312 matches found
Unfixed XSS vulnerability at www.michelberetti.net
Security researcher xylitol, has submitted on 06/10/2008 a cross-site-scripting XSS vulnerability affecting www.michelberetti.net, which at the time of submission ranked 23393639 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 09/04/2010. It is...
CVE-2008-2394
Multiple SQL injection vulnerabilities in TAGWORX.CMS 3.00.02 allow remote attackers to execute arbitrary SQL commands via the 1 cid parameter to contact.php and the 2 nid parameter to news.php...
CVE-2008-2394
Multiple SQL injection vulnerabilities in TAGWORX.CMS 3.00.02 allow remote attackers to execute arbitrary SQL commands via the 1 cid parameter to contact.php and the 2 nid parameter to news.php...
CVE-2008-2394
CVE-2008-2394 affects TAGWORX.CMS 3.00.02. The vulnerability is described as multiple SQL injection flaws that allow remote attackers to execute arbitrary SQL commands via the following parameters: (1) cid in contact.php and (2) nid in news.php. This is documented across multiple sources (NVD, CV...
TAGWORX.CMS Multiple Remote SQL Injection Vulnerabilities
No description provided by source. :::::::-. ... ::::::. :::. ;;, ';, ;; ;;;;;;;, ;;; ' . ' $$, $$$$ $$$ $$$ "Y$c$$ 888,o8P'88 .d888 888 Y88 MMMMP" "YmmMMMM"" MMM YM Discovered by dun \ dunatstrcpy.eu TAGWORX.CMS Remote SQL Injection Vulnerability Script site: http://www.tagworx.net/ Vuln:...
tagworx-sql.txt
:::::::-. ... ::::::. :::. ;;, ';, ;; ;;;;;;;, ;;; ' . ' $$, $$$$ $$$ $$$ "Y$c$$ 888,o8P'88 .d888 888 Y88 MMMMP" "YmmMMMM"" MMM YM Discovered by dun \ dunatstrcpy.eu TAGWORX.CMS Remote SQL Injection Vulnerability Script site: http://www.tagworx.net/ Vuln: -contact.php:...
TAGWORX.CMS Multiple Remote SQL Injection Vulnerabilities
Exploit for unknown platform in category web applications ========================================================= TAGWORX.CMS Multiple Remote SQL Injection Vulnerabilities ========================================================= :::::::-. ... ::::::. :::. ;;, ';, ;; ;;;;;;;, ;;; ' . ' $$, $$$$...
TAGWORX.CMS 3.00.02 - Multiple SQL Injections
TAGWORX.CMS 3.00.02 - Multiple SQL Injections :::::::-. ... ::::::. :::. ;;, ';, ;; ;;;;;;;, ;;; ' . ' $$, $$$$ $$$ $$$ "Y$c$$ 888,o8P'88 .d888 888 Y88 MMMMP" "YmmMMMM"" MMM YM Discovered by dun \ dunatstrcpy.eu TAGWORX.CMS Remote SQL Injection Vulnerability Script site: http://www.tagworx.net/...
Simple Customer 1.2 (contact.php id) SQL Injection Vulnerability
Exploit for unknown platform in category web applications ================================================================ Simple Customer 1.2 contact.php id SQL Injection Vulnerability ================================================================...
sharelor-xss.txt
Sharelor file sender Cross site scripting ========================================= POST variable : http://www.fileflasher.com:80/contact.php?action=send with line below from="alert1248191921%3B malibu.r...
Crlf injection
CRLF injection vulnerability in contact.php in Moonware aka Dale Mooney Gallery allows remote attackers to add arbitrary mail headers via CRLF sequences in the subject parameter. NOTE: this can be leveraged for spam by adding To or Cc headers...
CVE-2007-4612
The CVE-2007-4612 entry concerns Moonware (Dale Mooney Gallery) software, specifically the contact.php script. The vulnerability is a CRLF injection that lets remote attackers inject arbitrary mail headers via CRLF sequences in the subject parameter. This header injection could be leveraged to ad...
CVE-2007-4612
CRLF injection vulnerability in contact.php in Moonware aka Dale Mooney Gallery allows remote attackers to add arbitrary mail headers via CRLF sequences in the subject parameter. NOTE: this can be leveraged for spam by adding To or Cc headers...
CVE-2006-6520
Multiple cross-site scripting XSS vulnerabilities in Messageriescripthp 2.0 allow remote attackers to inject arbitrary web script or HTML via the 1 pseudo parameter to a existepseudo.php, the 2 email parameter to b existeemail.php, or the 3 pageName or 4 cssform parameter to c Contact/contact.php...
CVE-2006-6520
Multiple cross-site scripting XSS vulnerabilities in Messageriescripthp 2.0 allow remote attackers to inject arbitrary web script or HTML via the 1 pseudo parameter to a existepseudo.php, the 2 email parameter to b existeemail.php, or the 3 pageName or 4 cssform parameter to c Contact/contact.php...
freeqboard-rfi.txt
freeqboard = 1.1 qbpath Remote File Include Vulnerability Author: Mr.3FReeT Softname: freeqboard code in : about.php , contact.php , delete.php , faq.php , index.php include "config.php"; include $qbpath."incs/mysql.php"; Exploit : """""""" www.site.com/path/index.php?qbpath=shellcode.txt?...
Mini Open CMS <= 1.0.0 Local File Include Exploit
No description provided by source. DEVIL TEAM IRC: irc.milw0rm.com:6667 devilteam http://www.rahim.webd.pl/ ======== Contact: [email protected] cod3d by Kacper -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Greetings DragonHeart and all DEVIL TEAM Patriots : - Leito...
sphpblog08-rfi.txt
""""""""""""""""""""""""""""""""""""""""""""""" """ :: :: ::::: :::: """ """ :: :: :: : :: """ """ :::: :: :: ::::: ::::: :::: """ """ :: :: ::: ::: :: :: :: :: :: """ """ :: :: :: : : ::::: :: :: :::: """ """ """ """"""""""""""""""""""""""""""""""""""""""""""" Xmor$ DigitaL Hacking TeaM Sphpblog...
miniCWB <= 1.0.0 (contact.php) Local File Include Exploit
No description provided by source. ? print ' ::::::::: :::::::::: ::: ::: ::::::::::: ::: :+: :+: :+: :+: :+: :+: :+: +:+ +:+ +:+ +:+ +:+ +:+ +:+ ++ +:+ +++:++ ++ +:+ ++ ++ ++ ++ ++ ++ ++ ++ ++ + + + +++ + + ::::::::::: :::::::::: ::: :::: :::: :+: :+: :+: :+: +:+:+: :+:+:+ +:+ +:+ +:+ +:+ +:+...
miniCWB 1.0.0 - contact.php Local File Inclusion
miniCWB 1.0.0 - contact.php Local File Inclusion DEVIL TEAM IRC: irc.milw0rm.com:6667 devilteam http://www.rahim.webd.pl/ ======== Contact: [email protected] cod3d by Kacper -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Greetings DragonHeart and all DEVIL TEAM...