267 matches found
BloofoxCMS 0.3.5 Information Disclosure
=================================== Vulnerability ID: HTB22660 Reference: http://www.htbridge.ch/advisory/informationdisclosureinbloofoxcms1.html Product: BloofoxCMS Vendor: bloofox.com http://bloofox.com/ Vulnerable Version: 0.3.5 and probably prior versions Vendor Notification: 13 October 2010...
Information disclosure in BloofoxCMS
Vulnerability ID: HTB22659 Reference: http://www.htbridge.ch/advisory/informationdisclosureinbloofoxcms.html Product: BloofoxCMS Vendor: bloofox.com http://bloofox.com/ Vulnerable Version: 0.3.5 and probably prior versions Vendor Notification: 13 October 2010 Vulnerability Type: Information...
Discuz7. 2 of my vest plug-injection vulnerability-a vulnerability warning-the black bar safety net
Discuz! A common set of community forums software system, the user can not require any programming on the basis of, through the simple setup and installation, on the Internet build up with perfect function, strong load capacity, and highly customizable Forum service Vulnerability plug-in:...
Multiple Vulnerabilities in BloofoxCMS
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in BloofoxCMS which could be exploited to perform cross-site request forgery and SQL injection attacks. 1 Cross-site request forgery CSRF in BloofoxCMS The vulnerability exists due to insufficient validation of the...
[SECURITY] Fedora 11 Update: rubygem-activerecord-2.3.2-2.fc11
Implements the ActiveRecord pattern Fowler, PoEAA for ORM. It ties databa se tables and classes together for business objects, like Customer or Subscription, that can find, save, and destroy themselves without resorting to manual SQL...
YAP 1.1.1 Blind SQL Injection/SQL Injection Vulnerabilities
No description provided by source. + YAP 1.1.1 Blind SQL Injection/SQL Injection + Discovered By SirGod + www.mortal-team.org + www.h4cky0u.org + Blind SQL Injection The default prefix for database tables is "yap" .But can be changed at installation. PoC :...
YAP 1.1.1 Blind SQL Injection/SQL Injection Vulnerabilities
Exploit for unknown platform in category web applications =========================================================== YAP 1.1.1 Blind SQL Injection/SQL Injection Vulnerabilities =========================================================== + Blind SQL Injection The default prefix for database table...
YAP 1.1.1 Blind SQL Injection
YAP 1.1.1 Blind SQL Injection/SQL Injection + Discovered By SirGod + www.mortal-team.org + www.h4cky0u.org + Blind SQL Injection The default prefix for database tables is "yap" .But can be changed at installation. PoC : http://127.0.0.1/path/comments.php?imageid=1 and asciisubstringSELECT...
YAP 1.1.1 - Blind SQL Injection / SQL Injection
YAP 1.1.1 Blind SQL Injection/SQL Injection + Discovered By SirGod + www.mortal-team.org + www.h4cky0u.org + Blind SQL Injection The default prefix for database tables is "yap" .But can be changed at installation. PoC : http://127.0.0.1/path/comments.php?imageid=1 and asciisubstringSELECT...
[SECURITY] Fedora 8 Update: rubygem-activerecord-2.1.1-1.fc8
Implements the ActiveRecord pattern Fowler, PoEAA for ORM. It ties databa se tables and classes together for business objects, like Customer or Subscription, that can find, save, and destroy themselves without resorting to manual SQL...
K-Links Directory Blind SQL Injection Exploit
!/usr/bin/perl K-Links Directory Blind SQL Injection Exploit ..::virangar security team::.. www.virangar.net C0d3d BY:virangar security team hadihadi special tnx to: MR.nosrati,black.shadowes,MR.hesy,Ali007,Zahra & all virangar members & all hackerz my lovely friends hadiaryaie2004 & arashimm02ta...
Site Documentation Module for Drupal Database Tables Access Content Permission Information Disclosure
The version of the Site Documentation third-party module for Drupal installed on the remote host allows any user with 'access content' permission to retrieve the contents of arbitrary tables in the application's database. An attacker can exploit this issue to retrieve sensitive information, such ...
ibproarcade-sql.txt
!/usr/bin/perl ibProArcade "r57ibProArcade" ; $mw-geometry '420x310' ; $mw-resizable0,0; $mw-Label-text = '!', -font = 'Webdings 22'-pack; $mw-Label-text = 'ibProArcade sql injection exploit by RST/GHC', -font = 'Verdana 7 bold',-foreground='red'-pack; $mw-Label-text = ''-pack;...
ibProArcade <= 3.3.0 Remote SQL Injection Exploit
No description provided by source. !/usr/bin/perl ibProArcade = v3.3.0 sql injection exploit coded by 1dt.w0lf RST/GHC THIS IS UNPUBLISHED RST/GHC EXPLOIT CODE KEEP IT PRIVATE use Tk; use Tk::BrowseEntry; use Tk::DialogBox; use LWP::UserAgent; BEGIN if$^O eq 'MSWin32' require Win32::Console;...
igal207-sql.txt
!/usr/bin/perl Invision Gallery version "r57ig207" ; $mw-geometry '420x510' ; $mw-resizable0,0; $mw-Label-text = '!', -font = 'Webdings 22'-pack; $mw-Label-text = 'Invision Gallery 'Verdana 7 bold',-foreground='red'-pack; $mw-Label-text = ''-pack; $fleft=$mw-Frame-pack -side = 'left', -anchor =...
RunCMS Newbb_plus 0.92 - Client IP SQL Injection
RunCMS Newbbplus 0.92 - Client IP SQL Injection !/usr/bin/perl use Tk; use Tk::BrowseEntry; use Tk::DialogBox; use LWP::UserAgent; $mw = new MainWindowtitle = "UnderWHAT?!" ; $mw-geometry '420x383' ; $mw-resizable0,0; $mw-Label-text = '', -font = 'Verdana 8',-foreground='red'-pack; $mw-Label-text...
TBDev torrent tacker script backdoor - FAKE
On connection with hard coded key with hash "0bffd3d87e7267c7fe686e20acbee7ab" all database tables are dropped...
backendcms-xss.txt
""""""""""""""""""""""""""""""""""""""""""""""" """ :: :: ::::: :::: """ """ :: :: :: : :: """ """ :::: :: :: ::::: ::::: :::: """ """ :: :: ::: ::: :: :: :: :: :: """ """ :: :: :: : : ::::: :: :: :::: """ """ """ """"""""""""""""""""""""""""""""""""""""""""""" Xmor$ Security Vulnerability Resear...
Back-End CMS Database Tables v0.4.7 Remote File Include Vulnerabilities
""""""""""""""""""""""""""""""""""""""""""""""" """ :: :: ::::: :::: """ """ :: :: :: : :: """ """ :::: :: :: ::::: ::::: :::: """ """ :: :: ::: ::: :: :: :: :: :: """ """ :: :: :: : : ::::: :: :: :::: """ """ """ """"""""""""""""""""""""""""""""""""""""""""""" Xmor$ Security Vulnerability Resear...
Back-End CMS Database Tables v0.4.7 Cross Site Scripting
""""""""""""""""""""""""""""""""""""""""""""""" """ :: :: ::::: :::: """ """ :: :: :: : :: """ """ :::: :: :: ::::: ::::: :::: """ """ :: :: ::: ::: :: :: :: :: :: """ """ :: :: :: : : ::::: :: :: :::: """ """ """ """"""""""""""""""""""""""""""""""""""""""""""" Xmor$ Security Vulnerability Resear...