Lucene search
K

7210 matches found

CVE
CVE
added 2007/10/05 11:0 p.m.66 views

CVE-2007-5233

Affected product: Web Templates Management (1.3) — index.php SQL Injection vulnerability. Root cause: inadequate sanitization of user-supplied data before constructing SQL queries. Impact (as stated): attacker could compromise the application and access or modify data via the SQL injection vector...

7.5CVSS8.3AI score0.01037EPSS
Exploits0References5Affected Software1
securityvulns
securityvulns
added 2007/10/04 12:0 a.m.93 views

DRBGuestbook Remote XSS Vulnerability

Oo Title: DRBGuestbook Remote XSS Vulnerability Download: http://www.hotscripts.com/jump.php?listingid=67702&jumptype=1 Author: Gokhan Contact: [email protected] | KAF KAF KAF SIN SIN SIN KAFSIN KAFSIN KAF Vuln Code: index.php XSS:...

0.7AI score
Exploits0
Prion
Prion
added 2007/10/03 2:17 p.m.20 views

Sql injection

SQL injection vulnerability in index.php in the MambAds commambads 1.5 and earlier component for Mambo allows remote attackers to execute arbitrary SQL commands via the caid parameter...

7.5CVSS8.8AI score0.00987EPSS
Exploits1References4Affected Software1
CVE
CVE
added 2007/10/03 2:0 p.m.50 views

CVE-2007-5177

CVE-2007-5177 describes an SQL injection in the MambAds (com_mambads) component for Mambo, affected in version 1.5 and earlier. The vulnerability is triggered via the caid parameter in index.php, allowing remote attackers to manipulate SQL commands. The connected documents also corroborate relate...

7.5CVSS8.4AI score0.00987EPSS
Exploits1References4Affected Software2
Packet Storm
Packet Storm
added 2007/10/03 12:0 a.m.26 views

drbguestbook-xss.txt

Oo Title: DRBGuestbook Remote XSS Vulnerability Download: http://www.hotscripts.com/jump.php?listingid=67702&jumptype=1 Author: Gokhan Contact: [email protected] | KAF KAF KAF SIN SIN SIN KAFSIN KAFSIN KAF Vuln Code: index.php XSS: http://site/guestbook/index.php?action=alert"XSS"; Tum islam...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2007/10/01 12:0 a.m.35 views

Segue CMS 1.8.4 - 'index.php' Remote File Inclusion

?????????? ??????????????? ??????????????????? ??????????????????????? ?????????????????????????? ?????????????????????????????? ????????????????????????????????? ??????????????????????????????????? ????????????????????????????????????? ???????????????????????????????????????...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2007/09/30 12:0 a.m.38 views

mambads-sql.txt

Mambads = 1.5 Sql Injection Autor:Sniper456 Contact:Sniper456atgmail.kom Greetss: PescaoDeth, Daemon21, Vampirin456, Shh-2, CodeBreak and the chilean People ; SQL: index.php?option=commambads&Itemid=0&func=detail&cacat=1&casb=1&caid=inyecta maricon Example:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2007/09/29 12:0 a.m.27 views

MD-Pro 1.0.76 - SQL Injection

!/usr/bin/perl use strict; use IO::Socket; my $app = "MDPro 1.0.76"; my $type = "SQL Injection"; my $author = "undefined1"; my $settings = "magicquotesruntime = off, mysql = 4.1.0"; $| = 1; print ":: $app $type - by $author ::\n\n\n"; my $url = shift || usage; if$url = m/^?:http://./ $url = $1;...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2007/09/29 12:0 a.m.20 views

MD-Pro 1.0.76 - 'index.php' Firefox ID SQL Injection

source: https://www.securityfocus.com/bid/25864/info MD-Pro is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to compromise the application, access or modi...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2007/09/29 12:0 a.m.21 views

MD-Pro 1.0.76 - index.php Firefox ID SQL Injection

MD-Pro 1.0.76 - index.php Firefox ID SQL Injection source: https://www.securityfocus.com/bid/25864/info MD-Pro is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an...

0.3AI score
Exploits0
0day.today
0day.today
added 2007/09/29 12:0 a.m.31 views

Mambo Component Mambads <= 1.5 Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications ================================================================= Mambo Component Mambads = 1.5 Remote SQL Injection Vulnerability ================================================================= Mambads = 1.5 Sql Injection Autor:Sniper45...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2007/09/29 12:0 a.m.33 views

Mambo Component Mambads 1.5 - SQL Injection

Mambo Component Mambads 1.5 - SQL Injection Mambads = 1.5 Sql Injection Autor:Sniper456 Contact:Sniper456atgmail.kom Greetss: PescaoDeth, Daemon21, Vampirin456, Shh-2, CodeBreak and the chilean People ; SQL: index.php?option=commambads&Itemid=0&func=detail&cacat=1&casb=1&caid=inyecta maricon...

0.7AI score
Exploits0
CVE
CVE
added 2007/09/27 7:0 p.m.43 views

CVE-2007-5131

CVE-2007-5131 affects Interspire ActiveKB NX 2.x. The vulnerability is a SQL injection in index.php when handling the browse action via the catId parameter, enabling remote execution of arbitrary SQL commands. Note that ActiveKB 1.5 is also reported to be affected. The linked references confirm t...

7.5CVSS8.2AI score0.01169EPSS
Exploits1References6Affected Software1
Cvelist
Cvelist
added 2007/09/26 11:0 p.m.23 views

CVE-2007-5109

Cross-site request forgery CSRF vulnerability in index.php in FlatNuke 2.6, and possibly 3, allows remote attackers to change the password and privilege level of arbitrary accounts via the user parameter and modified 1 regpass and 2 level parameters in a noneLogin action, as demonstrated by using...

7.4AI score0.00556EPSS
Exploits0References5
Prion
Prion
added 2007/09/26 10:17 p.m.12 views

Sql injection

SQL injection vulnerability in index.php in the Arcade module in bcoos 1.0.10 allows remote attackers to execute arbitrary SQL commands via the gid parameter in a playgame action. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

7.5CVSS8.3AI score0.01051EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2007/09/26 10:17 p.m.16 views

CVE-2007-5104

SQL injection vulnerability in index.php in the Arcade module in bcoos 1.0.10 allows remote attackers to execute arbitrary SQL commands via the gid parameter in a playgame action. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

7.5CVSS7.8AI score0.01051EPSS
Exploits0References3
CVE
CVE
added 2007/09/26 10:0 p.m.43 views

CVE-2007-5104

The provided connected records describe SQL injection vulnerabilities in the bcoos package (versions 1.0.10 and earlier). For CVE-2007-5104, remote attackers can inject via the gid parameter to modules/arcade/index.php in a show_stats action. For CVE-2007-6266, similar issues allow injection via ...

7.5CVSS7.8AI score0.01051EPSS
Exploits0References3Affected Software1
exploitpack
exploitpack
added 2007/09/26 12:0 a.m.14 views

ActiveKB KnowledgeBase 2.x - catId SQL Injection

ActiveKB KnowledgeBase 2.x - catId SQL Injection ActiveKB NX 2.? Powered by ActiveKB Knowledgebase Software index.php SQL Injection Discovered by Luna-Tic and XTErner 19 Years Ukrainian Hackers Vendor:www.interspire.com/activekb/ License:sharewere Exploit:/kb/index.php?ToDo=browse&catId=SQL CODE...

8.6AI score
Exploits0
Packet Storm
Packet Storm
added 2007/09/25 12:0 a.m.19 views

neuron-lfi.txt

\|/// \ - - // Y! Underground Group @ @ ----oOOo---oOOo-------------------------------------------------- Portal : Neuron News 1.0 Download : http://downloads.localhost.be/scripts/neuronnews.zip Author : Dj7xpl HomePage : http://r00t.ir / http://Dj7xpl.2600.ir Type : Local File Inclusion...

7.4AI score
Exploits0
NVD
NVD
added 2007/09/24 11:17 p.m.17 views

CVE-2007-5068

SQL injection vulnerability in index.php in phpFullAnnu PFA 6.0 allows remote attackers to execute arbitrary SQL commands via the mod parameter...

7.5CVSS8.4AI score0.01037EPSS
Exploits0References5
Rows per page
Query Builder