MyBulletinBoard (MyBB) 1.2.2 - 'CLIENT-IP' SQL Injection

!/usr/bin/perl LOGO Mybb = 4.1 wwork: blind sql-inj ggoogle: Powered By MyBB coded by Elekt antichat.ru Coments Описание: Работа эксплойта основана на sql-инъекции в HTTPCLIENTIP. Неавторизованный пользователь может...

mybb-exec.txt

!/usr/bin/php escapestring. They don't corrected the function this is a choice ... the bad and they forgot to correct 1 only SQL request. They must correct the problem at the source = if$argc URL: http://www.acid-root.new.fr/ -----------------------------------------------------------------------...

NukeSentinel <= 2.5.06 (mysql >= 4.0.24) Remote SQL Injection Exploit

No description provided by source. !/usr/bin/php = 4.0.24 Exploit --- ----------------------------------------------------------------------- PHP conditions: none CMS conditions: disableswitch URL: http://www.acid-root.new.fr/ ----------------------------------------------------------------------...

NukeSentinel <= 2.5.06 (mysql >= 4.0.24) Remote SQL Injection Exploit

Exploit for unknown platform in category web applications ===================================================================== NukeSentinel = 4.0.24 Remote SQL Injection Exploit ===================================================================== !/usr/bin/php = 4.0.24 Exploit ---...

ContentNow 1.39 (pageid) Remote SQL Injection Exploit

Exploit for unknown platform in category web applications ===================================================== ContentNow 1.39 pageid Remote SQL Injection Exploit ===================================================== !/usr/bin/perl -w use IO::Socket; use strict; ContentNow "pageid" Sql Injection...

X7 Chat 2.0.4 - old_prefix Blind SQL Injection

X7 Chat 2.0.4 - oldprefix Blind SQL Injection !/usr/bin/php -q -d shortopentag=on 126 $result.=" ."; else $result.=" ".$string$i; i...

mambo_46rc1_sql.txt

!/usr/bin/php -q -d shortopentag=on mysqld --log=mambo.txt now login, go to "Submit Weblink" feature, in "Name: " field type: 99999' UNION SELECT IF ASCIISUBSTRINGpassword,1,1=0 & 1, benchmark200000000,CHAR0,0 FROM mosusers WHERE usertype='Super Administrator'/ in mambo.txt we have: 13 Query SELE...

Joomla! 1.0.9 - Weblinks Blind SQL Injection

Joomla! 1.0.9 - Weblinks Blind SQL Injection !/usr/bin/php -q -d shortopentag=on 126 $result.=" ."; else $result.=" ".$string$i; if strlendechexord$string$i==2 $exa.=" ".dechexord$stri...

Mambo <= 4.6rc1 (Weblinks) Blind SQL Injection Exploit

Exploit for unknown platform in category web applications ====================================================== Mambo mysqld --log=mambo.txt now login, go to "Submit Weblink" feature, in "Name: " field type: 99999' UNION SELECT IF ASCIISUBSTRINGpassword,1,1=0 & 1, benchmark200000000,CHAR0,0 FROM...

[Full-disclosure] Apple QuickTimeStreamingServer RTSP Server Vulnerability [MU-200605-02]

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Apple QuickTimeStreamingServer RTSP Server Vulnerability MU-200605-02 May 11, 2006 http://labs.musecurity.com/advisories.html Affected Product / Versions: QuickTimeStreamingServer 5.5 and earlier Product Overview: The Real Time Streaming Protocol RTSP...

AngelineCMS Multiple Vulnerabilities

Summary: --------------------------------------------------- AngelineCMS API C 2003-2004 AngelineCMS developers [email protected] AngelineCMS API is a PHP framework which was developed for rapid development of AngelineCMS content management system. AngelineCMS API is OPEN SOURCE software...

sBlog SQL Injection and Path Disclosure Vulnerability

Summary: Software: sBlog 0.7.2 Site: http://servous.se/ Description: sBlog is a simple and new PHP Blog. Issue: Conducting a security benchmark on this open source software we have found that most of the versions of this software is prone to SQL Injection attack through which an attacker can...

Recommendation:and MYSQL play the time difference between the injection of game-bug warning-the black bar safety net

Herein the main idea is to through the structure of the statement is added to the execution time delay of the function, if we submit the judgment is correct, then the MYSQL query time on the emergence of delay, if the submitted judgment is correct, will not perform the time delay function, the...

mambo4521.php.txt

!/usr/bin/php -q Mambo 4.5.2.1 + mysql 4.1 fetch password hash by pokleyzz fetch password hash by pokleyzz content rating using sub query to select from mosusers Requirement: PHP 4.x with curl extension Description: The problem occur because $userrating variable is not properly sanitize when for...

Mambo 4.5.2.1 - Fetch Password Hash

!/usr/bin/php -q Mambo 4.5.2.1 + mysql 4.1 fetch password hash by pokleyzz fetch password hash by pokleyzz content rating using sub query to select from mosusers Requirement: PHP 4.x with curl extension Description: The problem occur because $userrating variable is not properly sanitize when for...

CVE-2004-2524

clogin.php in Benchmark Designs' WHM AutoPilot 2.4.5 and earlier allows remote attackers to obtain plaintext username and password credentials by using the clogine and base64encode functions to encode the desired user ID in the c parameter, then read the plaintext values in the resulting form...

benchmark tool for HTTP pages.

ezhttpbench.php eZ httpbench version 1.1http://developer.ez.no - benchmark tool for HTTP pages. A security vulnerability in the product allows remote attackers to download any file on the local system that the eZ httpbench has read access to. Vulnerable systems: eZ httpbench version 1.1 eZ...

macos.x.server.cgi.txt

Date: Thu, 3 Jun 1999 19:35:58 +0200 From: Juergen Schmidt To: [email protected] Subject: MacOS X system panic with CGI Hello all, when doing performance tests with different web servers, I found, that MacOS X Server running apache crashed under medium load, when I was calling CGI-scripts. It...