Vulnerabilities

Datas from $_POST['updated_data'] inside usersettings.php are not properly validated so we can set user_admin value in database using this input.

1 MIN READ

Vulnerabilities

strip_tags() function doesn't strip incomplete HTML tags.

1 MIN READ

Vulnerabilities

$_REQUEST['key'] is not escaped.

1 MIN READ

Vulnerabilities

Using flv_stream.php file from vendor directory we can download any file.

1 MIN READ

Vulnerabilities

$_GET['name'] is not escaped and then displayed inside pop_editor_view.

1 MIN READ

Vulnerabilities

Items from $_REQUEST['settings'] are not escaped.

3 MIN READ

Vulnerabilities

$_GET['sm'] is not escaped.

1 MIN READ

Vulnerabilities

PHP filter_input() function with FILTER_VALIDATE_URL flag is used to validate url inside savefaq functionality.

1 MIN READ

From 0 to pentesting hero

Why you shouldn't pass variables to assert function in PHP.

02-07-2019

6 MIN READ