893 matches found
Clever Copy 3.0 - Admin Auth Details / SQL Injection
this works with magicquotesgpc = Off usage: launch from Apache, fill in requested fields, then go! Sun-Tzu: "While heading the profit of my counsel, avail yourself also of any helpful circumstances over and beyond the ordinary rules" errorreporting0; iniset"maxexecutiontime",0;...
paFaq10beta4.txt
GulfTech Security Research June 20th, 2005 Vendor : php Arena URL : http://www.phparena.net/pafaq.php Version : paFAQ 1.0 Beta 4 Risk : Multiple Vulnerabilities Description: paFAQ is a FAQ/Knowledge base system that allows webmasters to keep an organized database of Frequently Asked Questions; a...
e107 v0.617 several new and old vulnerabilities
Hello, The e107 is an open-source, PHP and SQL based portal and content management system1. I found some new vulnerabilities in the current release v0.617. Also some "older" flaws2 has been re-discovered in different ways. This email has been sent some months ago to the e107 developers. They fixe...
Exploti...
Try to ad thix exploit to Your files... ACNews 1.0 = Admin Authentication Bypass SQL Injection http://www.google.com/search?hl=en&lr=&q=acnews+1.0+login.asp&btnG=Search /str0ke Product:ACNews version :1.0 VULNERABILITY CLASS: SQL injection exploit Log in with username:' or 'x'='x password :' or...
ACNews <= 1.0 Admin Authentication Bypass SQL Injection Exploit
Exploit for unknown platform in category web applications =============================================================== ACNews = 1.0 Admin Authentication Bypass SQL Injection Exploit ===============================================================...
Aztek Forum myadmin.php Admin Authentication Bypass
Binary data 2679.prm...
TrueGalerie admin.php loggedin Parameter Admin Authentication Bypass
Binary data 1548.prm...
Mensajeitor Tag Board Admin Bypass
The remote host is running Mensajeitor Tag Board. According to its banner, the remote version of Mensajeitor has a security bypass vulnerability. Admin authentication can be bypassed by passing a value 'si' to the 'AdminNick' parameter. A remote attacker could exploit this issue to post messages...
PHP-Nuke 6.9 - cid SQL Injection
PHP-Nuke 6.9 - cid SQL Injection !/usr/bin/perl -w use IO::Socket; THIS CODE PUBLIC NOW = \ \ / | \ | / | / / \ | | \ | /\ \ / || /// | / / / / based on 'cid' sql injection vuln in Download module, more info about this vuln u can see here: http://rst.void.ru/texts/advisory10.htm work only on...
CVE-2003-0883
The System Preferences capability in Mac OS X before 10.3 allows local users to access secure Preference Panes for a short period after an administrator has authenticated to the system...
CVE-2003-0883
The System Preferences capability in Mac OS X before 10.3 allows local users to access secure Preference Panes for a short period after an administrator has authenticated to the system...
popper_mod 1.2.1 and previous accounts compromise
description: poppermod is a free, full featured web based POP3 email client written in PHP. It is an extension of the now abandoned "popper" project. It can be downloaded from http://www.symatec-computer.com/forums/ bug report: poppermod 1.2.1 relied on administrators using htaccess authenticatio...
Windows Azure Pack: Admin Authentication Site
Windows Azure Pack: Admin Authentication Site...