7210 matches found
sNews (index.php) SQL Injection Vulnerability
No description provided by source. Exploit Title:sNews index.php SQL Injection Vulnerability Date: 2010-07-24 Author: MajoR Software Link: http://snews.awddesign.co.uk Version: N/A Tested on: Wnidows xp SP2 CVE : N/A ====================================================sNews index.php SQL Injectio...
ToendaCMS 0.7 Index.PHP Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/18178/info ToendaCMS is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary scri...
phpFaber TopSites Index.PHP Cross-Site Scripting Vulnerability
漏洞信息: phpfaber topsites是一个php编写的功能强大,可靠和安全的排行榜。 phpFaber TopSites存在跨站脚本攻击漏洞。 漏洞影响: phpFaber TopSites 0 漏洞详情: phpFaber TopSites中的index.php存在跨站脚本攻击漏洞。这使得远程攻击者可以借助于page参数注入任意Web脚本或HTML。 可使用以下代码进行漏洞验证: http://www.example.com/index.php?page=alert/sebug/ 解决方案:...
PHPPing 0.1 - Remote Command Execution Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/7030/info A vulnerability has been reported in PHPPing that may allow remote attackers to execute commands on vulnerable systems. The vulnerability exists in the index.php script file. Some variables are not properly...
OSCommerce 3.0.2 - Persistent Cross Site Vulnerability
No description provided by source. Title: ====== OSCommerce v3.0.2 - Persistent Cross Site Vulnerability Date: ===== 2012-02-02 VL-ID: ===== 407 Introduction: ============= osCommerce is the leading Open Source online shop e-commerce solution that is available for free under the GNU General Publi...
Video Games Rentals Script - SQL Injection Vulnerability
No description provided by source. Exploit Title: video games rentals Script SQL injection Vulnerability Date: 11/02/2010 Author: JaMbA Software Link: N/A Version: all version Tested on: Windows & Linux CVE : ::::::::::::::::::::::::: Exploit Title : video games rentals Script SQL injection...
PHP Ticket System Beta 1 (index.php p parameter) SQL Injection
No description provided by source. Exploit Title: PHP Ticket System Beta 1 'p' SQL Injection Date: 04/16/12 Author: G13 Twitter: @g13net Software Site: http://sourceforge.net/projects/phpticketsystem/ Version: Beta 1 Category: webapp php Description PHP Ticket System is a small PHP MySQL trouble...
Dream4 Koobi CMS 4.2.3 Index.PHP Q Parameter SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/13413/info Koobi CMS is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could...
sNews 1.7 - (index.php?category) SQL Injection Vulnerability
No description provided by source. sNews v1.7 index.php?category SQL Injection Vulnerability Author : CoBRa21 Author Web Page : http://www.ipbul.org Dork: Powered by sNews Sql Injection: http://localhost/path/index.php?category=-3 union select 0,version,2,3,4,5,6,7,8 Thanks http://e-banka.org &...
PortailPHP 2 mod_search/index.php chemin Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/22381/info PortailPHP is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. A successful exploit of these issues allows an attacker to execute arbitrary...
phpwebnews 0.1 index.php m_txt Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/23448/info The 'phpwebnews' package is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script co...
DotClear 1.2.x /tools/thememng/index.php tool_url Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/23411/info DotClear is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browse...
Webmobo WB News System Blind SQL Injection
No description provided by source. Exploit Title: Webmobo News System Blind SQL Injection Date: 2011 Author: Eyup CELIK Version: All Version Tested on: All versions are Vulnerability Web Site: www.eyupcelik.com.tr ISSUE Blind SQL Injection can be done using the command input Vulnerable Page:...
microssys cms <= 1.5 - Remote File Inclusion Vulnerability
No description provided by source. microSSys CMS = 1.5 Remote File Inclusion Vulnerability Software site: http://wajox.com/ =============================================================== By Raz0r www.Raz0r.name =============================================================== Vulnerable code...
AllMyGuests <= 0.3.0 (AMG_serverpath) Remote Inclusion Vulnerabilities
No description provided by source. AllMyGuests 3.0 Remote File Inclusion Vulnerability Software: AllMyGuests Version: 3.0 Download: http://download.php-resource.net/AllMyGuests/AllMyGuests0.3.0.zip Found By: beks Bug In: /include/submit.inc.php /admin/index.php /include/cmsubmit.inc.php...
TikiWiki Project 1.8 tiki-index.php comments_threshold Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/10100/info Multiple vulnerabilities have been identified in various modules of the application. These vulnerabilities may allow a remote attacker to carry out various attacks such as path disclosure, cross-site scripting,...
AllMyLinks <= 0.5.0 - (index.php) Remote File Include Vulnerability
No description provided by source. /\ AllMyLinks 0.5.0 ========================================================= Published : 2007-01-07 Remote: Yes Site: http://download.php-resource.net/AllMyLinks/AllMyLinks0.5.0.zip Author: GolDM Contact: [email protected]...
Synergiser 1.2 Index.PHP Local File Include Vulnerability
No description provided by source...
VietPHP index.php language Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/25226/info VietPHP is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the application and the...
Linker 2.0.4 Index.PHP Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/24277/info Codelib Linker is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in th...