Joomla Photo Blog alpha 3 - alpha 3a SQL Injection

No description provided by source. / Joomla Component comphotoblog SQL injection vulnerability - category Author : kaMtiEz [email protected] Homepage : http://www.indonesiancoder.com Date : October 12, 2009 Tune In : http://antisecradio.fm choose your weapon / Software Information + Vendor :...

Joomla Photo Blog SQL Injection

/ Joomla Component comphotoblog SQL injection vulnerability - category Author : kaMtiEz [email protected] Homepage : http://www.indonesiancoder.com Date : October 12, 2009 Tune In : http://antisecradio.fm choose your weapon / Software Information + Vendor : http://webguerilla.net/ + Download :...

Joomla Photo Blog alpha 3 - alpha 3a SQL Injection

Exploit for unknown platform in category web applications ================================================== Joomla Photo Blog alpha 3 - alpha 3a SQL Injection ================================================== / Joomla Component comphotoblog SQL injection vulnerability - category Author : kaMtiE...

BLOB Blog System 'postid' Parameter XSS Vulnerability

This host is running BLOB Blog System and is prone to Cross-Site Scripting vulnerability. OpenVAS Vulnerability Test $Id: gbblobblogsystempostidxssvuln.nasl 4865 2016-12-28 16:16:43Z teissa $ BLOB Blog System 'postid' Parameter XSS Vulnerability Authors: Nikita MR Copyright: Copyright c 2009...

BLOB Blog System Version Detection

This script detects the installed version of BLOB Blog System. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

BLOB Blog System 'postid' Parameter XSS Vulnerability

BLOB Blog System is prone to a Cross-Site Scripting vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2009-3718

SQL injection vulnerability in admin/authenticate.asp in Battle Blog 1.25 and 1.30 build 2 allows remote attackers to execute arbitrary SQL commands via the UserName parameter...

CVE-2009-3719

Cross-site scripting XSS vulnerability in comment.asp in Battle Blog 1.25 and 1.30 build 2 allows remote attackers to inject arbitrary web script or HTML via a comment...

Sql injection

SQL injection vulnerability in admin/authenticate.asp in Battle Blog 1.25 and 1.30 build 2 allows remote attackers to execute arbitrary SQL commands via the UserName parameter...

Cross site scripting

Cross-site scripting XSS vulnerability in comment.asp in Battle Blog 1.25 and 1.30 build 2 allows remote attackers to inject arbitrary web script or HTML via a comment...

CVE-2009-3718

SQL injection vulnerability in admin/authenticate.asp in Battle Blog 1.25 and 1.30 build 2 allows remote attackers to execute arbitrary SQL commands via the UserName parameter...

CVE-2009-3719

Cross-site scripting XSS vulnerability in comment.asp in Battle Blog 1.25 and 1.30 build 2 allows remote attackers to inject arbitrary web script or HTML via a comment...

CVE-2009-3718

CVE-2009-3718 describes a SQL injection in Battle Blog (versions 1.25 and 1.30 build 2). The vulnerability is triggered via the UserName parameter in admin/authenticate.asp, allowing remote attackers to execute arbitrary SQL commands. This aligns with the NVD entry (base score 7.5, HIGH) and indi...

CVE-2009-3719

CVE-2009-3719 is an XSS vulnerability in Battle Blog’s comment.asp affecting builds 1.25 and 1.30 build 2. The issue allows remote attackers to inject arbitrary web script or HTML via a comment. Documents identify the vulnerable component (comment.asp) and affected versions but do not provide add...

[SECURITY] Fedora 11 Update: drupal-service_links-6.x.1.0-5.fc11

The service links module enables admins to add links to a number of social bookmarking sites, blog search sites etc. Includes sites are del.icio.us, Digg, Reddit, ma.gnolia.com, Newsvine, Furl, Google, Yahoo, Technorati and IceRocket...

Dazzle Blast - Remote File Inclusion

Dazzle Blast - Remote File Inclusion o Dazzle Blast Remote File Inclusion Vulnerability Software : Dazzle Blast Download : http://www.dazzleblast.com/dazzleblast.zip Author : NoGe Contact : nogedotcodeatgmaildotcom Blog : http://evilc0de.blogspot.com/ Home : http://antisecurity.org/ o Vulnerable...

A-Blog menu.php navigation_start Parameter Remote File Inclusion

CVE ID: 2006-5092 see also: NVD Bugtraq ID: 20230 有一个安全漏洞可能允许远程攻击者执行任意命令。这个问题是由于menu.php脚本没有正确消毒用户输入提供给'navigationstart'变量。这可能允许攻击者包括从远程主机包含将由脆弱的脚本执行任意命令文件。 A-Blog 暂无 http://target/ablogdir/navigation/menu.php?navigationstart=http://attacker/shell.php?...

Sql injection

Multiple SQL injection vulnerabilities in index.php in Nullam Blog 0.1.2 allow remote attackers to execute arbitrary SQL commands via the 1 i parameter or 2 v parameters in a register action...

Directory traversal

Multiple directory traversal vulnerabilities in index.php in Nullam Blog 0.1.2 allow remote attackers to include or execute arbitrary files via a .. dot dot in the 1 p and 2 s parameters...

CVE-2009-3665

Multiple SQL injection vulnerabilities in index.php in Nullam Blog 0.1.2 allow remote attackers to execute arbitrary SQL commands via the 1 i parameter or 2 v parameters in a register action...