NetCat CMS Multiple Remote File Inclusion (RFI) Security Vulnerabilities

NetCat CMS Multiple Remote File Inclusion (RFI) Security Vulnerabilities   Exploit Title: NetCat CMS Multiple Remote File Inclusion (RFI) Security Vulnerabilities Product: NetCat CMS (Content Management System) Vendor: NetCat Vulnerable Versions: 3.12   3.0   2.4   2.3   2.2… Continue Reading

CVE-2008-2335 – Vastal I-tech phpVID 1.2.3 Multiple XSS (Cross-site Scripting) Security Vulnerabilities

CVE-2008-2335 – Vastal I-tech phpVID 1.2.3 Multiple XSS (Cross-site Scripting) Security Vulnerabilities   Exploit Title: Vastal I-tech phpVID Multiple XSS Security Vulnerabilities Product: phpVID Vendor: Vastal I-tech Vulnerable Versions: 1.2.3   0.9.9 Tested Version: 1.2.3   0.9.9 Advisory Publication: March… Continue Reading

CVE-2015-2349 – SuperWebMailer 5.50.0.01160 XSS (Cross-site Scripting) Web Security Vulnerabilities

CVE-2015-2349 – SuperWebMailer 5.50.0.01160 XSS (Cross-site Scripting) Web Security Vulnerabilities Exploit Title: CVE-2015-2349 – SuperWebMailer /defaultnewsletter.php” HTMLForm Parameter XSS Web Security Vulnerabilities Product: SuperWebMailer Vendor: SuperWebMailer Vulnerable Versions: 5.*.0.*   4.*.0.* Tested Version: 5.*.0.*   4.*.0.* Advisory Publication: March 11,… Continue Reading

NetCat CMS Multiple XSS (Cross-site Scripting) Security Vulnerabilities

NetCat CMS Multiple XSS (Cross-site Scripting) Security Vulnerabilities   Exploit Title: NetCat CMS Multiple XSS Security Vulnerabilities Product: NetCat CMS (Content Management System) Vendor: NetCat Vulnerable Versions: 5.01   3.12   3.0   2.4   2.3   2.2   2.1… Continue Reading

WordPress Daily Edition Theme v1.6.2 Unrestricted Upload of File Security Vulnerabilities

WordPress Daily Edition Theme v1.6.2 Unrestricted Upload of File Security Vulnerabilities   Exploit Title: WordPress Daily Edition Theme v1.6.2 /thumb.php src Parameter Unrestricted Upload of File Security Vulnerabilities Product: WordPress Daily Edition Theme Vendor: WooThemes Vulnerable Versions: v1.6.2 Tested Version:… Continue Reading

CVE-2015-2244 Webshop hun v1.062S XSS (Cross-site Scripting) Security Vulnerabilities

CVE-2015-2244 Webshop hun v1.062S XSS (Cross-site Scripting) Security Vulnerabilities   Exploit Title: Webshop hun v1.062S /index.php Multiple Parameters XSS Security Vulnerabilities Product: Webshop hun Vendor: Webshop hun Vulnerable Versions: v1.062S Tested Version: v1.062S Advisory Publication: Mar 04, 2015 Latest Update:… Continue Reading

WordPress “Max Banner Ads” Plug-in XSS (Cross-site Scripting) Security Vulnerabilities

WordPress “Max Banner Ads” Plug-in XSS (Cross-site Scripting) Security Vulnerabilities   Exploit Title: WordPress “Max Banner Ads” Plugin /info.php &zone_id Parameter XSS Security Vulnerabilities Product: WordPress “Max Banner Ads” Plugin Vendor: MaxBlogPress Vulnerable Versions: 1.9  1.8   1.4   1.3.*… Continue Reading

WordPress Newsletter Plug-in URL Redirection (Open Redirect) Security Vulnerabilities

WordPress Newsletter Plug-in URL Redirection (Open Redirect) Security Vulnerabilities   Exploit Title: WordPress Newsletter Plug-in /do.php &nr parameter URL Redirection Security Vulnerabilities Product: WordPress Newsletter Plug-in Vendor: Satollo.net Vulnerable Versions: 2.6.* 2.5.* Tested Version: Check Related Versions’ Source Code Advisory… Continue Reading

NetCat CMS Multiple URL Redirection (Open Redirect) Security Vulnerabilities

NetCat CMS Multiple URL Redirection (Open Redirect) Security Vulnerabilities   Exploit Title: NetCat CMS Multiple URL Redirection Security Vulnerabilities Product: NetCat CMS (Content Management System) Vendor: NetCat Vulnerable Versions: 5.01   3.12   3.0   2.4   2.3   2.2… Continue Reading

Comsenz SupeSite CMS Arbitrary Code Execution Security Vulnerabilities

Comsenz SupeSite CMS Arbitrary Code Execution Security Vulnerabilities   Exploit Title: Comsenz SupeSite CMS Arbitrary Code Execution Security Vulnerabilities Product: SupeSite CMS (Content Management System) Vendor: Comsenz Vulnerable Versions: 6.0.1UC   7.0 Tested Version: 7.0 Advisory Publication: Feb 25, 2015… Continue Reading