Joomla com_aicontactsafe Arbitrary Attachment Download - 08.06.2017
Everyone can download arbitrary attachment, but website must have including field with attachments.
Scripts and Vulnerabilities discovered by Dawid Morawski.
Everyone can download arbitrary attachment, but website must have including field with attachments.
“OLX phone number extractor” - Script check every page one by one and save phone number to .txt
“Facebook Fanpage Maker” Selenium Webdriver Automation - script example
“Facebook status poster” Selenium Webdriver Automation test - simple example
An attacker can exploit this vulnerability to read from the database. The parameters ‘keywords’ and ‘token’ are vulnerable.
Authentication bypass should give you access to the admin area.
Authentication bypass should give you access to the admin area.
An attacker can exploit this vulnerability to read from the database. The parameter ‘id’ is vulnerable.
An attacker can exploit this vulnerability to read from the database. The parameter ‘id’ is vulnerable.