exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 17 of 17 RSS Feed

Files

CodeIgniter 2.1.1 Cross Site Scripting Bypass
Posted Jul 20, 2012
Authored by Krzysztof Kotowicz

CodeIgniter version 2.1.1 suffers from a cross site scripting filter bypass vulnerability.

tags | exploit, xss, bypass
advisories | CVE-2012-1915
SHA-256 | 3ef2a27952806217b13309e73061a93a5159c4ffa2318c44e42a0fe6cd29d93d

Related Files

ASIS 3.2.0 SQL Injection
Posted Sep 5, 2024
Authored by checkgue

Aplikasi Sistem Sekolah using CodeIgniter 3 versions 3.0.0 through 3.2.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, sql injection
advisories | CVE-2024-45622
SHA-256 | fe65c787aee815dfc8b9290370fcbbbd08d7fe1dc9a91dcb691c3cd4a0a59277
Ecommerce CodeIgniter Bootstrap 1.0 Cross Site Scripting
Posted Oct 31, 2022
Authored by nu11secur1ty

Ecommerce CodeIgniter Bootstrap version 1.0 suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 8067f4fd81733f7b71a1c0e622616e9b01152a86d53a5b22251faef3ddc7b340
CodeIgniter CMS 4.2.0 SQL Injection
Posted Aug 1, 2022
Authored by E1.Coders

CodeIgniter CMS version 4.2.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 95b28e947fb52c82785b9e221438f8e9b78449cd4019acccc826a0cac2e8875e
LANGO Codeigniter Multilingual Script 1.0 Cross Site Scripting
Posted Oct 24, 2018
Authored by Ismail Tasdelen

LANGO Codeigniter Multilingual Script version 1.0 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2018-18416
SHA-256 | 7ef7a20f78b99c0b6409e9aec1213dcdccc6549054e8bf691f98d9c6cc7f0723
LANGO Codeigniter Multilingual Script 1.0 Cross Site Scripting
Posted Oct 17, 2018
Authored by Ismail Tasdelen

LANGO Codeigniter Multilingual Script version 1.0 suffers from html injection and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
advisories | CVE-2018-18416
SHA-256 | 1a7f46c5730e7ddc22cc65539b4922093c7ff1375817ea40f8170245c2f61333
Code Igniter 3.1.3 HTTP Response Header Injection
Posted Apr 10, 2017
Authored by Guillermo Caminer

Code Igniter version 3.1.3 suffers from an HTTP response header injection vulnerability.

tags | exploit, web
SHA-256 | e52bee02d270e61fcc601feb04ba41a21c63d1351ad0c4f5b84ee7ac4a8b1654
Takas Classified Cogeigniter PHP Classified Ad Script 1.1 SQL Injection
Posted Feb 10, 2017
Authored by Ihsan Sencan

Takas Classified Codeigniter PHP Classified Ad Script version 1.1 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, php, sql injection
SHA-256 | 855deda835837c4de8a4be5bc12b68b7512e89dd5b06a0789a60f412da28513e
Seagate Business NAS Unauthenticated Remote Command Execution
Posted Mar 2, 2015
Authored by OJ Reeves | Site metasploit.com

Some Seagate Business NAS devices are vulnerable to command execution via a local file include vulnerability hidden in the language parameter of the CodeIgniter session cookie. The vulnerability manifests in the way the language files are included in the code on the login page, and hence is open to attack from users without the need for authentication. The cookie can be easily decrypted using a known static encryption key and re-encrypted once the PHP object string has been modified. This Metasploit module has been tested on the STBN300 device.

tags | exploit, local, php
advisories | CVE-2014-8684, CVE-2014-8686, CVE-2014-8687
SHA-256 | 0487fb38d28fb3a16f1e6da5666a62aa264281d650c6fa4c8f45c8249d44e294
CodeIgniter 2.1.4 Weak Encryption
Posted Jun 11, 2014
Authored by Robin Bailey

CodeIgniter versions 2.1.4 suffer from a weakly encrypted cookie vulnerability if the Mcrypt PHP library is not installed.

tags | advisory, php
SHA-256 | ecbf837304eedee509b6d4b0af685f95cc4f63942f6dad1dd1b88c9a74a1f9e9
CodeIgniter / Kohana PHP Object Injection / Timing Attack
Posted May 13, 2014
Authored by Scott Arciszewski

CodeIgniter versions 2.1.4 and below and Kohana versions 3.2.3 and below and 3.3.2 and below suffer from PHP object injection, a timing attack, and a remote code execution vulnerability.

tags | advisory, remote, php, code execution
SHA-256 | d357c2844cd74c3664747fff941d56d0608de1bd1ced834e031486b9328c8121
Total Shop UK eCommerice Cross Site Scripting
Posted Aug 14, 2012
Authored by Chris Cooper | Site reactionpenetrationtesting.co.uk

Total Shop UK eCommerce, which is based on CodeIgniter version 2.1.2, suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2012-4236
SHA-256 | 5152d11e96f30211a557516deffd45d1b790edd8b739f21a1dd10b248c3997c9
Secunia Security Advisory 47013
Posted Nov 30, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Dr. Marian Ventuneac has reported a vulnerability in CodeIgniter, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, xss
SHA-256 | 5a8ef81e21cde7b8456454f3c3d04d161c2f93d0a4760cbe036489321355de13
ExpressionEngine 2.2.2 / CodeIgniter 2.0.3 Cross Site Scripting
Posted Nov 30, 2011
Authored by Dr. Marian Ventuneac

ExpressionEngine version 2.2.2 and CodeIgniter version 2.0.3 suffer from filter bypass and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
advisories | CVE-2011-4025
SHA-256 | fdab17029ae48b80689e4ddd515edc23100d07a8f55741743dc18b289e5b7a22
Secunia Security Advisory 40696
Posted Jul 22, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been discovered in CodeIgniter, which can be exploited by malicious people to compromise a vulnerable system.

tags | advisory
SHA-256 | b18d86a5fb642803cd19960f7e2a1ec385ad511f3f563004c4b3aaa09fa4a27c
CodeIgniter 1.0 Remote File Inclusion
Posted Feb 15, 2010
Authored by eidelweiss

CodeIgniter version 1.0 suffers from a remote file inclusion vulnerability.

tags | exploit, remote, code execution, file inclusion
SHA-256 | aa605de6ddbe44872e07d663bc2e6cdcee145d746d798d00559a53cd8a42f1f8
Secunia Security Advisory 25991
Posted Jul 11, 2007
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Lukasz Pilorz has reported a vulnerability and a weakness in CodeIgniter, which can be exploited by malicious people to disclose sensitive information and conduct cross-site scripting and header injection attacks.

tags | advisory, xss
SHA-256 | 593ce1d18612b968cf1253aacbd1700fbd35998ce29cb5ac2976271d5fbbe534
codeigniter-multi.txt
Posted Jul 10, 2007
Authored by Lukasz Pilorz

CodeIgniter versions below SVN 28.06.2007 suffer from directory traversal and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
SHA-256 | 9c844f45f780673c7009cc92946fc378cba3a9fbd7112b32708978958096e5fd
Page 1 of 1
Back1Next

File Archive:

October 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Oct 1st
    39 Files
  • 2
    Oct 2nd
    23 Files
  • 3
    Oct 3rd
    18 Files
  • 4
    Oct 4th
    20 Files
  • 5
    Oct 5th
    0 Files
  • 6
    Oct 6th
    0 Files
  • 7
    Oct 7th
    0 Files
  • 8
    Oct 8th
    0 Files
  • 9
    Oct 9th
    0 Files
  • 10
    Oct 10th
    0 Files
  • 11
    Oct 11th
    0 Files
  • 12
    Oct 12th
    0 Files
  • 13
    Oct 13th
    0 Files
  • 14
    Oct 14th
    0 Files
  • 15
    Oct 15th
    0 Files
  • 16
    Oct 16th
    0 Files
  • 17
    Oct 17th
    0 Files
  • 18
    Oct 18th
    0 Files
  • 19
    Oct 19th
    0 Files
  • 20
    Oct 20th
    0 Files
  • 21
    Oct 21st
    0 Files
  • 22
    Oct 22nd
    0 Files
  • 23
    Oct 23rd
    0 Files
  • 24
    Oct 24th
    0 Files
  • 25
    Oct 25th
    0 Files
  • 26
    Oct 26th
    0 Files
  • 27
    Oct 27th
    0 Files
  • 28
    Oct 28th
    0 Files
  • 29
    Oct 29th
    0 Files
  • 30
    Oct 30th
    0 Files
  • 31
    Oct 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close