3ct0r Team ,Andhrahackers.com
Shoutzz:- To all ICW members.
~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~
Description:

Online Contact Manager (formerly known as EContact PRO) is an ultimate online database system that allows you to store and retrieve contact information anywhere - anytime! You'll also be able to easily send emails to contacts with the built-in email client. Online Contact Manager features Sorting, Mass Emails, Group Support, MS Outlook Synchronization, Birthday Reminder, Data Export (CSV/TAB/HTML), Preference Control, Full Data Manipulation Interfaces, 30+ Customizable Fields and much more. There is also specially designed PDA interface allows you to use Online Contact Manager through your PDA/Cell.

With Online Contact Manager :-

??? * Your company can store, share and retrieve all employees info in one centralized database
??? * You can retrieve clients information while you are not in office
??? * You will remember all your friends' birthday
??? * Your organization or community members can retrieve other memebers' information.
??? * You can send emails to your friends no matter what computer you are using.
??? * You can export data into CSV (for opening with MS Excel), HTML (for publishing as web pages) and TXT (for importing to all kinds of databases) for? other applications like Outlook Express, MS Excel and FileMaker etc.
??? * You can send emails to All Contacts or to a Particular Group of Contacts with One Mouse Click. (Emails will be sent out separately for each recipient by the system automatically)

~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~

Vulnerability:

*SQL Vulnerability

DEMO URL:

http://www.esoftpro.com/demo/OCM/view.php?id=[sqli]

*XSS Vulnerability

DEMO URL :

http://www.esoftpro.com/demo/OCM/view.php?id=[xss]

*HTML Injection

DEMO URL:

http://www.esoftpro.com/demo/OCM/view.php?id=[html]

# 0day n0 m0re #
# L0rd CrusAd3r #



#  0day.today [2018-04-10]  #

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
04 Jul 2010 00:00Current
7.1High risk
Vulners AI Score7.1
esoftpro online contact managerultimate database systemcontact informationemail clientpda interfacesql vulnerabilityxss vulnerability
34