EUVD-2006-0357

Malware in sbrugna...

Simple Forum-Discussion System SQL Injection Vulnerability

Simple Forum-Discussion System is a simple forum/discussion system. SQL injection vulnerability exists in Simple Forum-Discussion System, which originates in various components such as manage topic.php, manage user.php and ajax.php. Lack of validation of externally entered SQL statements. An...

vinland.as XSS vulnerability

Vulnerable URL: http://www.vinland.as/topic.php?Name=OmOss" Details: Description| Value ---|--- Patched:| No Latest check for patch:| 27.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated VIP website status:| No Check vinland.as SSL...

WeCenter SQL注射（ROOT SHELL）

简要描述： WeCenter SQL注射（ROOT SHELL） 详细说明： ajax.php： public function questionlistaction if $GET'featureid' if $topicids = $this-model'feature'-gettopicsbyfeatureid$GET'featureid' $GET'topicid' = implode',', $topicids; switch $GET'type' case 'best': $actionlist =...

camera life 2.6.2b4 (sql/xss) Multiple Vulnerabilities

No description provided by source. Cameralife 2.6.2b4 SQL/XSS Multiple Remote Vulnerabilities Script:Cameralife 2.6.2b4 Download:http://nchc.dl.sourceforge.net/sourceforge/fdcl/cameralife-2.6.2b4.zip Author:BackDoor Bug 1;album.php Remote SQL Injection Vulnerability...

Code injection

ar web content manager AWCM 2.2 does not restrict the number of comment records that can be submitted through HTTP requests, which allows remote attackers to cause a denial of service disk consumption via the coment parameter to 1 showvideo.php or 2 topic.php...

SiteGenius - Blind SQL Injection

SiteGenius - Blind SQL Injection ===================================================== SiteGenius Blind SQL injection vulnerability ===================================================== Exploit title : SiteGenius Blind SQL injection vulnerability Date : 02 \ 08 \ 2011 Author : AutoRUN & dR.sqL Ho...

SiteGenius Blind SQL injection Vulnerability

Exploit for php platform in category web applications ===================================================== SiteGenius Blind SQL injection vulnerability ===================================================== Exploit title : SiteGenius Blind SQL injection vulnerability Date : 02 \ 08 \ 2011 Author ...

Zomorrod Cms Sql Injection Vulnerability

Exploit for php platform in category web applications ======================================== Zomorrod Cms Sql Injection Vulnerability ======================================== Application Info: Name: Zomorrod Cms Vendor: http://www.zomorrod.net Vulnerability:...

CVE-2008-6087

CVE-2008-6087 describes a cross-site scripting (XSS) vulnerability in the Camera Life application, specifically in topic.php of version 2.6.2b4, exploitable via the name parameter. The vulnerability allows remote attackers to inject arbitrary web script or HTML. The provided connected documents c...

Camera Life 2.6.2b4 - SQL Injection / Cross-Site Scripting

Cameralife 2.6.2b4 SQL/XSS Multiple Remote Vulnerabilities Script:Cameralife 2.6.2b4 Download:http://nchc.dl.sourceforge.net/sourceforge/fdcl/cameralife-2.6.2b4.zip Author:BackDoor Bug 1;album.php Remote SQL Injection Vulnerability...

Vikingboard 0.1.2 - 'topic.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/25056/info Vikingboard is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting this issue could allow an attacker to steal cookie-based authentication credentials and to launch oth...

vikingMultiple.txt

================================================ :: Vikingboard 0.1b Multiple Vulnerabilities :: ================================================ Software : Vikingboard Website : http://www.vikingboard.com/ Discover : Hessam-x / www.hessamx.net I. Cross Site Scripting Vulnerabilities...

CVE-2006-4709

SQL injection vulnerability in topic.php in Vikingboard 0.1b allows remote attackers to execute arbitrary SQL commands via the s parameter...

CVE-2006-4709

The CVE-2006-4709 entry concerns a SQL injection vulnerability in topic.php of Vikingboard 0.1b, exploitable via the s parameter to allow remote execution of arbitrary SQL commands. Related connected records confirm Vikingboard 0.1b as the affected product and topic.php as the vulnerable componen...

Vikingboard 0.1b Multiple Vulnerabilities

================================================ :: Vikingboard 0.1b Multiple Vulnerabilities :: ================================================ Software : Vikingboard Website : http://www.vikingboard.com/ Discover : Hessam-x / www.hessamx.net I. Cross Site Scripting Vulnerabilities...

CVE-2006-0350

Cross-site scripting XSS vulnerability in eggblog 2.0 allow remote attackers to inject arbitrary web script or HTML via the message field to topic.php...

CVE-2006-0350

The CVE-2006-0350 entry concerns an XSS vulnerability in eggblog 2.0. The flaw allows remote attackers to inject arbitrary Web script or HTML via the message field to topic.php. NVD records a base score of 4.3 (MEDIUM) with network attack vector, no confidentiality or availability impact, and par...

CVE-2005-3872

The CVE-2005-3872 entries describe multiple SQL injection vulnerabilities in Ugroup 2.6.2 and earlier. The flaws allow remote attackers to execute arbitrary SQL commands through parameters in forum.php (FORUM_ID) and topic.php (TOPIC_ID, FORUM_ID, CAT_ID). Affected software: Ugroup 2.6.2 and earl...

Ugroup 2.6.2 SQL inj. vuln.

Ugroup 2.6.2 SQL inj. vuln. Vuln. dicovered by : r0t Date: 28 nov. 2005 Orginal advisory:http://pridels.blogspot.com/2005/11/ugroup-262-sql-inj-vuln.html Vendor:http://www.realsoftstudio.com/Ugroup/ affected version:2.6.2 and prior Product Description: A Software discussion platform written in PH...