what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 25 of 100 RSS Feed

Files

Concrete5 5.7.3.1 Cross Site Scripting
Posted May 13, 2015
Authored by Onur YILMAZ, Omar Kurt | Site netsparker.com

Concrete5 version 5.7.3.1 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
advisories | CVE-2015-2250
SHA-256 | 779a300e312a7f4499e82dec4285a6c6d712548afa3edad66c1b13bfc741514e

Related Files

Concrete5 8.5.5 Phar Deserialization
Posted Jul 20, 2021
Authored by EgiX | Site karmainsecurity.com

Concrete5 versions 8.5.5 suffer from a logging settings phar deserialization vulnerability. User input passed through the logFile request parameter is not properly sanitized before being used in a call to the file_exists() function at line 91. This can be exploited by malicious users to inject arbitrary PHP objects into the application scope (PHP Object Injection via phar:// stream wrapper), allowing them to carry out a variety of attacks, such as executing arbitrary PHP code. Successful exploitation of this vulnerability requires an administrator account.

tags | advisory, arbitrary, php
advisories | CVE-2021-36766
SHA-256 | 4737c6d7d22010e52296503aaa366abc55f04d975b7b1fd092c8c80e1a164e8a
Concrete5 8.5.4 Cross Site Scripting
Posted Mar 29, 2021
Authored by Quadron Research Lab

Concrete5 version 8.5.4 suffers from a persistent cross site scripting vulnerability. Original discovery of persistent cross site scripting in this version is attributed to nu11secur1ty in March of 2021.

tags | exploit, xss
advisories | CVE-2021-3111
SHA-256 | 85b90184d4fc5f1bb1bad2e1800e72fd5f21249b52f09b95dfbc02fe3864fd2d
Concrete5 8.5.4 Cross Site Scripting
Posted Mar 1, 2021
Authored by nu11secur1ty

Concrete5 version 8.5.4 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2021-3111
SHA-256 | ac19392af3a74934edad1a97ba2e0362afa7cc9ca0161dbd106631cf67d66b6b
Zurmo 3.2.6 Persistent Cross Site Scripting
Posted Jul 26, 2019
Authored by Daniel Bishtawi, Umran Yildirimkaya | Site netsparker.com

Zurmo version 3.2.6 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 78dd4cf9cac1ce59afb343a7d09687c57a8237d03c13a57ddf725f905d8fdbfe
Zurmo 3.2.6 Out Of Band Code Evaluation
Posted Jul 26, 2019
Authored by Daniel Bishtawi, Umran Yildirimkaya | Site netsparker.com

Zurmo version 3.2.6 suffers from an out-of-band code evaluation vulnerability.

tags | exploit
SHA-256 | 7c3e153c94a1ce42cab8549f0468f88ce426261b7a57e8d156c769fa02e84043
Zurmo 3.2.6 Code Evaluation
Posted Jul 25, 2019
Authored by Daniel Bishtawi, Umran Yildirimkaya | Site netsparker.com

Zurmo version 3.2.6 suffers from a code evaluation vulnerability.

tags | exploit
SHA-256 | 82a1d8cc756528ee8137b7b08e6d5d9e92d3e0c49c41e9b1d641e0595c9b90d8
Zurmo 3.2.6 Reflected Cross Site Scripting
Posted Jul 25, 2019
Authored by Daniel Bishtawi, Umran Yildirimkaya | Site netsparker.com

Zurmo version 3.2.6 suffers from reflective cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
SHA-256 | 272981387eb4c7d4e4980aa8c49a60c1bd14b31aa8ee2ab333760b0df2eacec1
phpFK lite-version Cross Site Scripting
Posted Jul 10, 2019
Authored by Daniel Bishtawi | Site netsparker.com

phpFK lite-version suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
advisories | CVE-2017-18364
SHA-256 | bfadb994d6bd3b1cd2775392aa603af686c5d2de5375e627da22472373722c76
Shopware 5.5.6 Cross Site Scripting
Posted May 31, 2019
Authored by Daniel Bishtawi | Site netsparker.com

Shopware version 5.5.6 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
advisories | CVE-2019-12935
SHA-256 | eb25c1077ef6a645db6b377e7b7a016595162543b874efa6accee2d46294a0ee
VFront 0.99.5 Persistent Cross Site Scripting
Posted May 28, 2019
Authored by Omer Citak | Site netsparker.com

VFront version 0.99.5 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2019-9838
SHA-256 | 19ea0e081b2e83830a6b066096c11d04dcc0acec966ec97d6377681e36ca6c9b
VFront 0.99.5 Reflective Cross Site Scripting
Posted May 28, 2019
Authored by Omer Citak | Site netsparker.com

VFront version 0.99.5 suffers from multiple reflective cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
advisories | CVE-2019-9839
SHA-256 | 0d216805ffd29114e6cd997888f40343e29ba2dc8cd90edfb1e67454e391efa7
Kanboard 1.2.7 Cross Site Scripting
Posted May 27, 2019
Authored by Mithat Gogebakan | Site netsparker.com

Kanboard version 1.2.7 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2019-7324
SHA-256 | a58b7d6eeb41ea41e14a67f936e8739705bd08162e668835de7bf2b9bb704ad7
HTMLy 2.7.4 Cross Site Scripting
Posted Feb 18, 2019
Authored by Omar Kurt | Site netsparker.com

HTMLy version 2.7.4 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
advisories | CVE-2019-8349
SHA-256 | 5a0e6ad8f0731b3065fd79409e57a51988630faa8088ba321276e393f8e43929
GetSimpleCMS 3.3.13 Open Redirect
Posted Feb 14, 2019
Authored by Mithat Gogebakan | Site netsparker.com

GetSimpleCMS version 3.3.13 suffers from an open redirection vulnerability.

tags | exploit
SHA-256 | 207fc71cb37856e3e8a397995e5de596f086eb7a63c95f9a13042f930d7e9d82
WeBid 1.2.2 Cross Site Scripting
Posted Jan 31, 2019
Authored by Zekvan Arslan | Site netsparker.com

WeBid version 1.2.2 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
SHA-256 | 664795ab23255cbc8b85734dbf2e570c5d2010fe63665bf3278f21d340f67273
Collabtive 3.1 Cross Site Scripting
Posted Jan 30, 2019
Authored by Zekvan Arslan | Site netsparker.com

Collabtive version 3.1 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2019-8935
SHA-256 | 4d370919d2dc68d89e9caf884e0d5027e621e5f200b392c0cd0da81192040d8b
Podcast Generator 2.7 Cross Site Scripting
Posted Jan 25, 2019
Authored by Zekvan Arslan | Site netsparker.com

Podcast Generator version 2.7 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2018-20121
SHA-256 | 342aa0add9d97bf1e5a03940d7b2d050192f55a9959995061ac92669ad0ea45a
Coppermine 1.5.46 Cross Site Scripting
Posted Jan 23, 2019
Authored by Zekvan Arslan | Site netsparker.com

Coppermine version 1.5.46 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
advisories | CVE-2018-14478
SHA-256 | 38b80db2c56e17ffeddbb0f779d6162b367b3d055203dc2936b95d756b85c455
Abantecart 1.2.12 Cross Site Scripting
Posted Jan 23, 2019
Authored by Omer Citak | Site netsparker.com

Abantecart version 1.2.12 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2018-20141
SHA-256 | 9049506bf8cac7203cc836634a13bb52cc4e386f1736d2424ed25fee79a9ef91
DNN 9.1 XML Related Cross Site Scripting
Posted Jan 23, 2019
Authored by Mustafa Yalcin | Site netsparker.com

DNN version 9.1 suffers from a cross site scripting issue that can be achieved via an XML vulnerability.

tags | exploit, xss
advisories | CVE-2018-14486
SHA-256 | 524165c60ed031fcefc4fdd7b52e564af0f4bd3450ce057e38a1662da131284e
Ampache 3.8.6 Cross Site Scripting
Posted Jan 9, 2019
Authored by Zekvan Arslan | Site netsparker.com

Ampache version 3.8.6 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
SHA-256 | 0df6202d2e2ba7b2b3a388c00adfd7cc731f5b2afe54c067226bae1ab49cf904
BlogEngine 3.3 XML External Entity Injection
Posted Jan 9, 2019
Authored by Mustafa Yalcin | Site netsparker.com

BlogEngine version 3.3 suffers from an XML external entity injection vulnerability.

tags | exploit
advisories | CVE-2018-14485
SHA-256 | 81c346a488af94a4a6e50a7ba4ba5ee7fc1f737b31b6ae0ecbd0220b1a149de6
OrangeForum 1.4.0 Open Redirection
Posted Jan 9, 2019
Authored by Omar Kurt | Site netsparker.com

OrangeForum version 1.4.0 suffers from open redirection vulnerabilities.

tags | exploit, vulnerability
advisories | CVE-2018-14474
SHA-256 | 52a54e8dac487a6ef87bc3446a9760fe33265a5c204260d27a24499f6d1144b7
ZenPhoto 1.4.14 Cross Site Scripting
Posted Jan 8, 2019
Authored by Zekvan Arslan | Site netsparker.com

ZenPhoto version 1.4.14 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
advisories | CVE-2018-20140
SHA-256 | 10fab1ecdb12b992f281934a8923030c443cb6246e70b8221ab99c037bddddea
Mantis 2.11.1 Cross Site Scripting
Posted Jan 8, 2019
Authored by Omer Citak | Site netsparker.com

Mantis version 2.11.1 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2018-13055
SHA-256 | 007736d3715949fe6452171a06d4473baa940cdc4a1befb91ceaa5d79be7ad82
Page 1 of 4
Back1234Next

File Archive:

July 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    27 Files
  • 2
    Jul 2nd
    10 Files
  • 3
    Jul 3rd
    35 Files
  • 4
    Jul 4th
    27 Files
  • 5
    Jul 5th
    18 Files
  • 6
    Jul 6th
    0 Files
  • 7
    Jul 7th
    0 Files
  • 8
    Jul 8th
    28 Files
  • 9
    Jul 9th
    44 Files
  • 10
    Jul 10th
    24 Files
  • 11
    Jul 11th
    25 Files
  • 12
    Jul 12th
    11 Files
  • 13
    Jul 13th
    0 Files
  • 14
    Jul 14th
    0 Files
  • 15
    Jul 15th
    28 Files
  • 16
    Jul 16th
    6 Files
  • 17
    Jul 17th
    34 Files
  • 18
    Jul 18th
    6 Files
  • 19
    Jul 19th
    34 Files
  • 20
    Jul 20th
    0 Files
  • 21
    Jul 21st
    0 Files
  • 22
    Jul 22nd
    0 Files
  • 23
    Jul 23rd
    0 Files
  • 24
    Jul 24th
    0 Files
  • 25
    Jul 25th
    0 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close