7210 matches found
CVE-2007-6085
Multiple cross-site scripting XSS vulnerabilities in index.php in VigileCMS 1.4 allow remote attackers to inject arbitrary web script or HTML via the message field in the 1 vedipm or 2 livechat module...
GetBlog local File inclusion ..
Hello,, GetBlog local File inclusion .. http://sourceforge.net/projects/geblog Discovered By : HACKERS PAL Copy rights : HACKERS PAL Website : http://www.soqor.net Email Address : [email protected] Exploit : - tpl/Default/index.php?tplname=../../../../../../../etc/passwd00 WwW.SoQoR.NeT...
CVE-2007-6085
Multiple cross-site scripting XSS vulnerabilities in index.php in VigileCMS 1.4 allow remote attackers to inject arbitrary web script or HTML via the message field in the 1 vedipm or 2 livechat module...
CVE-2007-6085
CVE-2007-6085 relates to multiple cross-site scripting (XSS) flaws in VigileCMS 1.4 affecting index.php, where an attacker can inject arbitrary script/HTML through the message field in the vedipm or live_chat modules. Impact is described as partial integrity impact with no confidentiality or avai...
CVE-2007-6086
Directory traversal vulnerability in index.php in VigileCMS 1.4 allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the module parameter...
CVE-2007-6083
IceBB 1.0-rc6 contains a SQL injection in admin/index.php exploitable via the X-Forwarded-For HTTP header. Remote attackers can execute arbitrary SQL commands. The connected documents confirm the affected software and vulnerability class, but do not provide remediation steps or patched versions. ...
Vulnerability in ExpressionEngine
Здравствуйте 3APA3A! Сообщаю вам о найденной мною HTTP Response Splitting уязвимости в системе ExpressionEngine. Которая может быть использована в частности для проведения Cross-Site Scripting атаки. XSS: Уязвимость в скрипте index.php в параметре URL...
CVE-2007-6090
Cross-site scripting XSS vulnerability in index.php in Nuked-Klan 1.7.5 allows remote attackers to inject arbitrary web script or HTML via the file parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
CVE-2007-6057
PHP remote file inclusion vulnerability in index.php in datecomm Social Networking Script aka Myspace Clone Script allows remote attackers to execute arbitrary PHP code via a URL in the pg parameter...
Sql injection
Multiple SQL injection vulnerabilities in index.php in ProfileCMS 1.0 and earlier allow remote attackers to execute arbitrary SQL commands via the id parameter in a 1 codes action in the profile-codes module, 2 videos action in the video-codes module, or 3 games action in the arcade-games module...
CVE-2007-6058
ProfileCMS 1.0 and earlier contains multiple SQL injection flaws in index.php. The id parameter in three actions (profile-codes, video-codes, arcade-games) is exploitable, enabling remote attackers to execute arbitrary SQL via normal requests. The vulnerability is documented across multiple sourc...
meBiblio 0.4.5 (index.php action) Remote File Inclusion Vulnerability
No description provided by source. meBiblio 0.4.5 RFI --------------------- Author : ShAy6oOoN --------------------- Group : PitBull Crew --------------------- Script : meBiblio 0.4.5 --------------------- Download :...
meBiblio 0.4.5 - action Remote File Inclusion
meBiblio 0.4.5 - action Remote File Inclusion meBiblio 0.4.5 RFI --------------------- Author : ShAy6oOoN --------------------- Group : PitBull Crew --------------------- Script : meBiblio 0.4.5 --------------------- Download :...
meBiblio 0.4.5 - 'action' Remote File Inclusion
meBiblio 0.4.5 RFI --------------------- Author : ShAy6oOoN --------------------- Group : PitBull Crew --------------------- Script : meBiblio 0.4.5 --------------------- Download : http://downloads.sourceforge.net/mebiblio/meBiblio-0.4.5.tar.gz?modtime=1195237984&bigmirror=0 --------------------...
meBiblio 0.4.5 (index.php action) Remote File Inclusion Vulnerability
Exploit for unknown platform in category web applications ===================================================================== meBiblio 0.4.5 index.php action Remote File Inclusion Vulnerability ===================================================================== meBiblio 0.4.5 RFI...
Myspace Clone Script - 'index.php' Remote File Inclusion
|S n I p E r - S A . C o m| SSSSS NNN NN II PPPPPPP EEEEEEEEE RRRRR SS NN NN NN II PP P EE RR RR S NN NN NN II PP P EE RR R SS NN NN NN II PPPPPPP EE RR RR SSSS NN NN NN II PPP EEEEEEE RRRR SS NN NN NN II PP EE RRRR S NN NN NN II PP EE RR RR SS NN NNN II PP EE RR RR SSSSS NN NNN II PP EEEEEEEEEE ...
Sql injection
SQL injection vulnerability in index.php in datecomm Social Networking Script aka Myspace Clone Script allows remote attackers to execute arbitrary SQL commands via the seid parameter in a viewcat s action on the forums page...
Sql injection
SQL injection vulnerability in index.php in ExoPHPdesk allows remote attackers to execute arbitrary SQL commands via the user parameter in a profile fn action...
CVE-2007-6001
Multiple cross-site scripting XSS vulnerabilities in index.php in Bandersnatch 0.4 allow remote attackers to inject arbitrary web script or HTML via the 1 func or 2 date parameter, or the jid parameter in a 3 log or 4 user action, a different vulnerability than CVE-2007-3910...
Sql injection
Multiple SQL injection vulnerabilities in index.php in Toko Instan 7.6 allow remote attackers to execute arbitrary SQL commands via 1 the id parameter in an artikel action or 2 the katid parameter in a produk action...