CVE-2008-2788

Cross-site scripting XSS vulnerability in index.php in OpenDocMan 1.2.5 allows remote attackers to inject arbitrary web script or HTML via the redirection parameter...

Sql injection

SQL injection vulnerability in index.php in FreeCMS 0.2 allows remote attackers to execute arbitrary SQL commands via the page parameter...

Sql injection

SQL injection vulnerability in index.php in eroCMS 1.4 and earlier allows remote attackers to execute arbitrary SQL commands via the site parameter...

CVE-2008-2792

CVE-2008-2792 is a SQL injection vulnerability in eroCMS 1.4 and earlier, affecting index.php where an attacker can inject via the site parameter to execute arbitrary SQL commands. The connected records confirm the affected software (eroCMS prior to 1.4) and the vulnerable component (index.php), ...

CVE-2008-2796

CVE-2008-2796 concerns a SQL injection in FreeCMS 0.2, triggered via the page parameter in index.php. The vulnerability arises from unsafely composing SQL queries with user-supplied input, allowing remote attackers to execute arbitrary SQL commands. Affected software is FreeCMS 0.2 (index.php: pa...

CVE-2008-2788

CVE-2008-2788 is an XSS vulnerability affecting OpenDocMan 1.2.5, reported in multiple sources. The issue resides in index.php, where the redirection parameter can be exploited by remote attackers to inject arbitrary web script or HTML. The vulnerability is described consistently across CVE recor...

CVE-2008-2789

CVE-2008-2789 describes an SQL injection in BASIC-CMS affecting the file pages/index.php via the page_id parameter. The vendor-agnostic description states remote attackers can manipulate SQL commands, enabling arbitrary SQL execution. The available connected data confirms the affected product (BA...

BoatScripts Classifieds (index.php type) SQL Injection Vulnerability

No description provided by source. BoatScripts Classifieds Sql INjection By Stack Home v4-team.com poc : http://site.co.il/index.php?type=-1//UNION//SELECT//concatchar58,user,version,database/ live demo tested...

Carscripts Classifieds (index.php cat) Remote SQL Injection Vulnerability

No description provided by source. Carscripts Classifieds Sql INjection By Stack Home v4-team.com + : you can see the Result in 'Title' + : Open the source page to see the result poc : http://site.co.il/index.php?cat=-1//UNION//SELECT//concatchar58,user,version,database,2,3/ live demo...

FireAnt 1.3 - index.php Local File Inclusion

FireAnt 1.3 - index.php Local File Inclusion Name : FireAnt v1.3 Local File Inclusion Vulnerability Author : cOndemned Dork : use Your brain : Greetz : ZaBeaTy, str0ke, GregStar, irk4z, Sandtalker & Avantura ; Source : // index.php 8. $page = "buglist"; //default page 9. if !empty$GET'page' 10...

FubarForum 1.5 - index.php Local File Inclusion

FubarForum 1.5 - index.php Local File Inclusion Name : FubarForum v1.5 Local File Inclusion Vulnerability Author : cOndemned Dork : for ex. "Powered by FubarForum v1.5" Greetz : TBH, GregStar, ZaBeaTy, irk4z, Hawk, Sandtalker & Avantura ; Source : // index.php 5. if !empty$GET'page' $page =...

FireAnt 1.3 (index.php page) Local File Inclusion Vulnerability

Exploit for unknown platform in category web applications =============================================================== FireAnt 1.3 index.php page Local File Inclusion Vulnerability =============================================================== Name : FireAnt v1.3 Local File Inclusion...

FubarForum 1.5 (index.php page) Local File Inclusion Vulnerability

Exploit for unknown platform in category web applications ================================================================== FubarForum 1.5 index.php page Local File Inclusion Vulnerability ================================================================== Name : FubarForum v1.5 Local File...

emuCMS 0.3 - cat_id SQL Injection

emuCMS 0.3 - catid SQL Injection AUTHOR : TurkishWarriorr HOME : http://www.1923turk.org Dork : Powered by emuCMS exploit : index.php?page=category&catid=-9999+union+all+select+1,concatuser,char58,passw ,char58,email,3,null,null,null,7,8,9,10,11,null +from+users-- Test Sites...

fubarforum-lfi.txt

Name : FubarForum v1.5 Local File Inclusion Vulnerability Author : cOndemned Dork : for ex. "Powered by FubarForum v1.5" Greetz : TBH, GregStar, ZaBeaTy, irk4z, Hawk, Sandtalker & Avantura ; Source : // index.php 5. if !empty$GET'page' $page = $GET'page'; // ---- $page is being sended using GET...

FireAnt 1.3 - 'index.php' Local File Inclusion

Name : FireAnt v1.3 Local File Inclusion Vulnerability Author : cOndemned Dork : use Your brain : Greetz : ZaBeaTy, str0ke, GregStar, irk4z, Sandtalker & Avantura ; Source : // index.php 8. $page = "buglist"; //default page 9. if !empty$GET'page' 10. $page = striptags$GET'page'; 99. if...

FubarForum 1.5 - 'index.php' Local File Inclusion

Name : FubarForum v1.5 Local File Inclusion Vulnerability Author : cOndemned Dork : for ex. "Powered by FubarForum v1.5" Greetz : TBH, GregStar, ZaBeaTy, irk4z, Hawk, Sandtalker & Avantura ; Source : // index.php 5. if !empty$GET'page' $page = $GET'page'; // ---- $page is being sended using GET...

Sql injection

SQL injection vulnerability in index.php in DZOIC Handshakes 3.5 allows remote attackers to execute arbitrary SQL commands via the fname parameter in a members search action...

CVE-2008-2781

The CVE-2008-2781 issue affects DZOIC Handshakes 3.5 (index.php) where the fname parameter in a members search action is vulnerable to SQL injection, allowing remote attackers to execute arbitrary SQL commands. Root cause: improper input handling in the search logic leads to unescaped user input ...

Easy Webstore 1.2 (index.php postid) Remote SQL Injection Vulnerability

No description provided by source. Viva IslaM Viva IslaM Remote SQL Injection Vulnerability Easy Webstore v1.2 index.php catpath AuTh0r : Mr.SQL H0ME : WwW.PaL-HaCkEr.CoM & WwW.ATsDp.CoM Email : [email protected] !! SYRIAN HaCkErS !! Script : Easy Webstore v1.2 site : www.webstorexpert.com d0rk :...