Paid To Read Script version 2.0.5 suffers from a remote SQL injection vulnerability.
>> CATEGORY: exploit
Piwigo version 2.9.1 suffers from a remote SQL injection vulnerability.
Movie Guide version 2.0 suffers from a remote SQL injection vulnerability.
FS Lynda Clone version 1.0 suffers from a remote SQL injection vulnerability.
Bus Booking Script version 1.0 suffers from a remote SQL injection vulnerability.
This Metasploit module exploits a file upload vulnerability found in Western Digital’s MyCloud NAS web administration HTTP service. The /web/jquery/uploader/multi_uploadify.php PHP script provides multipart upload functionality that is accessible without…
WordPress Qiniu Cloudtuchuang (七牛云图床) plugin version 1.8 is prone to a stored cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data.
WordPress WordApp Mobile App plugin version 2.0.3 suffers from a cross site scripting vulnerability.
WordPress WooPay Inicis plugin version 1.1.3 suffers from a cross site scripting vulnerability.
This Metasploit module generates an DDE command to place within a word document, that when executed, will retrieve a HTA payload via HTTP from an web server.