7210 matches found
Sql injection
Multiple SQL injection vulnerabilities in index.php in CoronaMatrix phpAddressBook 2.0 allow remote attackers to execute arbitrary SQL commands via the 1 username or 2 parameters...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in onlinetools.org EasyImageCatalogue 1.3.1 allow remote attackers to inject arbitrary web script or HTML via the 1 search and 2 d index.php parameters to index.php, 3 dir parameter to thumber.php, and the d parameter to 4 describe.php and 5...
CVE-2008-7140
Multiple cross-site scripting XSS vulnerabilities in @lex Guestbook 4.0.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 languagesetup parameter to setup.php or 2 test parameter to index.php. NOTE: the provenance of this information is unknown; the details are...
CVE-2008-7132
CVE-2008-7132 is a cross-site scripting (XSS) vulnerability in Nuked-Klan 1.3 beta ’s index.php , exploitable via the nuked_nude parameter. The vulnerability allows remote attackers to inject arbitrary web script or HTML. The NVD entry (CVSSv2 base score 4.3, MEDIUM) notes this as an HTML/script ...
CVE-2008-7145
CVE-2008-7145 describes multiple SQL injection vulnerabilities in index.php of CoronaMatrix phpAddressBook 2.0, allowing remote attackers to execute arbitrary SQL commands via the (1) username or (2) parameters. The root cause is listed as SQL injection in the affected PHP file. Affected software...
CVE-2008-7133
CVE-2008-7133 affects the online tools package EasyImageCatalogue 1.3.1 from onlinetools.org. The provided documents describe multiple cross-site scripting (XSS) vulnerabilities that allow remote attackers to inject arbitrary web script or HTML via the (1) search and (2) d parameter to index.php,...
Reservation Manager Cross Site Scripting
/ | | \ \ / / | | \ \ / / | |\ \ /\ / / | | | | | | \ V /| | | \ V V / | | || | || / ||| // ,|, | |/ | | | |/ / | ' \ | | / | | | | | | | |||,|| || || Reservation Manager Remote XSS Vulnerabilities Discovered By : Moudi Contact : Download : http://webformatique.com/ Greetings : Mizoz, Zuka,...
PHP-Nuke 8.0 SQL Injection / Remote Shell
==================================== PHP-Nuke Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 0 -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-1 + Discovered By : Inj3ct0r + Site : Inj3ct0r.com + support e-mail : submitatinj3ct0r.com Product:...
Modern Script <= 5.0 (index.php s) SQL Injection Vulnerability
Exploit for unknown platform in category web applications ============================================================== Modern Script email protected » Gr44tz to: Hackteach Team - Sniper-Code - j0rd4n14n.r1z - The-g0bL!N - G-z3r0 » Fuck to : Lito Big Lamerz Sux And Donky 5acker n00bZ === Explo...
Wordpress Plugin WP-Syntax <= 0.9.1 Remote Command Execution
No description provided by source. ====================================================================== Wordpress plugin WP-Syntax = 0.9.1 Remote Code Execution ====================================================================== This vulnerability was originally discovered by Raz0r on...
FlexCMS 2.5 Blind SQL Injection
============================================= FlexCMS Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 0 -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-1 + Discovered By : Inj3ct0r + Site : Inj3ct0r.com + Support e-mail : submitatinj3ct0r.com ...
CVE-2008-7098
Multiple cross-site scripting XSS vulnerabilities in Qsoft K-Rate Premium allow remote attackers to inject arbitrary web script or HTML via the blog, possibly the 1 Title and 2 Text fields; 3 the gallery, possibly the Description field in Your Pictures; 4 the forum, possibly the Your Message fiel...
Moa Gallery 1.2.0 (index.php action) SQL Injection Vulnerability
No description provided by source. Viva IslaM Viva IslaM Remote SQL Injection Vulnerability index.php action Moa Gallery 1.2.0 www.moagallery.net AuTh0r : Mr.SQL H0ME : WwW.55a.NeT Email : [email protected] -: Exploite :-...
Uiga Church Portal - 'year' SQL Injection
Viva IslaM Viva IslaM Remote SQL Injection Vulnerability index.php view Uiga Church Portal http://www.scriptdevelopers.net/products/ucp.html AuTh0r : Mr.SQL H0ME : WwW.55a.NeT Email : [email protected] -: Exploite :-...
Sql injection
Multiple SQL injection vulnerabilities in TheHockeyStop HockeySTATS Online 2.0 Basic and Advanced allow remote attackers to execute arbitrary SQL commands via the 1 id parameter in the viewpage action to the default URI, probably index.php, or 2 divid parameter in the schedule action to index.php...
CVE-2008-7085
Affected software: TheHockeyStop HockeySTATS Online 2.0 Basic and Advanced. Vulnerability: Multiple SQL injection flaws that allow remote attackers to execute arbitrary SQL commands. Entry points / parameters: (1) id parameter in the viewpage action (likely index.php) and (2) divid parameter in t...
SearchFeed Script Cross Site Scripting
/ | | \ \ / / | | \ \ / / | |\ \ /\ / / | | | | | | \ V /| | | \ V V / | | || | || / ||| // ,|, | |/ | | | |/ / | ' \ | | / | | | | | | | |||,|| || || SearchFeed Script Remote XSS Vulnerabilities Discovered By : Moudi Contact : Download : http://www.jce-tech.com/searchfeed.php Greetings :...
Moa Gallery 1.2.0 - index.php?action SQL Injection
Moa Gallery 1.2.0 - index.php?action SQL Injection Viva IslaM Viva IslaM Remote SQL Injection Vulnerability index.php action Moa Gallery 1.2.0 www.moagallery.net AuTh0r : Mr.SQL H0ME : WwW.55a.NeT Email : [email protected] -: Exploite :-...
Moa Gallery 1.2.0 (index.php action) SQL Injection Vulnerability
Exploit for unknown platform in category web applications ================================================================ Moa Gallery 1.2.0 index.php action SQL Injection Vulnerability ================================================================ Remote SQL Injection Vulnerability index.php...
CVE-2008-7072
Cross-site scripting XSS vulnerability in index.php in Chipmunk Topsites allows remote attackers to inject arbitrary web script or HTML via the start parameter...