Posts Tagged ‘CMS’
SQL injection vulnerability in Amelia CMS
# Title: # Date: # Author: # Software Link: # Version: # Tested on: ============ { Ariko-Security - Advisory #2/2/2010 } ============= SQL injection vulnerability in Amelia [...]
superengine CMS (Custom Pack) SQL Injection Vulnerability
Author: 10n1z3d <10n1z3dwcn> Date: 15/02/2010 --------------------------------------------------------- superengine CMS (Custom Pack) SQL Injection Vulnerability --------------------------------------------------------- Vendor: [...]
Subdreamer CMS SQL Injection Vulnerabilities
Subdreamer is a content management system, which is written in PHP and uses MySQL as its database backend. There are vulnerabilities in two integration modules in Subdreamer. Both Invision Power Board 2 and phpBB3 integration modules have this vulnerability. Credit: The information has been provided by Tero Kilkanen . Vulnerable [...]
Drupal Go – url redirects Multiple HTML Injection and Arbitrary Code Execution Vulnerabilities
Remote: Yes Local: No Published: Aug 26 2009 12:00AM Updated: Aug 26 2009 10:12PM Credit: Alexander Hass Vulnerable: Drupal Go - url redirects 6.x Drupal Go - url redirects 5.x Not Vulnerable: Drupal Go - url redirects 6.x-1.1 Drupal Go - url redirects 5.x-1.4 The 'Go - url redirects' module [...]
Plume CMS Multiple SQL Injection Vulnerabilities
Vulnerable Systems: * Plume CMS version 1.2.3 Additionally, the variable "id" of tools.php is also vulnerable to the same type of attack. SQL injection attacks can give an attacker access to backend database contents, the ability to remotely execute system commands, or in some circumstances the means to take control of the operating system [...]
SQL Injection vulnerabilities in Subdreamer CMS
Background information: This report applies to Subdreamer newest stable release, 2.5.3.2 hotfix#5. Subdreamer is a content management system, which is written in PHP and uses MySQL as its database backend. Subdreamer's home page is http://www.subdreamer.com Subdreamer can be integrated with different forum software, so that login [...]
TGS CMS 0.x (XSS/SQL/FD) Multiple Remote Vulnerabilities
# TGS CMS (Cross Site Scripting,SQL injection,Blind SQL/XPath injection,Source code disclosure,) Multiple Vulnerabilities # # Discovered By http://ToxicMindZ.org # # Greetz: Str0ke & ToxicMindZ Members # # # -Cross Site Scripting # # Vulnerability Description: # [...]
Gazelle CMS 1.0 Remote Arbitrary Shell Upload Vulnerability
| Gazelle CMS 1.0 Remote Arbitrary File Upload Vuln | My Home Page : WwW.Sec-Code.CoM | Founded By RoMaNcYxHaCkEr Discovered.: RoMaNcYxHaCkEr Vendor.....: http://www.anantasoft.com/index.php?Gazelle%20CMS/Download My Homepage...: WwW.Sec-Code.CoM [...]
![Joomla Component XOBBIX [prodid] SQL Injection Vulnerability](http://news.dreamings.org/wp-content/themes/news-magazine-theme-640/cropper.php?src=http://news.dreamings.org/wp-content/uploads/2010/02/Coffee-Time-150x150.png&h=50&w=50&zc=1&q=95)