Browsing the "cms" Tag

Impress CMS 1.4.0 Code Execution / SQL Injection ≈ Packet Storm

July 10th, 2020 📆 | 2830 Views ⚑

#Author: AppleBois#Homepage: https://sourceforge.net/projects/impresscms/#Affected Version: 1.4.0#Remote Code Execution or Sql Injection#Authenticated user can make use of the AutoTask feature to execute

Tagged with:




Bolt CMS 3.7.0 XSS / CSRF / Shell Upload ≈ Packet Storm

July 4th, 2020 📆 | 5773 Views ⚑

########################################################################### Bolt CMS < = 3.7.0 Multiple Vulnerabilities ########################################################################### Author – Sivanesh Ashok | @sivaneshashok | stazot.com Date : 2020-03-24Vendor

Tagged with:




EQDKP Plus CMS 2.3.29 Cross Site Scripting ≈ Packet Storm

July 3rd, 2020 📆 | 2588 Views ⚑

SEC Consult Vulnerability Lab Security Advisory < 20200701-0 >=======================================================================title: Reflected Cross-Site Scripting (XSS) Vulnerabilityproduct: EQDKP Plus CMSvulnerable version: < =

Tagged with:




Bolt CMS 3.7.0 Authenticated Remote Code Execution ≈ Packet Storm

June 29th, 2020 📆 | 2661 Views ⚑

### This module requires Metasploit: https://metasploit.com/download# Current source: https://github.com/rapid7/metasploit-framework## class MetasploitModule < Msf::Exploit::Remote Rank = ExcellentRanking include Msf::Exploit::Remote::HttpClientinclude Msf::Exploit::CmdStagerinclude Msf::Exploit::Remote::AutoCheck

Tagged with:




Cayin CMS NTP Server 11.0 Remote Code Execution ≈ Packet Storm

June 21st, 2020 📆 | 7048 Views ⚑

### This module requires Metasploit: https://metasploit.com/download# Current source: https://github.com/rapid7/metasploit-framework## class MetasploitModule < Msf::Exploit::RemoteRank = ExcellentRanking include Msf::Exploit::Remote::HttpClientinclude Msf::Exploit::FileDropperinclude Msf::Exploit::CmdStager def

Tagged with:




Gila CMS 1.1.18.1 SQL Injection / Shell Upload ≈ Packet Storm

June 21st, 2020 📆 | 6881 Views ⚑

### This module requires Metasploit: https://metasploit.com/download# Current source: https://github.com/rapid7/metasploit-framework##require ‘msf/core’require “net/http”require “uri”require ‘nokogiri’ class MetasploitModule < Msf::ExploitRank = ExcellentRanking include

Tagged with:




We-Com Municipality Portal CMS 2.1.x Cross Site Scripting / SQL Injection ≈ Packet Storm

June 2nd, 2020 📆 | 1629 Views ⚑

# Exploit Title: We-com Municipality portal CMS SQL Injection & XSS Vulnerability# Google Dork:N/A# Date: 2020-04-17# Exploit Author: @ThelastVvV# Vendor

Tagged with:




Composr CMS 10.0.30 Cross Site Scripting ≈ Packet Storm

May 22nd, 2020 📆 | 2508 Views ⚑

# Title: Composr CMS 10.0.30 – Persistent Cross-Site Scripting# Author: Manuel Garcia Cardenas# Date: 2020-02-06# Vendor: https://compo.sr/# CVE: N/A =============================================MGC

Tagged with: