osCommerce Addon Customer Testimonials 3.1 - SQL Injection

osCommerce Addon Customer Testimonials 3.1 - SQL Injection osCommerce SQL Injection customertestimonials.php Author: it's my Home page: http://www.antichat.ru Dork: inurl:"customertestimonials.php" Exploit:...

Mozilla Firefox 2.0 - chrome: URI JavaScript File Request Information Disclosure

Mozilla Firefox 2.0 - chrome: URI JavaScript File Request Information Disclosure source: https://www.securityfocus.com/bid/27406/info Mozilla Firefox is prone to an information-disclosure vulnerability because it fails to restrict access to local JavaScript, images and stylesheets files. Attacker...

Mozilla Firefox 2.0 - 'chrome://' URI JavaScript File Request Information Disclosure

source: https://www.securityfocus.com/bid/27406/info Mozilla Firefox is prone to an information-disclosure vulnerability because it fails to restrict access to local JavaScript, images and stylesheets files. Attackers can exploit this issue to gain access to potentially sensitive information that...

Debian Security Advisory DSA 1222-1 (proftpd)

The remote host is missing an update to proftpd announced via advisory DSA 1222-1. Several remote vulnerabilities have been discovered in the proftpd FTP daemon, which may lead to the execution of arbitrary code or denial of service. The Common Vulnerabilities and Exposures project identifies the...

PHPMyRealty 1.0.x - search.php SQL Injection

PHPMyRealty 1.0.x - search.php SQL Injection xaker.name & grabberz.com . . NN NNNN JNNN NNNN. NNN NNNNNNNNNNN NN NN NNN.NNNF .NNNNN NN """4NNN""" NN NN NNNNNN NNNNN NNN NNN NN NN 4NNNN NNNNNN.NNF NNN NN NN JNNNNL NN NNNNNN NNN NN NN JNNNNNN JNN NNNNN JNNF NN NN .NNNF NNN. NNN 4NNN NNN NN NN JNNN...

about: blank windows

Mozilla Firefox 2.0.0.5, Thunderbird 2.0.0.5 and before 1.5.0.13, and SeaMonkey 1.1.3 allows remote attackers to conduct cross-site scripting XSS attacks with chrome privileges via an addon that inserts a 1 javascript: or 2 data: link into an about:blank document loaded by chrome via a the...

about: blank windows

Mozilla Firefox 2.0.0.5, Thunderbird 2.0.0.5 and before 1.5.0.13, and SeaMonkey 1.1.3 allows remote attackers to conduct cross-site scripting XSS attacks with chrome privileges via an addon that inserts a 1 javascript: or 2 data: link into an about:blank document loaded by chrome via a the...

PHP-Nuke addon Nuke Mobile Entartainment LFI Vulnerability

Exploit for unknown platform in category web applications ========================================================== PHP-Nuke addon Nuke Mobile Entartainment LFI Vulnerability ========================================================== Nuke Mobile Entartainment AsbMay's Group ... Vuln. Code :...

PHP-Nuke addon Nuke Mobile Entartainment 1.0 - Local File Inclusion

PHP-Nuke addon Nuke Mobile Entartainment 1.0 - Local File Inclusion Nuke Mobile Entartainment AsbMay's Group ... Vuln. Code : include 'modules/'.$modulename.'compatibility/data/marque.data.php'; ExploiT : path/data/compatible.php?modulename=Local File%00 Greetings 2 : str0ke - Dr.2 - AsbMay's Gro...

Sql injection

SQL injection vulnerability in acrotxt.php in WBB2-Addon: Acrotxt 1 allows remote attackers to execute arbitrary SQL commands via the show parameter...

CVE-2007-4581

SQL injection vulnerability in acrotxt.php in WBB2-Addon: Acrotxt 1 allows remote attackers to execute arbitrary SQL commands via the show parameter...

CVE-2007-4581

SQL injection vulnerability in acrotxt.php in WBB2-Addon: Acrotxt 1 allows remote attackers to execute arbitrary SQL commands via the show parameter...

CVE-2007-4581

CVE-2007-4581 affects WBB2-Addon: Acrotxt 1.0, where acrotxt.php exposes the show parameter to SQL injection. The vulnerability allows remote attackers to execute arbitrary SQL commands through the show parameter, enabling partial confidentiality and integrity impact as per CVSS 2.0 (AV:N/AC:L/Au...

WBB2-Addon: Acrotxt v1 (show) Remote SQL Injection Vulnerability

No description provided by source. Title: WBB2-Addon: Acrotxt v1 show Remote SQL Injection Bug by: D4m14n 11/07/2007 Page: www.damians-world.dl.am // www.team-internet.dl.am Dork: inurl:acrotxt.php wbb SQL-Injection: http://target/path/acrotxt.php?show=SQL Example:...

WBB2-Addon: Acrotxt v1 (show) Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications ================================================================ WBB2-Addon: Acrotxt v1 show Remote SQL Injection Vulnerability ================================================================ Title: WBB2-Addon: Acrotxt v1 show Remote SQL...

WBB2-Addon: Acrotxt 1.0 - show SQL Injection

WBB2-Addon: Acrotxt 1.0 - show SQL Injection Title: WBB2-Addon: Acrotxt v1 show Remote SQL Injection Bug by: D4m14n 11/07/2007 Page: www.damians-world.dl.am // www.team-internet.dl.am Dork: inurl:acrotxt.php wbb SQL-Injection: http://target/path/acrotxt.php?show=SQL Example:...

Mozilla Fizzle addon crossite access

No description provided...

Coppermine Photo Gallery <= 1.2.2b (Nuke Addon) Include Vulnerability

No description provided by source. ----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- Coppermine Photo Gallery v1.2.2b for PHPNUKE THEMEDIR Remote File...

Coppermine Photo Gallery <= 1.2.2b (Nuke Addon) Include Vulnerability

Exploit for unknown platform in category web applications ===================================================================== Coppermine Photo Gallery = 1.2.2b Nuke Addon Include Vulnerability =====================================================================...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the JGS-XA JGS-Gallery Addon 4.0.0 and earlier for Woltlab Burning Board wBB 2.x allow remote attackers to inject arbitrary web script or HTML via the 1 userid parameter in a jgsgalerieslideshow.php and b jgsgaleriescroll.php, and the 2 katid...