CVE-2008-3250

The CVE-2008-3250 entry describes a SQL injection in Arctic Issue Tracker 2.0.0, exploitable through the filter parameter in index.php to remotely execute arbitrary SQL commands. The NVD entry lists a CVSS v2 base score of 7.5 (HIGH). No specific patch/version details or exploits are provided in ...

Aprox CMS Engine 5.1.0.4 (index.php page) SQL Injection Vulnerability

No description provided by source...

precms-sql.txt

Viva IslaM Viva IslaM Remote SQL injection Vulnerability preCMS v.1 index.php page AuTh0r : Mr.SQL H0ME : WwW.PaL-HaCkEr.CoM & WwW.AtsDp.CoM/f Email : [email protected] SYRIAN Arab HACkErS -: Exploite :-...

preCMS v.1 (index.php page) Remote SQL injection Vulnerability

No description provided by source. Viva IslaM Viva IslaM Remote SQL injection Vulnerability preCMS v.1 index.php page AuTh0r : Mr.SQL H0ME : WwW.PaL-HaCkEr.CoM & WwW.AtsDp.CoM/f Email : [email protected] SYRIAN Arab HACkErS -: Exploite :-...

Aprox CMS Engine 5.1.0.4 - index.php SQL Injection

Aprox CMS Engine 5.1.0.4 - index.php SQL Injection Viva IslaM Viva IslaM Remote SQL injection Vulnerability Aprox CMS Engine V5.1.0.4 index.php page AuTh0r : Mr.SQL H0ME : WwW.PaL-HaCkEr.CoM && WwW.AtsDp.CoM/f Email : [email protected] SYRIAN Arab HACkErS -: Exploite :-...

Cross-Site Scripting vulnerabilities in CNCat

Здравствуйте 3APA3A! Сообщаю вам о найденных мною Cross-Site Scripting уязвимостях в CNCat. XSS: Уязвимости в add.php можно как через GET, так и через POST, search.php и index.php. http://site/add.php?description=3C/textarea3E3Cscript3Ealertdocument.cookie3C/script3E...

Aprox CMS Engine 5.1.0.4 (index.php page) SQL Injection Vulnerability

Exploit for unknown platform in category web applications ===================================================================== Aprox CMS Engine 5.1.0.4 index.php page SQL Injection Vulnerability ===================================================================== Viva IslaM Viva IslaM Remote SQ...

Aprox CMS Engine 5.1.0.4 - 'index.php' SQL Injection

Viva IslaM Viva IslaM Remote SQL injection Vulnerability Aprox CMS Engine V5.1.0.4 index.php page AuTh0r : Mr.SQL H0ME : WwW.PaL-HaCkEr.CoM && WwW.AtsDp.CoM/f Email : [email protected] SYRIAN Arab HACkErS -: Exploite :-...

CVE-2008-3201

CVE-2008-3201 involves multiple XSS vulnerabilities in Pagefusion 1.5. The issues affect index.php in Pagefusion 1.5, where unsanitized user input via the edit action can be injected through five parameters: acct_fname, acct_lname, PID, PGID, and rez. The underlying cause is insufficient input sa...

CVE-2008-3201

Multiple cross-site scripting XSS vulnerabilities in index.php in Pagefusion 1.5 allow remote attackers to inject arbitrary web script or HTML via the 1 acctfname and 2 acctlname parameters in an edit action, and the 3 PID, 4 PGID, and 5 rez parameters. NOTE: the provenance of this information is...

preCMS 1 - index.php SQL Injection

preCMS 1 - index.php SQL Injection Viva IslaM Viva IslaM Remote SQL injection Vulnerability preCMS v.1 index.php page AuTh0r : Mr.SQL H0ME : WwW.PaL-HaCkEr.CoM & WwW.AtsDp.CoM/f Email : [email protected] SYRIAN Arab HACkErS -: Exploite :-...

preCMS v.1 (index.php page) Remote SQL injection Vulnerability

Exploit for unknown platform in category web applications ============================================================== preCMS v.1 index.php page Remote SQL injection Vulnerability ============================================================== Viva IslaM Viva IslaM Remote SQL injection...

preCMS 1 - 'index.php' SQL Injection

Viva IslaM Viva IslaM Remote SQL injection Vulnerability preCMS v.1 index.php page AuTh0r : Mr.SQL H0ME : WwW.PaL-HaCkEr.CoM & WwW.AtsDp.CoM/f Email : [email protected] SYRIAN Arab HACkErS -: Exploite :-...

CVE-2008-3192

Directory traversal vulnerability in index.php in jSite 1.0 OE allows remote attackers to include and execute arbitrary local files via a .. dot dot in the module parameter...

CVE-2008-3185

Relative Real Estate Systems 3.0 and earlier are affected by an SQL injection in index.php, exploitable via the listing_id parameter in a listings action. Remote attackers can execute arbitrary SQL commands as described in CVE-2008-3185 records (NVD, CVE list). The connected documents provide vul...

WebCMS Portal Edition 'index.php' SQL注入漏洞

BUGTRAQ ID: 30204 CNCAN ID：CNCAN-2008071502 WebCMS Portal Edition是一款基于PHP的WEB应用程序。 WebCMS Portal Edition不正确处理用户提交的输入，远程攻击者可以利用漏洞进行SQL注入攻击，可能获得敏感信息或操作数据库。 问题由于'index.php'脚本对用户提交给'id'参数缺少过滤，构建恶意SQL查询作为参数数据，可更改原来的SQL逻辑，获得敏感信息或操作数据库。 WebCMS Portal Edition 目前没有解决方案提供： http://www.webcms.es/...

Wysi Wiki Wyg 1.0 (index.php c) Local File Inclusion Vulnerability

No description provided by source. --==+=========================================================+==-- --==+ Wizi Wiki Wig Local File Inclusion Vulnerability +==-- --==+=========================================================+==-- Discovered By: StAkeR [email protected] Discovered On: 10 Jul 200...

Joomla! Component n-forms 1.01 - Blind SQL Injection

Joomla! Component n-forms 1.01 - Blind SQL Injection !/usr/bin/perl use LWP::UserAgent; use Getopt::Long; if!$ARGV1 print " \n"; print " \n"; print " Mambot Component n-forms Blind SQL Injection Exploit \n"; print " Author:The Moorish :D \n"; print "...

WebCMS Portal Edition - id SQL Injection

WebCMS Portal Edition - id SQL Injection Viva IslaM Viva IslaM Remote SQL InjEcti0n Vulnerability WebCMS Portal index.php menu AuTh0r : Mr.SQL H0ME : WwW.PaL-HaCkEr.CoM && WwW.AtsDp.CoM/f Email : [email protected] SYRIAN Arab HACkErS Name : WebCMS Portal Site : www.webcms.es -:: L!VE DEMO ::-...

WebCMS Portal Edition (id) Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications ============================================================= WebCMS Portal Edition id Remote SQL Injection Vulnerability ============================================================= Viva IslaM Viva IslaM Remote SQL InjEcti0n Vulnerabilit...