phpmyfamily is a dynamic genealogy website builder which allows geographically dispersed family members to maintain a central database of research which is readily accessable and editable. By having a central repository, family members can contribute as and when information becomes available without requiring them to send it to a central 'custodian', or disseminate via email, and allows anecdotal information and possible leads to be shared. The vulnerabilities include directory listing and cookie info disclosure, as well as cross-site scripting (XSS) vulnerabilities.
This CMS has an authentication bypass vulnerability with SQL Injection in the login page. The user_name and password parameters received from the login form are passed to the do_login function, where they are then passed to the get_account_information function without any validation. These parameters are directly applied in an SQL query, allowing an attacker to bypass authentication and potentially gain unauthorized access.
A vulnerability in Abysssec inc (abysssec.com) JSP allows attackers to execute arbitrary commands with administrator privileges. This is done by uploading a file with abysssec.jsp and executing the command. This vulnerability was discovered by abysssec.com.
JE CMS 1.0.0 is vulnerable to bypass authentication by SQL injection. In administrator/login.php page, lines 16-20, userLogin() function is in administrator/library/functions.php. In lines 129-139, the username and password are not properly sanitized before being used in a SQL query. This can be exploited to bypass authentication by entering a specially crafted username and password. In administrator/index.php file line 12, $userid is not properly sanitized before being used in a SQL query. This can be exploited to inject arbitrary SQL commands.
The VWD-CMS have CSRF Vulnerability in order to remove any Role especially Admins Role. With this Vulnerability, an attacker can navigate the admin to visit a malicious site (when he is already logged in) to remove a role. The malicious site contains an HTML file with AJAX code and a GET method for this operation, which is enough to make the admin meet it.
Vulnerability is located in content.asp line 131-133 and content.asp line 202-206. PoC: www.site.com/main_fa.asp?status=news&newsID=23'/**/union/**/all/**/select/**/1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16/**/from/**/dc_admin/*. Bypass uploads restriction: js file line 13-34.
This CMS has many critical vulnerabilities, including SQL Injection and Local File Inclusion (LFI). For SQL Injection, the proof of concept is to use the username and password 'admin' or '1'='1' in the admin.php page. For LFI, the proof of concept is to use the URL http://localhost/festos/index.php?theme=../admin/css/admin.css%00 in various pages such as artists.php, contacts.php, applications.php, entertainers.php, exhibitors.php, and foodvendors.php.
DynPage allows you to edit Websites online and make pieces of contents editable with a comfortable editor. DynPage implements the CKeditor - one of the best Internet editors. The integration of content into the HTML pages can be done with Ajax/Javascript or PHP - so you can also handle cross domain sites. DynPage is written in PHP and does not require MySQL database. It's easy to install and to configurate. Local File Disclosure vulnerability exists due to insufficient validation of user-supplied input in the 'file' parameter of '/content/dynpage_load.php' script. This can be exploited to disclose sensitive information from arbitrary files via a direct request. Admin hash Disclosure vulnerability exists due to the default password is admin,that stored in config_global.inc.php(line 41-42 ) and the hash password stored as SESSION in /conf/init.inc.php.
InterPhoto Image Gallery is an open-source, simple-using, advanced, professional multi-users' image website System,and it can primely protect the images of your site. InterPhoto can be used to build all kinds of sites which lay out images mainly, such as: design, fashion, exhibition, photograph, painting sites and so on. InterPhoto allows register users uploading Images. InterPhoto's User can upload php webshell with this way: login in the user mode,go to 'Publish Image'. select file for upload, write other field Required and submit. By Tamper Data tools (webscarab, Paros ,...) Trap Request. and change 'Content-Type' field's value to 'image/jpeg'.
This CMS have many critical vulnerability that we refer to some of those here: 1. CSRF - Add Admin Account: An attacker can craft a malicious HTML page that contains a form with hidden inputs. When the victim visits the page, the form is automatically submitted, creating a new admin account. 2. LFI (Local File Inclusion): An attacker can exploit this vulnerability by sending a crafted HTTP request containing directory traversal characters (e.g. ../../). This allows the attacker to include and execute arbitrary local files on the server.
Services By CQR