joseph sheridan (17 exploits) - page 1 - Code Exploits Collection

Title	Author	Platform	Source	Description	Date
Hornbill Supportworks ITSM 1.0.0 - SQL Injection Vulnerability	Joseph Sheridan	php	exploit-db.com	Summary SQL Injection Vulnerability in ITSM component of Hornbill Supportworks Application CVE number: CVE-2013-2594 Impact: High Vendor homepage: http://www.hornbill.com Vendor notified: 19/11/2012 Vendor response: This issue has reportedly been fixe	April 25
Hornbill Supportworks ITSM 1.0.0 SQL Injection	Joseph Sheridan	na	reactionpenetrationtesting.co.uk	Hornbill Supportworks ITSM version 1.0.0 suffers from a remote SQL injection vulnerability.	April 24
Forescout NAC 6.3.4.1 XSS / Redirection / Filter	Joseph Sheridan	na	reactionpenetrationtesting.co.uk	Forescout NAC (Network Access Control) version 6.3.4.1 suffers from ICMP and ARP protocols not being filtered, cross site scripting, and cross site redirection vulnerabilities.	November 27
Layton Helpbox 4.4.0 Password Disclosure	Joseph Sheridan	na	reactionpenetrationtesting.co.uk	Layton Helpbox version 4.4.0 discloses login and password information for the database in an error page.	October 26
Layton Helpbox 4.4.0 SQL Injection	Joseph Sheridan	na	reactionpenetrationtesting.co.uk	Layton Helpbox version 4.4.0 suffers from multiple remote SQL injection vulnerabilities.	October 26
Layton Helpbox 4.4.0 Authorization Bypass	Joseph Sheridan	na	reactionpenetrationtesting.co.uk	Layton Helpbox version 4.4.0 suffers from an authorization bypass vulnerability.	October 26
Layton Helpbox 4.4.0 Login Bypass	Joseph Sheridan	na	reactionpenetrationtesting.co.uk	Layton Helpbox version 4.4.0 suffers from login bypass vulnerabilities due to improper cookie design.	October 26
Layton Helpbox 4.4.0 Cross Site Scripting	Joseph Sheridan	na	reactionpenetrationtesting.co.uk	Layton Helpbox version 4.4.0 suffers from a reflective cross site scripting vulnerability.	October 26
Layton Helpbox 4.4.0 Stored Cross Site Scripting	Joseph Sheridan	na	reactionpenetrationtesting.co.uk	Layton Helpbox version 4.4.0 suffers from embedded cross site scripting vulnerabilities.	October 26
Microcart 1.0 Checkout Cross Site Scripting	Joseph Sheridan	na	Chris Cooper	Microcart version 1.0 Checkout suffers from multiple cross site scripting vulnerabilities.	September 20
WordPress MF Gig Calendar 0.9.2 Cross Site Scripting	Joseph Sheridan	na	Chris Cooper	WordPress MF Gig Calendar plugin version 0.9.2 suffers from a cross site scripting vulnerability.	September 20
Microcart 1.0 Cross Site Scripting	Joseph Sheridan	na	Chris Cooper	The administrative directory of Microcart version 1.0 suffers from a cross site scripting vulnerability.	September 20
Wordpress Download Monitor 3.3.5.7 Cross Site Scripting	Joseph Sheridan	na	Chris Cooper	Wordpress Download Monitor version 3.3.5.7 suffers from a cross site scripting vulnerability.	September 11
Group-Office Calendar 4.0.88 SQL Injection	Joseph Sheridan	na	Chris Cooper	Group-Office Calendar versions 4.0.71, 4.0.73, and 4.0.88 suffer from a remote SQL injection vulnerability.	September 3
GIMP 2.8.0 FIT File Format DoS	Joseph Sheridan	multiple	exploit-db.com	Summary = There is a file handling DoS in GIMP (the GNU Image Manipulation Program) for the 'fit' file format affecting all versions (Windows and Linux) up to and including 2.8.0. A file in the fit format with a malformed 'XTENSION' header will cause a crash in the GIMP program. CV	June 30

Older posts >>