Yamamah 1.0 SQL Injection / Source Disclosure

Exploit Title: Yamamah Mullti Vulnerability Date: 9-06-2010 Author: anT!-Tr0J4n My Home : www.Dev-PoinT.com Software Link:http://www.yamamah.org Version: 1.00 Tested on: Win7/Linux DorK : N / A ========== Exploit By anT!-Tr0J4n============ =======Yamamah source code disclosure Vulnerability...

MyOWNspace v8.2 local file include & File Disclosure Vulnerability

Exploit for php platform in category web applications ================================================================== MyOWNspace v8.2 local file include & File Disclosure Vulnerability ================================================================== Exploit Title: MyOWNspace v8.2 local file...

Sql injection

SQL injection vulnerability in index.php in PHPRecipeBook 2.24 and 2.39 allows remote attackers to execute arbitrary SQL commands via the 1 baseid or 2 courseid parameter in a search action...

Sql injection

Multiple SQL injection vulnerabilities in phpCommunity 2 2.1.8, when magicquotesgpc is disabled, allow remote attackers to execute arbitrary SQL commands via 1 the forumid parameter in a forum action to index.php, 2 the topicid parameter in a forum action to index.php, 3 the wert parameter in an ...

CVE-2009-4883

PHPRecipeBook is vulnerable to an SQL injection in index.php via the base_id and course_id parameters in a search action on versions 2.24 and 2.39. Root cause: insufficient input sanitization before using values in SQL queries. Impact: remote attackers could alter queries and access/modify data, ...

CVE-2009-4884

Multiple SQL injection vulnerabilities in phpCommunity 2 2.1.8, when magicquotesgpc is disabled, allow remote attackers to execute arbitrary SQL commands via 1 the forumid parameter in a forum action to index.php, 2 the topicid parameter in a forum action to index.php, 3 the wert parameter in an ...

CVE-2009-4891

CS-Cart 2.0.0 Beta 3 is affected by an SQL injection in index.php via the product_id parameter in the products.view action. The vulnerability allows remote attackers to execute arbitrary SQL commands on the backend. The issue is documented across multiple sources (e.g., Exploit-DB exploit 8184 an...

CMSQlite 'index.php' SQL Injection and Directory Traversal Vulnerabilities

CMSQlite is prone to multiple SQL injection and directory traversal vulnerabilities. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

RTRandomImage - Remote File Inclusion

|| || | || o,7 || . o7 || 4||| ow, : / / 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site :...

CVE-2010-2147

Cross-site scripting XSS vulnerability in the My Car commycar component 1.0 for Joomla! allows remote attackers to inject arbitrary web script or HTML via the modveh parameter to index.php...

Sql injection

SQL injection vulnerability in the My Car commycar component 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the pagina parameter to index.php...

CVE-2010-2147

Cross-site scripting XSS vulnerability in the My Car commycar component 1.0 for Joomla! allows remote attackers to inject arbitrary web script or HTML via the modveh parameter to index.php...

CVE-2010-2143

CVE-2010-2143 : Symphony CMS is vulnerable to a directory traversal in the index.php file’s mode parameter, allowing remote attackers to read arbitrary files and potentially impact the server. Affected: Symphony CMS 2.0.7 (and references to 2.0.6), with root cause described as unsanitized input d...

帝国（EmpireCMS）6.0 /search/keyword/index.php 存在多个跨站漏洞

帝国软件是一家专注于网络软件开发的科技公司，其主营产品“帝国网站管理系统EmpireCMS”是目前国内应用最广泛的CMS程序。通过多年的不断创新与完善，使系统集安全、强大、稳定、灵活于一身。 目前EmpireCMS程序已经广泛应用在国内数十万家网站，覆盖国内上千万上网人群，并经过上千家知名网站的严格检测，被称为国内最稳定的CMS系统。 /search/keyword/index.php 存在多个跨站漏洞 http://ssvdb.com/search/keyword/index.php?show=3"xss...

Delivering Digital Media CMS SQL Injection

Title: Delivering Digital Media CMS SQL Injection Vulnerability EDB-ID: CVE-ID: OSVDB-ID: Author: Dr.0rYX and Cr3w-DZ Published: Verified: Download Exploit Code Download N/A N.A.S.T ALGERIAN HACKER - NORTH-AFRICA SECURITY TEAM - ! Delivering Digital Media CMS SQL Injection Vulnerability ! Author ...

OCS Inventory NG Multiple SQL Injection Vulnerabilities

This host is running OCS Inventory NG and is prone to multiple SQL injection vulnerabilities. OpenVAS Vulnerability Test $Id: secpodocsinventoryngmultsqlinjvulnmay10.nasl 5394 2017-02-22 09:22:42Z teissa $ OCS Inventory NG Multiple SQL Injection Vulnerabilities Authors: Madhuri D Copyright:...

Joomla Component com_bfquiztrial SQL Injection Vulnerability

Exploit for php platform in category web applications ============================================================ Joomla Component combfquiztrial SQL Injection Vulnerability ============================================================ :::::::::::::::::::::::::::::::::::::: 0x1...

Cosmos Solutions CMS - 'id=' / 'page=' SQL Injection

Cosmos Solutions cms SQL Injection Vulnerability Vendor:http://www.cosmossolutions.net/ Discovered by : gendenk Site : http://jatimcrew.org Dork : "Webdesign Cosmos Solutions" Exploit : site/pinf.php?page=SQL Injection Exploit : site/index.php?id=SQL Injection Demo:...

Joomla Component com_reservations XSS Vulnerability

Exploit for php platform in category web applications =============================================== Joomla Component Reservations XSS Vulnerability =============================================== :::::::::::::::::::::::::::::::::::::: 0x1 :::::::::::::::::::::::::::::::::::::: General Informati...

Joomla Reservations Cross Site Scripting

Exploit Title: Joomla Component Reservations XSS Vulnerability Date: 28th May 2010 Author: Valentin Category: webapps/0day Version: unknown Tested on: CVE : Code : :::::::::::::::::::::::::::::::::::::: 0x1 :::::::::::::::::::::::::::::::::::::: General Information Advisory/Exploit Title = Joomla...