WordPress Plugin PureHTML 1.0.0 - SQL Injection

WordPress Plugin PureHTML 1.0.0 - SQL Injection Exploit Title: WordPress PureHTML plugin 1,BENCHMARK5000000,MD5CHAR115,113,108,109,97,112,0--%20 --------------- Vulnerable code --------------- if!isset$POST'PureHTMLNOnce' if !wpverifynonce $POST'PureHTMLNOnce', pluginbasenameFILE...

WordPress Plugin Advertizer 1.0 - SQL Injection

Exploit Title: WordPress Advertizer plugin 1,BENCHMARK5000000,MD5CHAR115,113,108,109,97,112,0--%20 --------------- Vulnerable code --------------- $res = $wpdb-getrow"SELECT limitclicks, traceclicks FROM ".$wpdb-prefix."advvbase WHERE id = '".$POSTid."' limit 1;";...

WordPress Profiles 2.0 RC1 SQL Injection

Exploit Title: WordPress Profiles plugin 1,BENCHMARK5000000,MD5CHAR115,113,108,109,97,112,0--%20 --------------- Vulnerable code --------------- $query = "SELECT FROM ".$wpdb-prefix."bios WHERE id='$GETid'"; ... $result = mysqlquery$query;...

WordPress Plugin MM Duplicate 1.2 - SQL Injection

Exploit Title: WordPress MM Duplicate plugin 1,BENCHMARK5000000,MD5CHAR115,113,108,109,97,112,0 --------------- Vulnerable code --------------- class mmduplicatepagesposts ... function mmduplicatepagesposts ... addaction'init', array&$this, 'dup'; ... function dup if$GET'duplicate' $id =...

WordPress Plugin Ajax Gallery 3.0 - SQL Injection

WordPress Plugin Ajax Gallery 3.0 - SQL Injection Exploit Title: WordPress Ajax Gallery plugin 1,BENCHMARK5000000,MD5CHAR115,113,108,109,97,112,0 --------------- Vulnerable code --------------- if isset $GET 'delete' && isset $GET'gId' $wpdb-query "DELETE FROM $wpdb-options WHERE...

WordPress Plugin Allow PHP in Posts and Pages 2.0.0.RC1 - SQL Injection

WordPress Plugin Allow PHP in Posts and Pages 2.0.0.RC1 - SQL Injection Exploit Title: WordPress Allow PHP in Posts and Pages plugin 1,BENCHMARK5000000,MD5CHAR115,113,108,109,97,112,0 --------------- Vulnerable code --------------- if!isset$POST'allowPHPNonce' if !wpverifynonce...

WordPress Plugin Allow PHP in Posts and Pages 2.0.0.RC1 - SQL Injection

Exploit Title: WordPress Allow PHP in Posts and Pages plugin 1,BENCHMARK5000000,MD5CHAR115,113,108,109,97,112,0 --------------- Vulnerable code --------------- if!isset$POST'allowPHPNonce' if !wpverifynonce $POST'allowPHPNonce', pluginbasenameFILE header"location:".$refer; else...

Joomla 1.5 VirtueMart 1.1.7 Blind SQL Injection

Exploit Title: Joomla 1.5 comvirtuemart 'Joomla 1.5 VirtueMart Component %q A vulnerability was discovered by Rocco Calvi and Steve Seeley which identifies unauthenticated time-based blind SQL injection in the "page" variable of the virtuemart component. This vulnerability allows an attacker to...

Joomla 1.5 com_virtuemart <= 1.1.7 Blind time-based SQL Injection (MSF)

No description provided by source. Exploit Title: Joomla 1.5 comvirtuemart = 1.1.7 blind time-based sql injection MSF module Date: Thu Jul 28, 2011 Author: TecR0c - tecr0c.mythsec @ gmail.com Version: = 1.1.7 Download: http://dev.virtuemart.net/projects/virtuemart/files Greetz: mythsec team, Jame...

Joomla! Component com_virtuemart 1.1.7/1.5 - Blind SQL Injection (Metasploit)

Exploit Title: Joomla 1.5 comvirtuemart 'Joomla 1.5 VirtueMart Component %q A vulnerability was discovered by Rocco Calvi and Steve Seeley which identifies unauthenticated time-based blind SQL injection in the "page" variable of the virtuemart component. This vulnerability allows an attacker to...

mysql-audit NSE Script

Audits MySQL database server security configuration against parts of the CIS MySQL v1.0.2 benchmark the engine can be used for other MySQL audits by creating appropriate audit files. Script Arguments mysql-audit.password the password with which to connect to the database mysql-audit.username the...

Joomla! Component com_virtuemart 1.1.7 - Blind SQL Injection

Joomla! Component comvirtuemart 1.1.7 - Blind SQL Injection !/usr/bin/python Joomla! comvirtuemart 46 million results Patch: http://dev.virtuemart.net/attachments/202/Patch-VirtueMart-1.1.7a.zip References: - http://www.stratsec.net/Research/Advisories/VirtueMart-SQL-Injection-SS-2011-003 -...

Ускоритель MySQL-inj

Если данный способ уже где-то описан - прошу кинуть ссылочки. Метод был существенно доработан - читай мой пост ниже! Хочу рассказать вам о новой может я что-то пропустил? технике вывода данных при MySQL injection. Дело в том, что очень неудобно когда при наличии уязвимости в результате мы можем...

PHP168 V6. 01/6. 0 2 elevation of privilege and storm the local path vulnerability-vulnerability warning-the black bar safety net

PHP168 whole Station is the PHP field of the current most powerful build system, The code is all open source, can be extremely convenient for secondary development, all modules can be freely installed and removed, individual users completely free to use PHPCMS V6. 0 1 There is a serious security...

Joomla! Component com_billyportfolio 1.1.2 - Blind SQL Injection

Joomla! Component combillyportfolio 1.1.2 - Blind SQL Injection Exploit Title: Joomla Component Billy Portfolio 1.1.2 Blind SQL Injection Date: 10 Dec 2010 Author: jdc Software Link: http://extensions.joomla.org/extensions/directory-a-documentation/portfolio/14834 Version: 1.1.2...

Joomla Billy Portfolio 1.1.2 Blind SQL Injection

Exploit Title: Joomla Component Billy Portfolio 1.1.2 Blind SQL Injection Date: 10 Dec 2010 Author: jdc Software Link: http://extensions.joomla.org/extensions/directory-a-documentation/portfolio/14834 Version: 1.1.2 index.php?option=combillyportfolio&view=billyportfolio&catid=-1 and...

Aprox CMS Engine 6 Path Disclosure / SQL Injection

Exploit Title: Aprox CMS Engine V6 Multiple Vulnerabilities Date: 03.10.2010 Author: Stephan Sattler // http://www.solidmedia.de Software Website: http://www.aprox.de/ Software Link: http://www.aprox.de/index.php?page=d&application=zip&dateiname=AproxEnginev6 Version: 6 Vulnerability 1 Vulnerable...

LightNEasy CMS 3.2.1 Blind SQL Injection

Exploit Title: LightNEasy Cms 3.2.1 Blind SQL Injection Vulnerability Date: 20.09.2010 Author: Stephan Sattler // Solidmedia.de Software Website: http://www.lightneasy.org/ Software Link: http://www.lightneasy.org/addons/downloads/send.php?dlid=127 Version: 3.2.1 Special Thanks to: Dominik...

LightNEasy Cms 3.2.1 Blind SQL Injection Vulnerability

Exploit for php platform in category web applications ====================================================== LightNEasy Cms 3.2.1 Blind SQL Injection Vulnerability ====================================================== Exploit Title: LightNEasy Cms 3.2.1 Blind SQL Injection Vulnerability Date:...

VWD-CMS CSRF Vulnerability

Exploit for asp platform in category web applications ========================== VWD-CMS CSRF Vulnerability ========================== Exploit Title: LightNEasy Cms 3.2.1 Blind SQL Injection Vulnerability Date: 20.09.2010 Author: Stephan Sattler // Solidmedia.de Software Website:...