182 matches found
CVE-2006-4357
PHP remote file inclusion vulnerability in clients/index.php in Diesel Smart Traffic allows remote attackers to execute arbitrary PHP code via a URL in the src parameter...
dieselpaid.txt
NightWarrior nightwarrior-athotmail.com Diesel Paid Mail getad.php Cross-Site Scripting Vulnerability Contact : nightwarrior-athotmail.com hompage : www.dieselscripts.com http://www.example.com/Script Path/site/getad.php?refid=&email=default&ps=XSS...
diesel.txt
NightWarrior nightwarrior-athotmail.com Diesel Job Site forgot.php Cross-Site Scripting Vulnerability Contact : nightwarrior-athotmail.com hompage : www.dieselscripts.com http://www.example.com/Script Path/jobseekers/forgot.php?uname=XSS&fu=Submit http://www.example.com/Script...
CVE-2006-4362
CVE-2006-4362 describes a cross-site scripting (XSS) vulnerability in getad.php of Diesel Paid Mail, enabling remote attackers to inject arbitrary script/HTML via the ps parameter. The NVD entry assigns a base CVSS2 score of 4.3 (Medium) with network attack vector, no confidentiality or availabil...
CVE-2006-4358
CVE-2006-4358 describes a cross-site scripting (XSS) vulnerability in the Diesel Pay product, affecting the code path index.php via the read parameter. The vulnerability allows remote attackers to inject arbitrary web script or HTML. According to the NVD entry, the CVSS v2 base score is 4.3 (Medi...
CVE-2006-4358
Cross-site scripting XSS vulnerability in index.php in Diesel Pay allows remote attackers to inject arbitrary web script or HTML via the read parameter...
CVE-2006-4361
Multiple cross-site scripting XSS vulnerabilities in jobseekers/forgot.php in Diesel Job Site allow remote attackers to inject arbitrary web script or HTML via the 1 uname or 2 SEmail parameters...
CVE-2006-4361
Vulnerability detail (CVE-2006-4361): Diesel Job Site’s jobseekers/forgot.php suffers multiple XSS flaws that let remote attackers inject arbitrary web script/HTML via the (1) uname or (2) SEmail parameters. Affected: Diesel Job Site, file: jobseekers/forgot.php. Impact and remediation are not pr...
CVE-2006-4357
The CVE-2006-4357 entry describes a PHP remote file inclusion vulnerability in Diesel Smart Traffic, specifically in clients/index.php where an attacker can supply a URL in the src parameter to execute arbitrary PHP code on the server. Affected component: Diesel Smart Traffic (PHP), vulnerable co...
CVE-2006-4362
Cross-site scripting XSS vulnerability in getad.php in Diesel Paid Mail allows remote attackers to inject arbitrary web script or HTML via the ps parameter...
Diesel Paid Mail getad.php Cross-Site Scripting Vulnerability
NightWarriorKurdish Hacker nightwarrior-athotmail.com Diesel Paid Mail getad.php Cross-Site Scripting Vulnerability Contact : nightwarrior-athotmail.com hompage : www.dieselscripts.com http://www.example.com/Script Path/site/getad.php?refid=&email=default&ps=XSS...
Diesel Job Site forgot.php Cross-Site Scripting
NightWarriorKurdish Hacker nightwarrior-athotmail.com Diesel Job Site forgot.php Cross-Site Scripting Vulnerability Contact : nightwarrior-athotmail.com hompage : www.dieselscripts.com http://www.example.com/Script Path/jobseekers/forgot.php?uname=XSS&fu=Submit http://www.example.com/Script...
CVE-2006-3763
SQL injection vulnerability in category.php in Diesel Joke Site allows remote attackers to execute arbitrary SQL commands via the id parameter...
CVE-2006-3763
CVE-2006-3763 affects Diesel Joke Site, specifically category.php, where the id parameter is vulnerable to SQL injection. The vulnerability allows remote attackers to manipulate SQL commands, potentially compromising data integrity or confidentiality. The available descriptions consistently indic...
CVE-2006-3763
SQL injection vulnerability in category.php in Diesel Joke Site allows remote attackers to execute arbitrary SQL commands via the id parameter...
dieselJoke.txt
Sql injection in Diesel joke site forum type : Diesel joke site bug found by : black-code team : site-down type : Sql injection Sql injection in Diesel joke site page : category.php variable : id Exploits : admin id: http://www.example.com/path to joke...
Diesel Joke Site - 'Category.php' SQL Injection
source: https://www.securityfocus.com/bid/18760/info Diesel Joke Site is prone to an SQL-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. A successful exploit could allow an attacker to compromise t...
Diesel Joke Site SQL INJECTION
Diesel Joke Site Suffer from An SQl Injection Vulnerability http://www.dieselscripts.com/demo/joke/category.php?id=' thanks...
Code injection
Privacy leak in install.php for Diesel PHP Job Site sends sensitive information such as user credentials to an e-mail address controlled by the product developers...
CVE-2006-2540
Privacy leak in install.php for Diesel PHP Job Site sends sensitive information such as user credentials to an e-mail address controlled by the product developers...