CVE-2008-5068

Multiple cross-site scripting XSS vulnerabilities in Kmita Gallery allow remote attackers to inject arbitrary web script or HTML via the 1 begin parameter to index.php and the 2 searchtext parameter to search.php. NOTE: the provenance of this information is unknown; the details are obtained solel...

Sql injection

SQL injection vulnerability in departmentofflinecontext.php in ActiveCampaign TrioLive before 1.58.7 allows remote attackers to execute arbitrary SQL commands via the departmentid parameter to index.php...

CVE-2008-5055

SQL injection vulnerability in departmentofflinecontext.php in ActiveCampaign TrioLive before 1.58.7 allows remote attackers to execute arbitrary SQL commands via the departmentid parameter to index.php...

Sql injection

SQL injection vulnerability in index.php in Mole Group Pizza Script allows remote attackers to execute arbitrary SQL commands via the manufacturersid parameter...

CVE-2008-5047

The CVE-2008-5047 entry describes an SQL injection vulnerability in Mole Group Rental Script, specifically in admin/index.php where the username parameter can be exploited to execute arbitrary SQL commands. Affected software/component: Mole Group Rental Script’s admin/index.php. Root cause: impro...

CVE-2008-5046

CVE-2008-5046 describes an SQL injection in the Mole Group Pizza Script, via the manufacturers_id parameter handled in index.php. The root cause is improper input handling in that script, enabling remote attackers to execute arbitrary SQL commands. Affected software/component: Mole Group Pizza Sc...

ezcms-xss.txt

--------------------------------------------------------- Portal Name: Ez Cms Vendor : http://scriptsez.net Vulnerable File : index.php Dork: Powered by Scriptsez Inc Author : PouyaServer , [email protected] Vulnerability : XSS Cross site scripting...

CVE-2008-4931

Cross-site scripting XSS vulnerability in the account module in firmCHANNEL Digital Signage 3.24, and possibly earlier versions, allows remote attackers to inject arbitrary web script or HTML via the action parameter to index.php...

nicLOR Sito includefile Local File Inclusion Vulnerabilities

No description provided by source. ------------------------------------------------------------ Sito includefile in PHP Local File Inclusion Vulnerabilities ------------------------------------------------------------ Discovered By StAkeRathotmaildotit Download On...

sito-lfi.txt

------------------------------------------------------------ Sito includefile in PHP Local File Inclusion Vulnerabilities ------------------------------------------------------------ Discovered By StAkeRathotmaildotit Download On http://www.niclor.net/prodotti/includeSitoPHP/includeSitoPHP.zip...

HarlandScripts drinks (recid) Remote SQL Injection Velnerability

No description provided by source. =========================================== Drinks script. -------------------------------------------------------------------------------------- Vendor: http://www.fivedollarscripts.com Demo: http://www.fivedollarscripts.com/drinks/index.php Notified: No...

Cross site scripting

Cross-site scripting XSS vulnerability in error.php in NetRisk 2.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the error parameter to index.php. NOTE: some of these details are obtained from third party information...

Sql injection

SQL injection vulnerability in index.php in NetRisk 2.0 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter in a 1 profile page profile.php or 2 game page game.php. NOTE: some of these details are obtained from third party information...

shopcart-sql.txt

Shopping Cart index.php c Blind SQL Injection Vulnerability Author: Hussin X Home : www.IQ-TY.com & www.TrYaG.cc script :http://www.yourfreeworld.com/script/affiliateshoppingcart.php Demo : true & false http://www.downlinegoldmine.com/shopcart/index.php?c=12+and+substring@@version,1,1=4...

TBmnetCMS 1.0 (index.php content) Local File Inclusion Vulnerability

Exploit for unknown platform in category web applications ==================================================================== TBmnetCMS 1.0 index.php content Local File Inclusion Vulnerability ====================================================================...

accstatistics-insecure.txt

/ / \ / / / / / / / / / / / /\ / / / / / / / / / / / / / / \ / // // / / / / // // / // / / / / / / / // / / / / / / //, / // //,/// // // /,// // // // Discovered by : Hakxer Type Gap : AccStatistics v1.1 Insecure Cookie Handling Script : http://www.accscripts.com/accstatistics.html...

CVE-2008-4889

CVE-2008-4889 describes a SQL injection in the DZCP (deV!L'z Clanportal) 1.4.9.6 and earlier, triggered in the addbuddy operation via the users parameter in buddys. The vulnerability enables remote attackers with network access and no authentication to execute arbitrary SQL commands, with partial...

CVE-2008-4886

CVE-2008-4886 is a SQL injection vulnerability in the YourFreeWorld Shopping Cart Script, specifically in index.php via the c parameter. The root cause is unsanitized input leading to arbitrary SQL execution. The vulnerability affects the script and has a high base severity (CVSS v2: AV:N/AC:L/Au...

CVE-2008-4886

SQL injection vulnerability in index.php in YourFreeWorld Shopping Cart Script allows remote attackers to execute arbitrary SQL commands via the c parameter...

ModernBill 4.4.x - Cross-Site Scripting Remote File Inclusion

ModernBill 4.4.x - Cross-Site Scripting Remote File Inclusion ModernBill .:. Client Billing System - User Login ModernBill = v4.4.X Remote File Inclusion Vulnerability and xss by nigh7f411 http://xc0r3.net/ plezz go to ttp://xc0r3.net/forums/ rfi...