header-logo
Suggest Exploit
vendor:
Envolution
by:
5.5
CVSS
MEDIUM
Input Validation
CWE
Product Name: Envolution
Affected Version From:
Affected Version To:
Patch Exists: NO
Related CWE:
CPE:
Metasploit:
Other Scripts:
Platforms Tested:

Multiple Input Validation Vulnerabilities in Envolution

The vulnerabilities in Envolution can lead to various consequences, including application compromise, data disclosure or modification, theft of authentication credentials, exploitation of database vulnerabilities, and other attacks.

Mitigation:

Implement proper input validation and sanitization techniques to prevent exploitation of these vulnerabilities.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/15857/info

Envolution is prone to multiple input validation vulnerabilities.

Successful exploitation of these vulnerabilities could result in a compromise of the application, disclosure or modification of data, the theft of cookie-based authentication credentials. They may also permit an attacker to exploit vulnerabilities in the underlying database implementation as well as other attacks. 

http://www.example.com/[envo]/modules.php?op=modload&name=News&file=index&catid=&topic=18&startrow=[xss]

http://www.example.com/[envo]/modules.php?op=modload&name=News&file=index&catid=[xss]

Navigation

Suggest Exploit

Services By CQR