Search the Community
Showing results for tags 'scripting'.
Found 396 results
-
ezXSS is an easy way to test (blind) Cross-Site Scripting. Current features Easy to use dashboard with statics, payloads, view/share/search reports and more Payload generator Instant email alert on the payload Custom javascript for extra testing Prevent double payloads from saving or alerting Share reports with other ezXSS users Easily manage and view reports in the system Search for reports in no time Secure your system account with extra protection (2FA) The following information is collected on a vulnerable page: The URL of the page IP Address Any page referer (or share referer) The User-Agent All Non-HTTP-Only Cookies Full HTML DOM source of the page Page origin Time of execution its just ez Changelog v3.6 In order to update ezXSS 3.x to 3.6 you need to rename config.ini.example to config.ini and fill in your database information. Your database information is no longer stored in the Database.php. Changelog: Fixed #56, bug on deleting reports on page 2 or up Fixed and added #55, custom send mail from Added config file Renamed some things Fixed some other small bugs [hide][Hidden Content]]
-
SQL injection, Cross-Site scripting and much more Use w3af to identify more than 200 vulnerabilities and reduce your site’s overall risk exposure. Identify vulnerabilities like SQL Injection, Cross-Site Scripting, Guessable credentials, Unhandled application errors and PHP misconfigurations. [Hidden Content]
-
Exploits Mr Blog PHP Cross Site Scripting / SQL Injection
a topic posted 1337day-Exploits in Updated Exploits
Mr Blog PHP suffers from cross site scripting and remote SQL injection vulnerabilities. View the full article -
Exploits WebKit HTMLFrameElementBase::isURLAllowed Universal Cross Site Scripting
a topic posted 1337day-Exploits in Updated Exploits
WebKit suffers from an HTMLFrameElementBase::isURLAllowed universal cross site scripting vulnerability. View the full article -
Exploits waldronmatt FullCalendar-BS4-PHP-MySQL-JSON 1.21 Cross Site Scripting
a topic posted 1337day-Exploits in Updated Exploits
waldronmatt FullCalendar-BS4-PHP-MySQL-JSON version 1.21 suffers from a cross site scripting vulnerability. View the full article -
CWP version 0.9.8.885 suffers from a persistent cross site scripting vulnerability. View the full article
-
Sahi Pro version 8.x suffers from a reflective cross site scripting vulnerability. View the full article
-
Exploits WordPress Sliced Invoices 3.8.2 Cross Site Scripting
a topic posted 1337day-Exploits in Updated Exploits
WordPress Sliced Invoices plugin versions 3.8.2 and below suffer from a cross site scripting vulnerability. View the full article -
Rocket.Chat version 2.1.0 suffers from a cross site scripting vulnerability. View the full article
-
The NASA Online Directives Information System suffers from a cross site scripting vulnerability that can be leveraged via the User-Agent header. The researcher has notified NASA and has not received a response. View the full article
-
Exploits WordPress Popup Builder 3.49 Cross Site Scripting
a topic posted 1337day-Exploits in Updated Exploits
WordPress Popup Builder plugin version 3.49 suffers from a persistent cross site scripting vulnerability. View the full article -
Exploits WordPress Soliloquy Lite 2.5.6 Cross Site Scripting
a topic posted 1337day-Exploits in Updated Exploits
WordPress Soliloquy Lite plugin version 2.5.6 suffers from a persistent cross site scripting vulnerability. View the full article -
Exploits WordPress FooGallery 1.8.12 Cross Site Scripting
a topic posted 1337day-Exploits in Updated Exploits
WordPress FooGallery plugin version 1.8.12 suffers from a persistent cross site scripting vulnerability. View the full article -
Exploits Accounts Accounting 7.02 Cross Site Scripting
a topic posted 1337day-Exploits in Updated Exploits
Accounts Accounting version 7.02 suffers from a persistent cross site scripting vulnerability. View the full article -
Exploits WordPress Broken Link Checker 1.11.8 Cross Site Scripting
a topic posted 1337day-Exploits in Updated Exploits
WordPress Broken Link Check plugin version 1.11.8 suffers from a cross site scripting vulnerability. View the full article -
Exploits OpenProject 10.0.1 / 9.0.3 Cross Site Scripting
a topic posted 1337day-Exploits in Updated Exploits
OpenProject versions 9.0.3 and below and 10.0.1 and below suffer from multiple cross site scripting vulnerabilities. View the full article -
Exploits Express Invoice 7.12 Cross Site Scripting
a topic posted 1337day-Exploits in Updated Exploits
Express Invoice version 7.12 suffers from a persistent cross site scripting vulnerability. View the full article -
Openfire version 4.4.1 suffers from multiple cross site scripting vulnerabilities. View the full article
-
SugarCRM versions 9.0.1 and below suffer from multiple reflective cross site scripting vulnerabilities. View the full article
-
Exploits Intelbras Router WRN150 1.0.18 Cross Site Scripting
a topic posted 1337day-Exploits in Updated Exploits
Intelbras Router WRN150 version 1.0.18 suffers from a persistent cross site scripting vulnerability. View the full article -
Subrion version 4.2.1 suffers from a persistent cross site scripting vulnerability. View the full article
-
Rocket.Chat versions prior to 2.1.0 suffer from a cross site scripting vulnerability. View the full article
-
Exploits WebKit Cached Pages Universal Cross Site Scripting
a topic posted 1337day-Exploits in Updated Exploits
WebKit suffers from a universal cross site scripting vulnerability using cached pages. View the full article -
Exploits WebKit WebCore::command Universal Cross Site Scripting
a topic posted 1337day-Exploits in Updated Exploits
WebKit suffers from a universal cross site scripting vulnerability in WebCore::command. View the full article -
Exploits WebKit URI / Synchronous Page Loads Universal Cross Site Scripting
a topic posted 1337day-Exploits in Updated Exploits
WebKit has an issue where URI and synchronous page loads are susceptible to a universal cross site scripting vulnerability. View the full article
