My Blog 1.63 BBCode HTML Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/16659/info My Blog is prone to an HTML-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in dynamically generated content. Attacker-supplie...

Simplog <= 0.9.3.1 comments.php Remote SQL Injection Exploit

No description provided by source. !/usr/bin/php ?php / Simplog 0.9.3.1 Remote SQL Injection Vulnerability Note: Requires at least one blog entry to be made prior to injection Usage: php script.php host path user id Usage Example: php script.php domain.com /simplog/ 1 Googledork: intext:Powered b...

PhpBridges Blog System members.php SQL Injection

No description provided by source. Exploit Title: PhpBridges Blog System SQL Injection Vulnerability Date: 18/01/2012 - 04.19 Author: 3spi0n Software Website: https://launchpad.net/phpbridges Tested On: BackTrack 5 - Win7 Ultimate Platform: Php $ Vulnerable File: members.php $ Demo Sites:...

Simple PHP Blog 0.4 preview_cgi.php Multiple Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/15283/info Simple PHP Blog is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to hav...

Simple PHP Blog <= 0.4.0 - Remote Command Execution

No description provided by source. $Id: sphpblogfileupload.rb 9929 2010-07-25 21:37:54Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms ...

blog ink Bypass Setting Vulnerability

No description provided by source...

Gekko Manager FTP Client Stack Buffer Overflow

No description provided by source. $Id: gekkomgrlistreply.rb 11039 2010-11-14 19:03:24Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms ...

Super Simple Blog Script 2.5.4 - Local File Inclusion Vulnerability

No description provided by source. ----------exploit Debut Local File Inclusion Vulnerability ----------Script Info Moi : JIKO Site : No-exploit.Com Email : mm : Moghla9 Ferme Closed ----------Script Info Site:http : http://www.supersimple.org/ Download :...

Webify Blog Arbitrary File Deletion Vulnerability

No description provided by source. !x! Informations: Name : Webify Blog Download : http://www.webify.ws/blog Vulnerability : Delete Arbitrary File Vulnerability Author : JIKOJAWAD Contact : [email protected] Site : No-ExploiT.CoM Is Back Notes : No-ExploiT.CoM Miss !x! Bug: Delete Arbitrary Fil...

betaparticle blog 2.0/3.0 myFiles.asp Unauthenticated File Manipulation

No description provided by source. source: http://www.securityfocus.com/bid/12861/info betaparticle blog is reported prone to multiple vulnerabilities. The following individual issues are reported: It is reported that betaparticle blog fails to sufficiently secure the authentication credential...

Cells Blog CMS 1.1 - Multiple Web Vulnerabilites

No description provided by source. Title: ====== Cells Blog CMS v1.1 - Multiple Web Vulnerabilites Date: ===== 2012-06-05 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=591 VL-ID: ===== 591 Common Vulnerability Scoring System: ==================================== 8.3...

Spidey Blog Script <= 1.5 (tr) Remote SQL Injection Exploit

No description provided by source. !usr/bin/perl Author : gega Google : Spidey Blog Script c v1.5 SpideyBlog 1.5 Sql Injection Exploit Author Mail : gega.tratgmaildotcom Powered by e-hack.org Vulnerability by Asianeagle. Vulnerability Link : http://milw0rm.com/exploits/2186 use LWP::Simple; print...

Burak Yilmaz Blog 1.0 BRY.ASP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/23678/info Burak Yilmaz Blog is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to...

Blog System 1.2 index.php cat Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/15719/info Blog System is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful...

OpenDock Easy Blog <= 1.4 - (doc_directory) File Include Vulnerabilities

No description provided by source. ECHOADV50$2006 ----------------------------------------------------------------------------------------------- ECHOADV50$2006OpenDock Easy Blog =1.4 docdirectory Multiple Remote File Inclusion Vulnerability...

PHP Ticket System Beta 1 (get_all_created_by_user.php, id param) - SQL Injection

No description provided by source. ============================================================== Title ...| PHP Ticket System SQL Injection Version .| BETA1.zip Date ....| 27.02.2014 Found ...| HauntIT Blog Home ....| http://sourceforge.net/projects/phpticketsystem/...

Joomla Component MMS Blog com_mmsblog Local File Inclusion Vulnerability

No description provided by source. ============================================================================================================= o Joomla Component MMS Blog Local File Inclusion Vulnerability Software : commmsblog version 2.3.0 Vendor : http://mms.pipp.no/ Author : AntiSecurity No...

mkportal <= 1.2.1 () Multiple Vulnerabilities

No description provided by source. waraxe-2009-SA070 - Multiple Vulnerabilities in MKPortal = 1.2.1 ============================================================================== Author: Janek Vind waraxe Date: 15. January 2009 Location: Estonia, Tartu Web: http://www.waraxe.us/advisory-70.html...

Light Audio Mixer 1.0.12 - (.wav) Crash PoC

No description provided by source. Exploit Title: Light Audio Mixer Version 1.0.12 .wav - Crash POC Date: 14-07-2013 Exploit Author: ariarat Software Link: http://download.cnet.com/Light-Audio-Mixer/3000-21394-10791607.html Version: 1.0.12 Tested on: Windows XP sp3...

MYRE Realty Manager Multiple Vulnerabilities

No description provided by source. Exploit Title:MYRE Realty Manager Multiple Vulnerabilities Date: 13.10.201 Exploit Author: d3b4g Vendor Homepage:http://myrephp.com Software Link: http://myrephp.com/demo2/ Tested on: Windows 7 Blog: d3b4g.me...