Alberto Cuesta Partida - Security Researcher - Exploit Intelligence Platform

CVE-2008-1917 EXPLOITDB text WRITEUP

AMFPHP 1.2 - Cross-Site Scripting via Class or Location Parameter

Multiple cross-site scripting (XSS) vulnerabilities in AMFPHP 1.2 allow remote attackers to inject arbitrary web script or HTML via the (1) class parameter to (a) methodTable.php, (b) code.php, and (c) details.php in browser/; and the (2) location parameter to browser/code.php. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

View Code

CVE-2008-1917 EXPLOITDB text WRITEUP

AMFPHP 1.2 - Cross-Site Scripting via Class or Location Parameter

Multiple cross-site scripting (XSS) vulnerabilities in AMFPHP 1.2 allow remote attackers to inject arbitrary web script or HTML via the (1) class parameter to (a) methodTable.php, (b) code.php, and (c) details.php in browser/; and the (2) location parameter to browser/code.php. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

View Code

CVE-2008-1917 EXPLOITDB text WRITEUP

AMFPHP 1.2 - Cross-Site Scripting via Class or Location Parameter

Multiple cross-site scripting (XSS) vulnerabilities in AMFPHP 1.2 allow remote attackers to inject arbitrary web script or HTML via the (1) class parameter to (a) methodTable.php, (b) code.php, and (c) details.php in browser/; and the (2) location parameter to browser/code.php. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

View Code

CVE-2008-2030 EXPLOITDB text WORKING POC

F5 FirePass 4100 SSL VPN <6.2 - XSS

Cross-site scripting (XSS) vulnerability in installControl.php3 in F5 FirePass 4100 SSL VPN 5.4.2-5.5.2 and 6.0-6.2 allows remote attackers to inject arbitrary web script or HTML via the query string. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

View Code