24 matches found
EUVD-2006-6174
Malware in sbrugna...
CVE-2009-4825
8pixel.net Blog 4 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for AppData/sb.mdb...
CVE-2009-4825
8pixel.net Blog 4 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for AppData/sb.mdb...
CVE-2009-4825
The CVE-2009-4825 entry relates to 8pixel.net Blog 4, where sensitive data is stored under the web root with insufficient access control, enabling remote retrieval of a database via a direct request for App_Data/sb.mdb. The incident is described as a direct file download vulnerability (no exploit...
ASP Simple Blog version 3.0 Upload shell Vulnerability
Exploit for unknown platform in category web applications ====================================================== ASP Simple Blog version 3.0 Upload shell Vulnerability ======================================================...
ASP Simple Blog version 3.0 Upload shell Vulnerability
No description provided by source. ======================================================================================== | Title : ASP Simple Blog version 3.0 Upload shell Vulnerability | | Author : indoushka | | email : [email protected] | | Home : Souk Naamane - 04325 - Oum El Bouaghi -...
8pixel.net 2009 Database Disclosure
============================================================================== / \ | | | | / \ | | | | / \ | | | | / \ | || | / \ | | | | / \ | | // \ || || // \ || || ============================================================================== � Note : Forever RevengeHack.Com...
8Pixel.net 2009. - Database Disclosure
8Pixel.net 2009. - Database Disclosure ============================================================================== / \ | | | | / \ | | | | / \ | | | | / \ | || | / \ | | | | / \ | | // \ || || // \ || || ============================================================================== Note :...
8Pixel.net 2009. - Database Disclosure
============================================================================== / \ | | | | / \ | | | | / \ | | | | / \ | || | / \ | | | | / \ | | // \ || || // \ || || ============================================================================== Note : Forever RevengeHack.Com...
8pixel.net 2009. Database Disclosure Vulnerability
Exploit for unknown platform in category web applications ================================================== 8pixel.net 2009. Database Disclosure Vulnerability ================================================== ==============================================================================...
SimpleBlog 3.0 (simpleBlog.mdb) Database Disclosure Vulnerability
Exploit for unknown platform in category web applications ================================================================= SimpleBlog 3.0 simpleBlog.mdb Database Disclosure Vulnerability ================================================================= » SimpleBlog 3.0 Mdb Vulnerability » »...
8Pixel.net SimpleBlog ID SQL注入漏洞
Simple Blog是一款基于PHP的网络日记程序。 Simple Blog不正确过滤用户提交的URI数据,远程攻击者可以利用漏洞进行SQL注入攻击获得敏感信息。 问题是由于'default.asp'脚本对用户提交的"id"参数缺少过滤,提交恶意SQL查询作为参数数据,可更改原来的SQL逻辑,获得敏感信息。 8pixel.net Simple Blog 2.3 http://www.8pixel.net/...
CVE-2006-6191
SQL injection vulnerability in admin/edit.asp in 8pixel.net simpleblog 2.3 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter...
CVE-2006-6192
Unspecified scripts in the admin directory in 8pixel.net SimpleBlog 3.0 and earlier do not properly perform authentication, which allows remote attackers to add users and perform certain other unauthorized privileged actions. NOTE: The provenance of this information is unknown; the details are...
CVE-2006-6191
CVE-2006-6191 affects 8pixel.net SimpleBlog prior to or including version 2.3. The vulnerability is an SQL injection in admin/edit.asp via the id parameter, allowing remote attackers to execute arbitrary SQL commands. The NVD entry corroborates a possible high-severity impact with base score 7.5 ...
CVE-2006-6191
SQL injection vulnerability in admin/edit.asp in 8pixel.net simpleblog 2.3 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter...
SimpleBlog 2.3 - adminedit.asp SQL Injection
SimpleBlog 2.3 - adminedit.asp SQL Injection Title : simpleblog = v 2.3 /admin/edit.asp Remote SQL Injection Vulnerability Author : bolivar Dork : "SimpleBlog 2.3 by 8pixel.net" ---------------------------------------------------------------------------...
SimpleBlog 2.3 - '/admin/edit.asp' SQL Injection
Title : simpleblog = v 2.3 /admin/edit.asp Remote SQL Injection Vulnerability Author : bolivar Dork : "SimpleBlog 2.3 by 8pixel.net" ---------------------------------------------------------------------------...
CVE-2006-4592
The CVE-2006-4592 entry concerns the 8pixel.net Simple Blog 2.3 and earlier . The vulnerability is an incomplete blacklist allowing SQL injection via the id parameter in default.asp where ">" characters bypass protection. This enables remote attackers to perform SQL injection. References indic...
CVE-2006-4592
Incomplete blacklist vulnerability in default.asp in 8pixel.net Simple Blog 2.3 and earlier allows remote attackers to conduct SQL injection attacks via "" characters in the id parameter, which are not filtered by the protection mechanism...