Creditee: DaOne

Known Contact Information:

  • None at this time

Known Affiliations:

  • None at this time

Disclosed Vulnerabilities (26):

Disc. DateOSVDB IDCVEIDTitle
2013-08-15 96311 KCFinder browse.php file Parameter Traversal Arbitrary File Access
2013-08-15 96307 Pligg CMS File Creation CSRF
2013-03-23 91660 AContent /oauth/lti/common/tool_provider_outcome.php url Parameter Traversal Arbitrary File Access
2013-03-22 91946 Stradus CMS /adminfiles/log_view.php order_by Parameter SQL Injection
2013-03-22 91947 Stradus CMS /moduls/photo_album/new.php edit Parameter SQL Injection
2013-03-22 91938 Slash CMS /slash-cms/index.php id Parameter XSS
2013-03-22 91940 Slash CMS /slash-cms/index.php id Parameter SQL Injection
2013-03-22 91937 FlatnuX CMS index.php theme Parameter Traversal Arbitrary File Access
2013-03-22 91942 Stradus CMS /moduls/photo_album/upload.php File Upload Arbitrary Code Execution
2013-03-22 91943 Stradus CMS /moduls/simply_image/upload.php File Upload Arbitrary Code Execution
2013-03-22 91944 Stradus CMS /adminfiles/log_view.php order_by Parameter XSS
2013-03-22 91945 Stradus CMS /moduls/photo_album/new.php edit Parameter XSS
2013-03-22 91939 Slash CMS /slash-cms/core/plugins/ajaxupload/ajaxupload.php File Upload Arbitrary Code Execution
2012-09-17 85553 Auxilium PetRatePro Admin User Creation CSRF
2012-09-17 85552 Auxilium PetRatePro viewcomments.php phid Parameter SQL Injection
2012-09-17 85554 Auxilium PetRatePro admin/sitebanners/upload_banners.php File Upload Remote PHP Code Execution
2012-09-08 85358 Pinboarding Pro Admin Password Manipulation CSRF
2012-09-08 85357 Pinboarding Pro uploadpin.php board_desc Parameter XSS
2012-09-07 85204 Clipster login.php username Parameter XSS
2012-08-28 85937 RV Article Publisher /rvp-admin/user-add.php Arbitrary Admin User Creation CSRF
2012-08-28 85940 RV Shopping Cart /rvp-admin/user-add.php Arbitrary Admin User Creation CSRF
2012-08-22 84859 VamCart Admin User Creation CSRF
2012-08-20 85505 ClipBucket /admin_area/add_member.php Arbitrary Admin Account Creation CSRF
2012-08-17 85465 Jaow CMS /administration/utilisateur.php Admin Password Manipulation CSRF
2012-08-16 85463 ProQuiz functions.php Admin Password Manipulation CSRF
2012-07-18 84233 Nwahy Admin User Creation CSRF

The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

© Copyright 2002 - 2014 Open Sourced Vulnerability Database (OSVDB), All Rights Reserved.
License - Privacy Statement - Terms of Use