Sql injection

SQL injection vulnerability in index.php in CodeMight VideoCMS 3.1 allows remote attackers to execute arbitrary SQL commands via the v parameter in a video action...

CVE-2009-4430

SQL injection vulnerability in index.php in VirtueMart 1.0 allows remote attackers to execute arbitrary SQL commands via the productid parameter in a shop.productdetails shop.flypage action...

CVE-2009-4430

CVE-2009-4430 describes an SQL injection in VirtueMart 1.0: index.php handling the shop.product_details action is vulnerable to crafted product_id values, allowing remote SQL commands. The vulnerability affects VirtueMart 1.0 and is supported by NVD data (CVSSv2 base score 7.5, HIGH). Connected s...

DBHCMS - Web Content Management System v1.1.4 RFI Vulnerability

No description provided by source. DBHCMS - Web Content Management System RFI Vulnerability http://www.drbenhur.com/ Author: Gamoscu Site: www.1923turk.biz https://gamoscu.wordpress.com/ Manas58 - Baybora - Delibey - Tiamo - Psiko - Turco - infazci - X-TRO Hosgeldin medine bebek Allah anali babal...

E-Pay RFI Vulnerability

No description provided by source. ======================================================================================== | Title : E-Pay RFI Vulnerability | | Author : indoushka | | email : [email protected] | | Home : Souk Naamane - 04325 - Oum El Bouaghi - Algeria -00213771818860 | | Web...

discuz 4.1.0 index.php 跨站脚本漏洞

No description provided by source...

Sql injection

SQL injection vulnerability in index.php in weenCompany 4.0.0 allows remote attackers to execute arbitrary SQL commands via the moduleid parameter. NOTE: some of these details are obtained from third party information...

CVE-2009-4403

CVE-2009-4403 corresponds to a cross-site scripting (XSS) vulnerability in the index.php of Rumba XML 1.8, exploitable via PATH_INFO. The documented impact is that remote attackers can inject arbitrary web script or HTML. The entry is supported by multiple sources (NVD and CVE records) with a bas...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Scriptsez.net Ez Poll Hoster EPH allow remote attackers to inject arbitrary web script or HTML via the 1 pid parameter in a code action to index.php and the 2 uid parameter in a view action to profile.php...

Cross site scripting

Cross-site scripting XSS vulnerability in index.php in texmedia Million Pixel Script 3 allows remote attackers to inject arbitrary web script or HTML via the pa parameter. NOTE: some of these details are obtained from third party information...

CVE-2009-4381

Cross-site scripting XSS vulnerability in index.php in texmedia Million Pixel Script 3 allows remote attackers to inject arbitrary web script or HTML via the pa parameter. NOTE: some of these details are obtained from third party information...

weenCompany - SQL Injection

weenCompany - SQL Injection weenCompany SQL Injection Vulnerability Vendor: http://www.weentech.com/ Author: Gamoscu Site: www.1923turk.biz Site: http://gamoscu.wordpress.com/ Dork:"Created by weenCompany" Exploit: http://server/index.php?moduleid=m2newsSQL-inj&articleid=1 Greetz: Manas58 Baybora...

mypage 0.4 - Local File Inclusion

mypage 0.4 - Local File Inclusion mypage0.4 LFI Vulnerability Author: BAYBORA Site: www.1923turk.biz Exploit: Vuln file: index.php?page=LFI Exploit: POST http://server/index.php?page=../../../../../../../../etc/passwd index.php ifisset$GET'page' ... $inhalt=$inhaltsordner."/".$GET'page';...

weenCompany SQL Injection Vulnerability

Exploit for unknown platform in category web applications ======================================= weenCompany SQL Injection Vulnerability ======================================= weenCompany SQL Injection Vulnerability Vendor: http://www.weentech.com/ Author: Gamoscu Dork:"Created by weenCompany"...

mypage v0.4 Local File Inclusion Vulnerability

No description provided by source. mypage0.4 LFI Vulnerability Author: BAYBORA Site: www.1923turk.bizhttp://www.1923turk.biz Exploit: Vuln file: index.php?page=LFI Exploit: POST http://server/index.php?page=../../../../../../../../etc/passwd index.php ifisset$GET'page'...

Drumbeat CMS 1.0 SQL Injection

Vendor: http://www.drumbeatcms.com.au/ Version: Version 1.0 Tested on: Windows and Linux ----------------------------------------- Drumbeat CMS SQL Injection Exploit + Discovered and notified by Sora A SQL injection exploit is found in Drumbeat CMS. The vulnerability exists in where there is an...

mypage 0.4 - Local File Inclusion

mypage0.4 LFI Vulnerability Author: BAYBORA Site: www.1923turk.biz Exploit: Vuln file: index.php?page=LFI Exploit: POST http://server/index.php?page=../../../../../../../../etc/passwd index.php ifisset$GET'page' ... $inhalt=$inhaltsordner."/".$GET'page'; ... $inhalt=strreplace"///","",$inhalt; if...

CVE-2009-4364

CVE-2009-4364 describes a Cross-site Scripting (XSS) vulnerability in the ScriptsEz Ez Blog, affecting the application’s index.php where the cname parameter can inject arbitrary web script/HTML (related to the act and id parameters). The root cause is insufficient input validation on cname. Impac...

Joomla! Component com_mediaslide - Directory Traversal

Joomla! Component commediaslide - Directory Traversal Joomla Component commediaslide Directory Traversal Vuln author : Mr.tro0oqy from Yemen mail : [email protected] fuck 2 community college sanaa exp : http://server/components/commediaslide/viewer.php?path=/../.. dork :...

Drumbeat CMS 1.0 - SQL Injection

Drumbeat CMS 1.0 - SQL Injection Vendor: http://www.drumbeatcms.com.au/ Version: Version 1.0 Tested on: Windows and Linux ----------------------------------------- Drumbeat CMS SQL Injection Exploit + Discovered and notified by Sora A SQL injection exploit is found in Drumbeat CMS. The...