OpenCart 3.0.36 Vulnerable ATO via Cross Site Request Forgery
OpenCart version 3.0.36 suffers from a Cross Site Request Forgery (CSRF) vulnerability allowing for an account take over.
Tag: cms
OOP CMS BLOG 1.0 – ‘search’ SQL Injection
# Exploit Title: OOP CMS BLOG 1.0 – ‘search’ SQL Injection # Dork: N/A # Date: 2018-11-06 # Exploit Author: Ihsan Sencan # Vendor Homepage: http://zsoft.com.bd/ # Software Link: https://datapacket.dl.sourceforge.net/project/php-oop-cms-blog/blog_fo_rup.zip # Version: 1.0 # Category: […]
CMS Made Simple 2.2.5 Authenticated Remote Command Execution
CMS Made Simple version 2.2.5 allows an authenticated administrator to upload a file and rename it to have a .php extension. The file can then be executed by opening the URL of the file in […]
(CMSeek) Content Management System Detection and Exploitation Suite
CMSeek What CMSeek Can Do: –Basic CMS Detection of over 20 CMS –Advanced WordPress Scans —–Detects Version —–Detects Users (3 Detection Methods) —–Looks for Version Vulnerabilities and much more! –Modular bruteforce system —–Use pre made […]
hycus CMS 1.0.4 Authentication Bypass Vulnerability
# Exploit Title: hycus Content Management System v1.0.4 Login Page Bypass # Exploit Author: Berk Dusunur # Vendor Homepage: http://www.hycus.com/ # Software Link: http://demosite.center/hycus/ # Version: 1.0.4 # Tested on: Pardus / Debian Web Server […]