1599 matches found
CVE-2009-0251
CVE-2009-0251 affects Ryneezy phoSheezy 0.2: static code injection in admin.php allows remote authenticated admins to inject PHP into config/footer via the footer parameter. NOTE: exploitation can be chained via CVE-2009-0250, which may enable unauthenticated access to sensitive config data. The ...
CMScout 2.06 SQL Injection / Local File Inclusion
CMScout 2.06 Remote SQL Injection/Local File Inclusion + Discovered By SirGod + Visit : www.mortal-team.org + Visit : www.h4cky0u.org + Greetz : All my friends + Script homepage : http://www.cmscout.co.za/ + Dork : Powered by CMScout c2005 CMScout Group + Remote SQL Injection...
CMScout 2.06 SQL Injection/Local File Inclusion Vulnerabilities
No description provided by source. + CMScout 2.06 Remote SQL Injection/Local File Inclusion + Discovered By SirGod + Visit : www.mortal-team.org + Visit : www.h4cky0u.org + Greetz : All my friends + Script homepage : http://www.cmscout.co.za/ + Dork : Powered by CMScout c2005 CMScout Group + Remo...
CMScout 2.06 - SQL Injection Local File Inclusion
CMScout 2.06 - SQL Injection Local File Inclusion + CMScout 2.06 Remote SQL Injection/Local File Inclusion + Discovered By SirGod + Visit : www.mortal-team.org + Visit : www.h4cky0u.org + Greetz : All my friends + Script homepage : http://www.cmscout.co.za/ + Dork : Powered by CMScout c2005 CMSco...
CVE-2008-5672
Multiple cross-site request forgery CSRF vulnerabilities in PHParanoid before 0.4 allow remote attackers to hijack the authentication of arbitrary users for requests that use 1 admin.php or 2 private messages...
Cross site request forgery (csrf)
Multiple cross-site request forgery CSRF vulnerabilities in PHParanoid before 0.4 allow remote attackers to hijack the authentication of arbitrary users for requests that use 1 admin.php or 2 private messages...
CVE-2008-5672
CVE-2008-5672 pertains to multiple cross-site request forgery (CSRF) vulnerabilities in PHParanoid prior to version 0.4. The issues allow remote attackers to hijack the authentication of arbitrary users for requests that use admin.php or private messages. The provided documents confirm the affect...
CVE-2008-5672
Multiple cross-site request forgery CSRF vulnerabilities in PHParanoid before 0.4 allow remote attackers to hijack the authentication of arbitrary users for requests that use 1 admin.php or 2 private messages...
Aperto Blog 0.1.1 Local File Inclusion / SQL Injection
=========================================================================================================== o Aperto Blog 0.1.1 Local File Inclusion and SQL Injection Vulnerabilities Software : Aperto Blog version 0.1.1 Vendor : http://code.google.com/p/apertoblog/ Download :...
Aperto Blog 0.1.1 Local File Inclusion / SQL Injection Vulnerabilities
No description provided by source. =========================================================================================================== o Aperto Blog 0.1.1 Local File Inclusion and SQL Injection Vulnerabilities Software : Aperto Blog version 0.1.1 Vendor :...
Aperto Blog 0.1.1 - Local File Inclusion SQL Injection
Aperto Blog 0.1.1 - Local File Inclusion SQL Injection =========================================================================================================== o Aperto Blog 0.1.1 Local File Inclusion and SQL Injection Vulnerabilities Software : Aperto Blog version 0.1.1 Vendor :...
Aperto Blog 0.1.1 - Local File Inclusion / SQL Injection
=========================================================================================================== o Aperto Blog 0.1.1 Local File Inclusion and SQL Injection Vulnerabilities Software : Aperto Blog version 0.1.1 Vendor : http://code.google.com/p/apertoblog/ Download :...
Aperto Blog 0.1.1 Local File Inclusion / SQL Injection Vulnerabilities
Exploit for unknown platform in category web applications ====================================================================== Aperto Blog 0.1.1 Local File Inclusion / SQL Injection Vulnerabilities ======================================================================...
Sql injection
SQL injection vulnerability in admin.php in TurnkeyForms Text Link Sales allows remote attackers to execute arbitrary SQL commands via the id parameter...
Sql injection
SQL injection vulnerability in admin.php in E-topbiz Domain Shop 2 allows remote attackers to execute arbitrary SQL commands via the passfromform parameter...
CVE-2008-5486
SQL injection vulnerability in admin.php in TurnkeyForms Text Link Sales allows remote attackers to execute arbitrary SQL commands via the id parameter...
CVE-2008-5486
CVE-2008-5486 describes an SQL injection vulnerability in TurnkeyForms Text Link Sales, specifically in admin.php where the id parameter is vulnerable. Exploitation details are not provided in the connected documents; the vulnerability could allow remote attackers to execute arbitrary SQL command...
CVE-2008-5487
CVE-2008-5487 affects TurnkeyForms Text Link Sales: vulnerable admin.php parameter id enables cross-site scripting (XSS) by injecting arbitrary script/HTML. CVSS 2.0 base score 4.3 (Medium). No remediation details provided in the supplied documents.
CVE-2008-5488
CVE-2008-5488 is a SQL injection in E-topbiz Domain Shop 2, affecting admin.php via the passfromform parameter, allowing remote execution of arbitrary SQL commands. All sources (NVD entries and CVE records) confirm the vulnerability in the admin interface and the potential impact (partial confide...
CVE-2008-5486
SQL injection vulnerability in admin.php in TurnkeyForms Text Link Sales allows remote attackers to execute arbitrary SQL commands via the id parameter...