Lucene search
K

611 matches found

Exploit DB
Exploit DB
added 2007/02/02 12:0 a.m.89 views

F3Site 2.1 - Remote Code Execution

? // //Kacper & str0ke Settings $exploitname = "F3Site = 2.1 Remote Code Execution Exploit"; $scriptname = "F3Site 2.1"; $scriptsite = "http://dhost.info/compmaster/"; $dork = '"Powered by F3Site"'; //to work exploit you need admin session, and cookies prefix // print ' ::::::::: :::::::::: ::: :...

7AI score
Exploits0
seebug.org
seebug.org
added 2007/01/19 12:0 a.m.27 views

phpBP <= RC3 (2.204) (sql/cmd) Remote Code Execution Exploit

No description provided by source. ? // //Kacper & str0ke Settings $exploitname = "phpBP = RC3 2.204 sql/cmd Remote Code Execution Exploit"; $scriptname = "phpBP RC3 2.204"; $scriptsite = "http://www.phpbp.com/"; $dork = 'Silnik strony jest chroniony prawami autorskimi PHP BP Team'; //to work...

7.1AI score
Exploits0
0day.today
0day.today
added 2007/01/18 12:0 a.m.130 views

phpBP <= RC3 (2.204) (sql/cmd) Remote Code Execution Exploit

Exploit for unknown platform in category web applications ============================================================ phpBP = RC3 2.204 sql/cmd Remote Code Execution Exploit ============================================================ ? // //Kacper & str0ke Settings $exploitname = "phpBP = RC3...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2007/01/18 12:0 a.m.27 views

phpBP RC3 (2.204) - SQL Injection Remote Code Execution

phpBP RC3 2.204 - SQL Injection Remote Code Execution ? // //Kacper & str0ke Settings $exploitname = "phpBP = RC3 2.204 sql/cmd Remote Code Execution Exploit"; $scriptname = "phpBP RC3 2.204"; $scriptsite = "http://www.phpbp.com/"; $dork = 'Silnik strony jest chroniony prawami autorskimi PHP BP...

0.2AI score
Exploits0
Exploit DB
Exploit DB
added 2007/01/18 12:0 a.m.44 views

phpBP RC3 (2.204) - SQL Injection / Remote Code Execution

? // //Kacper & str0ke Settings $exploitname = "phpBP = RC3 2.204 sql/cmd Remote Code Execution Exploit"; $scriptname = "phpBP RC3 2.204"; $scriptsite = "http://www.phpbp.com/"; $dork = 'Silnik strony jest chroniony prawami autorskimi PHP BP Team'; //to work exploit you need admin session // prin...

7AI score
Exploits0
NVD
NVD
added 2006/12/18 2:28 a.m.15 views

CVE-2006-6616

index.php in w00t Gallery 1.4.0 allows remote authenticated users with privileges for one installation to gain access to other installations on the same web server, aka "multi-gallery admin session spanning." NOTE: some of these details are obtained from third party information...

6CVSS6.6AI score0.00949EPSS
Exploits0References4
Exploit DB
Exploit DB
added 2006/07/14 12:0 a.m.48 views

Invision Power Board 2.1 &lt; 2.1.6 - SQL Injection (1)

!/usr/bin/perl Invision Power Board v2.1 "r57ipb216gui" ; $mw-geometry '420x550' ; $mw-resizable0,0; $mw-Label-text = '!', -font = 'Webdings 22'-pack; $mw-Label-text = 'Invision Power Board 2.1. 'Verdana 7 bold',-foreground='red'-pack; $mw-Label-text = ''-pack; $fleft=$mw-Frame-pack -side = 'left...

7.4AI score
Exploits0
myhack58
myhack58
added 2006/05/21 12:0 a.m.18 views

session spoofing and password theft probe-vulnerability warning-the black bar safety net

session spoofing article first briefly about the General asp system of the authentication principle. In General, the backend administrator login page enter the account password, the program will take him to submit a user name and password to the database administrator table to find if there is th...

6.9AI score
Exploits0
NVD
NVD
added 2006/02/28 11:2 a.m.20 views

CVE-2006-0922

CubeCart 3.0 through 3.6 does not properly check authorization for an administration session because of a missing auth.inc.php include, which results in an absolute path traversal vulnerability in FileUpload in connector.php aka upload.php that allows remote attackers to upload arbitrary files vi...

5CVSS6.8AI score0.07963EPSS
Exploits0References10
Cvelist
Cvelist
added 2006/02/28 11:0 a.m.24 views

CVE-2006-0922

CubeCart 3.0 through 3.6 does not properly check authorization for an administration session because of a missing auth.inc.php include, which results in an absolute path traversal vulnerability in FileUpload in connector.php aka upload.php that allows remote attackers to upload arbitrary files vi...

6.8AI score0.07963EPSS
Exploits0References10
CVE
CVE
added 2006/02/28 11:0 a.m.56 views

CVE-2006-0922

CubeCart 3.0–3.6 contains an absolute path traversal/arbitrary file upload vulnerability in the admin FileUpload path (connector.php/upload.php) due to a missing auth.inc.php include. An unauthenticated attacker can upload arbitrary files via a modified CurrentFolder in a direct request to admin/...

5CVSS6.8AI score0.07963EPSS
Exploits0References10Affected Software1
Rows per page
Query Builder