mike manzotti vulnerabilities and exploits

(subscribe to this query)

SQL injection vulnerability in admin/admin.php in Sphider 1.3.6 allows remote malicious users to execute arbitrary SQL commands via the filter parameter.

Sphider Sphider 1.3.6

1 EDB exploit

Cross-site scripting (XSS) vulnerability in admin/admin.php in Sphider 1.3.6 allows remote malicious users to inject arbitrary web script or HTML via the category parameter. NOTE: the url parameter vector is already covered by CVE-2014-5082.

Sphider Sphider 1.3.6

1 EDB exploit

Multiple SQL injection vulnerabilities in includes/functions.php in Pro Chat Rooms Text Chat Rooms 8.2.0 allow remote authenticated users to execute arbitrary SQL commands via the (1) password, (2) email, or (3) id parameter.

Prochatrooms Text Chat Rooms 8.2.0

1 EDB exploit

Multiple cross-site scripting (XSS) vulnerabilities in Pro Chat Rooms Text Chat Rooms 8.2.0 allow remote authenticated users to inject arbitrary web script or HTML via (1) an uploaded profile picture or (2) the edit parameter to profiles/index.php.

Pro Chat Rooms Text Chat Rooms 8.2.0

1 EDB exploit

Static code injection vulnerability in admin/admin.php in Sphider 1.3.6 allows remote authenticated users to inject arbitrary PHP code into settings/conf.php via the _word_upper_bound parameter.

Sphider Sphider 1.3.6

1 EDB exploit

Multiple SQL injection vulnerabilities in admin/admin.php in Sphider 1.3.6 and previous versions, Sphider Pro, and Sphider-plus allow remote malicious users to execute arbitrary SQL commands via the (1) site_id or (2) url parameter.

Sphider Sphider 1.3.5 Sphider Sphider 1.3.4 Sphider Sphider 1.3.2 Sphider Sphider Sphider Sphider 1.3.3

2 EDB exploits

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook