GetSimple CMS My SMTP Contact Plugin 1.1.1 – CSRF to RCE
April 17th, 2021 📆 | 8083 Views ⚑
# Exploit Title: GetSimple CMS My SMTP Contact Plugin 1.1.1 - CSRF to RCE # Exploit Author: Bobby Cooke (boku)
Browsing the "cms" Tag
Tagged with: cms • contact • CSRF • getsimple • php • plugin • RCE • SMTP • webapps
GetSimple CMS My SMTP Contact 1.1.1 CSRF / Remote Code Execution ≈ Packet Storm
April 16th, 2021 📆 | 2655 Views ⚑
# Exploit Title: GetSimple CMS My SMTP Contact Plugin < = v1.1.1 - CSRF to RCE# Exploit Author: Bobby Cooke
Tagged with: advisory • cms • code • contact • CSRF • execution • exploit • getsimple • overflow • packet • remote • scanner • security • SMTP • storm • vulnerability • whitepaper • XSS
Composr CMS 10.0.36 Cross Site Scripting ≈ Packet Storm
April 8th, 2021 📆 | 5354 Views ⚑
# Exploit Title: Composr CMS 10.0.36 - Cross Site Scripting# Date: 04/06/2021# Exploit Author: Orion Hridoy# Vendor Homepage: https://compo.sr/# Software
Tagged with: advisory • cms • composr • cross • CSRF • exploit • overflow • packet • scanner • scripting • security • Site • storm • vulnerability • whitepaper • XSS
Monospace Directus Headless CMS File Upload / Rule Bypass ≈ Packet Storm
April 8th, 2021 📆 | 1823 Views ⚑
SEC Consult Vulnerability Lab Security Advisory < 20210407-0 >=======================================================================title: Arbitrary File Upload and Bypassing .htaccess Rulesproduct: Monospace Directus Headless CMSvulnerable
Tagged with: advisory • bypass • cms • CSRF • directus • exploit • File • headless • monospace • overflow • packet • Rule • scanner • security • storm • upload • vulnerability • whitepaper • XSS
Composr CMS 10.0.36 – Cross Site Scripting
April 7th, 2021 📆 | 3780 Views ⚑
# Exploit Title: Composr CMS 10.0.36 - Cross Site Scripting # Date: 04/06/2021 # Exploit Author: Orion Hridoy # Vendor
Tagged with: cms • composr • cross • CVE-2021-30150 • php • scripting • Site • webapps
Papoo CMS Cross Site Request Forgery ≈ Packet Storm
April 5th, 2021 📆 | 5056 Views ⚑
Advisory: CSRF Vulnerability in Papoo CMSAdvisory ID: rADV-2021-01Author: Reinhard WesterholtAffected Software: 21.02 Rev. 04f1ca6 – Papoo Light6.0.1 Rev. 4770 –
Tagged with: advisory • cms • cross • CSRF • exploit • forgery • overflow • packet • papoo • request • scanner • security • Site • storm • vulnerability • whitepaper • XSS
GetSimple CMS 3.3.16 Cross Site Scripting / Shell Upload ≈ Packet Storm
March 31st, 2021 📆 | 2067 Views ⚑
# Exploit Title: GetSimple CMS 3.3.16 – Reflected XSS to RCE# Exploit Author: Bobby Cooke (boku)# Discovery Credits: Bobby Cooke
Tagged with: advisory • cms • cross • CSRF • exploit • getsimple • overflow • packet • scanner • scripting • security • shell • Site • storm • upload • vulnerability • whitepaper • XSS
GetSimple CMS 3.3.16 – Reflected XSS to RCE
March 30th, 2021 📆 | 4093 Views ⚑
# Exploit Title: GetSimple CMS 3.3.16 - Reflected XSS to RCE # Exploit Author: Bobby Cooke (boku) # Discovery Credits:
Tagged with: cms • CVE-2020-23839 • getsimple • php • RCE • reflected • webapps • XSS
GetSimple CMS Custom JS Plugin 0.1 – CSRF to Persistent XSS
March 27th, 2021 📆 | 4980 Views ⚑
# Exploit Title: GetSimple CMS Custom JS Plugin 0.1 - CSRF to Persistent XSS # Exploit Author: Abhishek Joshi #
Tagged with: cms • CSRF • custom • getsimple • persistent • php • plugin • webapps • XSS
GetSimple CMS Custom JS 0.1 Cross Site Request Forgery / Cross Site Scripting ≈ Packet Storm
March 27th, 2021 📆 | 5118 Views ⚑
# Exploit Title: GetSimple CMS Custom JS Plugin 0.1 - CSRF to Persistent XSS# Exploit Author: Abhishek Joshi # Date:
Tagged with: advisory • cms • cross • CSRF • custom • exploit • forgery • getsimple • overflow • packet • request • scanner • scripting • security • Site • storm • vulnerability • whitepaper • XSS
CMS Made Simple 2.2.15 SQL Injection ≈ Packet Storm
March 23rd, 2021 📆 | 7720 Views ⚑
1) Summary Affected software CMS Made Simple-2.2.15Vendor URLhttp://www.cmsmadesimple.org/ Vulnerability SQL injection 2) Vulnerability Description The affected software is vulnerable to
Tagged with: advisory • cms • CSRF • exploit • injection • overflow • packet • scanner • security • simple • SQL • storm • vulnerability • whitepaper • XSS
CMS Made Simple 2.2.15 Shell Upload ≈ Packet Storm
March 23rd, 2021 📆 | 1769 Views ⚑
1) Summary Affected software CMS Made Simple-2.2.15Vendor URLhttp://www.cmsmadesimple.org/ Vulnerability File upload bypass with .phar extension lead to RCE 2) Vulnerability
Tagged with: advisory • cms • CSRF • exploit • overflow • packet • scanner • security • shell • simple • storm • upload • vulnerability • whitepaper • XSS
Plone CMS 5.2.3 Cross Site Scripting ≈ Packet Storm
March 20th, 2021 📆 | 2193 Views ⚑
Plone CMS 5.2.3 Cross Site Scripting Posted Mar 19, 2021 Authored by Piyush Patil Plone CMS version 5.2.3 suffers from
Tagged with: advisory • cms • cross • CSRF • exploit • overflow • packet • plone • scanner • scripting • security • Site • storm • vulnerability • whitepaper • XSS
Plone CMS 5.2.3 – ‘Title’ Stored XSS
March 19th, 2021 📆 | 5291 Views ⚑
# Exploit Title: Plone CMS 5.2.3 - 'Title' Stored XSS # Date: 18-03-2021 # Exploit Author: Piyush Patil # Vendor
Tagged with: cms • multiple • plone • stored • title • webapps • XSS
Zenario CMS 8.8.53370 – ‘id’ Blind SQL Injection
March 15th, 2021 📆 | 7189 Views ⚑
# Exploit Title: Zenario CMS 8.8.53370 - 'id' Blind SQL Injection # Date: 05/02/2021 # Exploit Author: Balaji Ayyasamy #
Tagged with: 53370 • blind • cms • injection • php • SQL • webapps • zenario
Textpattern CMS 4.9.0-dev – ‘Excerpt’ Persistent Cross-Site Scripting (XSS)
March 5th, 2021 📆 | 2570 Views ⚑
# Exploit Title: Textpattern CMS 4.9.0-dev - 'Excerpt' Persistent Cross-Site Scripting (XSS) # Date: 2021-03-04 # Exploit Author: Tushar Vaidya
Tagged with: 490dev • cms • cross • CrossSite • excerpt • persistent • php • scripting • textpattern • webapps • XSS
Textpattern CMS 4.8.4 – ‘Comments’ Persistent Cross-Site Scripting (XSS)
March 5th, 2021 📆 | 4573 Views ⚑
# Exploit Title: Textpattern CMS 4.8.4 - 'Comments' Persistent Cross-Site Scripting (XSS) # Date: 2021-03-04 # Exploit Author: Tushar Vaidya
Tagged with: cms • comments • cross • CrossSite • persistent • php • scripting • textpattern • webapps • XSS
e107 CMS 2.3.0 – CSRF
March 5th, 2021 📆 | 5343 Views ⚑
# Exploit Title: e107 CMS 2.3.0 - CSRF # Date: 04/03/2021 # Exploit Author: Tadjmen # Vendor Homepage: https://e107.org #
Tagged with: cms • CSRF • CVE-2021-27885 • e107 • php • webapps
e107 CMS 2.3.0 Cross Site Request Forgery
March 5th, 2021 📆 | 6963 Views ⚑
e107 CMS version 2.3.0 suffers from a cross site request forgery vulnerability. Source link
Tagged with: cms • cross • e107 • forgery • request • Site
Textpattern CMS 4.8.4 Cross Site Scripting
March 4th, 2021 📆 | 3524 Views ⚑
Textpattern CMS version 4.8.4 suffers from a persistent cross site scripting vulnerability. Source link
Tagged with: cms • cross • scripting • Site • textpattern
Popular
Microsoft Exchange ProxyLogon Remote Code Execution… March 24, 2021 ### This module requires Metasploit: https://metasploit.com/download# Current source: https://github.com/rapid7/metasploit-framework##class MetasploitModule…
Meet the 2021 SC Awards judges March 29, 2021 Each year, a select pool of experts from the cybersecurity…
Was My Facebook Hacked? How to See if Your Phone… April 5, 2021 Photo: Chip Somodevilla (Getty Images)Hacked data on over 553 million…
Varun Nair joins BookMyShow as Head Information… April 9, 2021 Bangalore-based Varun Nair has joined BookMyShow as Head-Information Security. According…
Coca-Cola trade secret theft underscores importance… April 6, 2021 The trial of Xiaorong You is set to begin today,…
The cesspool of the internet is to be found in a… April 5, 2021 At the beginning of 2012, the British internet activist and…
Microsoft acquires Nuance Communications. Veriff… April 14, 2021 MarketplaceWhere VCs Are Putting Their Money As Cybersecurity Funding Hits…
Members
Comments