CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

SQL injection vulnerability in rss.php in 1024 CMS 2.1.1, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the id parameter in a vp action...

6.8CVSS8.8AI score0.00581EPSS

Exploits0References1

seebug.org•added 2014/07/01 12:0 a.m.•21 views

1024 cms 1.3.1 (lfi/sql) Multiple Vulnerabilities

No description provided by source. vuln.: 1024 CMS 1.3.1 LFI/SQL Multiple Vulnerabilities script info and download: http://www.1024cms.com author: irk4zatyahoo.pl greets to: str0ke, wacky '-----------------------------------------------------------------------------' sql-injection: code:...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•12 views

1024 CMS 1.1.0 Beta force_download.php Local File Inclusion

No description provided by source. Exploit Title: 1024 CMS Version 1.1.0 beta/complete-modules/modules/forcedownload/forcedownload.php Local File Inclusion Vulnerability Date: 2011/10/19 Author: Sangyun YOOI2SEC Email: yoosy0302 at naver dot com Software Link: http://1024cms.org/ Version: 1024 CM...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•17 views

1024 CMS <= 1.4.4 - Remote Command Execution with RFI (c99) Exploit

No description provided by source. !/usr/bin/perl 1024 CMS = 1.4.4 Remote Command Execution with RFI c99 Exploit download: http://www.trebledesigns.com/1024cms.zip Author: JosS mail: sys-projectathotmaildotcom site: http://www.hack0wn.com/ team: Spanish Hackers Team - SHT Hack0wn Security Project...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•11 views

1024 CMS <= 1.4.2 - Local File Inclusion / Blind SQL Injection Exploit

No description provided by source. Author: GiReX mySite: girex.altervista.org Date: 13/04/2008 CMS: 1024 CMS = 1.4.1 and 1.4.2 beta Site: 1024cms.com Bug1: Local File Inclusion Need: magicquotesgpc = Off / registerglobals = On Bug2: Cookie Blind SQL Injection Exploit: Admin Hash Retrieve Exploit...

7.1AI score

Exploits0

exploitpack•added 2012/08/22 12:0 a.m.•10 views

1024 CMS 2.1.1 - p SQL Injection

1024 CMS 2.1.1 - p SQL Injection source: https://www.securityfocus.com/bid/55170/info 1024 CMS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...

Exploits0

OpenVAS•added 2011/10/20 12:0 a.m.•13 views

1024 CMS 1.1.0 Beta 'force_download.php' Local File Include Vulnerability

1024 CMS 1.1.0 Beta is prone to a local file-include vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information and to execute arbitrary local scripts in the context of the Web server process...

0.4AI score

Exploits0References3

OpenVAS•added 2011/10/20 12:0 a.m.•17 views

1024 CMS <= 1.1.0 Beta LFI Vulnerability - Active Check

1024 CMS 1.1.0 Beta is prone to a local file include LFI vulnerability because it fails to sufficiently sanitize user-supplied input. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

7AI score

Exploits0References2

exploitpack•added 2011/10/19 12:0 a.m.•13 views

1024 CMS 1.1.0 Beta - force_download.php Local File Inclusion

1024 CMS 1.1.0 Beta - forcedownload.php Local File Inclusion Exploit Title: 1024 CMS Version 1.1.0 beta/complete-modules/modules/forcedownload/forcedownload.php Local File Inclusion Vulnerability Date: 2011/10/19 Author: Sangyun YOOI2SEC Email: yoosy0302 at naver dot com Software Link:...

7.4AI score

Exploits0

Exploit DB•added 2011/10/19 12:0 a.m.•16 views

1024 CMS 1.1.0 Beta - 'force_download.php' Local File Inclusion

Exploit Title: 1024 CMS Version 1.1.0 beta/complete-modules/modules/forcedownload/forcedownload.php Local File Inclusion Vulnerability Date: 2011/10/19 Author: Sangyun YOOI2SEC Email: yoosy0302 at naver dot com Software Link: http://1024cms.org/ Version: 1024 CMS Version 1.1.0 beta Tested on:...

7.4AI score

Exploits0

Packet Storm•added 2011/10/19 12:0 a.m.•27 views

1024 CMS 1.1.0 Beta Local File Inclusion

7.4AI score

Exploits0

0day.today•added 2011/10/18 12:0 a.m.•19 views

1024 CMS 1.1.0 Beta force_download.php Local File Inclusion

Exploit for php platform in category web applications Exploit Title: 1024 CMS Version 1.1.0 beta/complete-modules/modules/forcedownload/forcedownload.php Local File Inclusion Vulnerability Date: 2011/10/19 Author: Sangyun YOOI2SEC Email: yoosy0302 at naver dot com Software Link: http://1024cms.or...

7.1AI score

Exploits0

0day.today•added 2010/09/07 12:0 a.m.•14 views

1024 CMS <= 2.1.1 SQL vulnerability

Exploit for php platform in category web applications Exploit Title: 1024cms 0 mysqlquery"UPDATE ".$prefix."online SET time='".$now."' WHERE ip='".$ip."'" or die"WHOSONLINE::: Cannot update user: ".mysqlerror; else mysqlquery"INSERT INTO ".$prefix."online time, ip, username, location, uid VALUES...

7.1AI score

Exploits0

exploitpack•added 2010/09/07 12:0 a.m.•7 views

1024 CMS 2.1.1 - Blind SQL Injection

1024 CMS 2.1.1 - Blind SQL Injection Exploit Title: 1024cms 2.1.1 Blind SQL Injection Vulnerability Date: 07.09.2010 Author: Stephan Sattler // Solidmedia.de Software Website: http://1024cms.org Software Link: http://d10xg45o6p6dbl.cloudfront.net/projects/f/freecms1024/1024v2.zip or...

0.3AI score

Exploits0

NVD•added 2010/03/24 10:44 p.m.•10 views

CVE-2010-1093

SQL injection vulnerability in rss.php in 1024 CMS 2.1.1, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the id parameter in a vp action...

6.8CVSS8.3AI score0.00581EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by