Lucene search
K

7210 matches found

Prion
Prion
added 2007/09/12 7:17 p.m.17 views

Sql injection

SQL injection vulnerability in index.php in phpMyQuote 0.20 allows remote attackers to execute arbitrary SQL commands via the id parameter in an edit action...

7.5CVSS9.1AI score0.01299EPSS
Exploits0References7Affected Software1
CVE
CVE
added 2007/09/12 7:0 p.m.43 views

CVE-2007-4835

The CVE-2007-4835 entry describes an SQL injection in phpMyQuote 0.20, exploitable via the id parameter in an edit action of index.php. The vulnerability allows remote attackers to execute arbitrary SQL commands, as indicated by the description and multiple sources (NVD entry). The root cause is ...

7.5CVSS8.4AI score0.01299EPSS
Exploits0References7Affected Software1
securityvulns
securityvulns
added 2007/09/11 12:0 a.m.5126 views

CRS Manager ($DOCUMENT_ROOT) Multi Remote File Include

X---- w w w . u N k n 0 w n . e u ----X CRS Managercrsmanager Multi Remote File Include ::Home: http://crsmanager.berlios.de ::Vuln Type : Remote File Include RFI ::Discovered by : iNs ::Vuln Code: index.php login.php ?php require $DOCUMENTROOT."/../admin/settings/conf.php"; PoC:...

0.9AI score
Exploits0
Exploit DB
Exploit DB
added 2007/09/08 12:0 a.m.50 views

Txx CMS 0.2 - Multiple Remote File Inclusions

:::::::::::::::::::::::::::::::::::::::::::::::::::....................... ::| \ | | \ | | / | ::| | | | | | | | ::| . | |/ / \ | . |/ | ' \ / \ | | | '/ \ \ /\ / / ::| |\ | | | / | |\ | | | | | | | | / | || | | /\ V V / ::|| ||\| || |,|| || ||| || | // :::::::::::::::::::::::::::::We...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2007/09/07 12:0 a.m.32 views

RW::Download 2.0.3 lite - index.php?dlid SQL Injection

RW::Download 2.0.3 lite - index.php?dlid SQL Injection RW::Download v2.0.3 lite - Remote SQL Injection Vendor : http://www.rwscripts.com/ Ditemukan oleh : k1tk4t - k1tk4t4tnewhack.org Lokasi : Indonesia -- newhackdotorg @ irc.dal.net Dork : "Powered by RW::Download v2.0.3 lite"...

0.2AI score
Exploits0
0day.today
0day.today
added 2007/09/03 12:0 a.m.71 views

eNetman v.20050830 (index.php page) Remote File Inclusion Vulnerability

Exploit for unknown platform in category web applications ======================================================================= eNetman v.20050830 index.php page Remote File Inclusion Vulnerability ======================================================================= Title : eNetman - The...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2007/09/03 12:0 a.m.11 views

eNetman 20050830 - index.php Remote File Inclusion

eNetman 20050830 - index.php Remote File Inclusion Title : eNetman - The Enchanced Network Manager Remote File Inclusion URL : http://freshmeat.net/projects/enetman/ Author : JaheeM Exploit : senetman/html/index.php?page= Thanks To : asc, IRC.ASCNET.BIZ milw0rm.com 2007-09-03...

0.2AI score
Exploits0
CVE
CVE
added 2007/08/31 11:0 p.m.50 views

CVE-2007-4645

CVE-2007-4645 affects NMDeluxe 2.0.0; SQL injection vulnerability in index.php (via the newspost do action id parameter) allows remote attackers to execute arbitrary SQL commands. Root cause appears to be unsanitized input used in SQL queries. The provided connected documents confirm the version ...

6.4CVSS8.2AI score0.01165EPSS
Exploits0References6Affected Software1
CVE
CVE
added 2007/08/31 11:0 p.m.55 views

CVE-2007-4641

CVE-2007-4641 affects Pakupaku CMS 0.4 and earlier. A directory traversal flaw in index.php allows remote attackers to include and execute arbitrary local files by manipulating the page parameter with .., demonstrated by injecting code into an Apache log file. This enables partial confidentiality...

6.4CVSS7.2AI score0.02666EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2007/08/31 1:0 a.m.43 views

CVE-2007-4627

CVE-2007-4627 describes an SQL injection in ABC eStore 3.0’s index.php, exploitable via the cat_id parameter to execute arbitrary SQL. Root cause: unsafe SQL construction in index.php. Impact stated as partial confidentiality, integrity, and availability. NVD/metrics cite a CVSS v2 base score 7.5...

7.5CVSS8.4AI score0.01061EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2007/08/31 12:17 a.m.14 views

CVE-2007-4603

Multiple SQL injection vulnerabilities in index.php in ACG News 1.0 allow remote attackers to execute arbitrary SQL commands via 1 the aid parameter in a showarticle action or 2 the catid parameter in a showcat action...

7.5CVSS8.5AI score0.0124EPSS
Exploits0References7
Cvelist
Cvelist
added 2007/08/30 5:0 p.m.24 views

CVE-2007-4597

SQL injection vulnerability in index.php in TurnkeyWebTools SunShop Shopping Cart 4.0 RC 6 allows remote attackers to execute arbitrary SQL commands via the scid parameter in a searchlist action, a different vector than CVE-2007-2549...

8.1AI score0.01006EPSS
Exploits0References3
Exploit DB
Exploit DB
added 2007/08/30 12:0 a.m.35 views

NMDeluxe 2.0.0 - 'id' SQL Injection

not sec group http://www.notsec.com [email protected] NMDeluxe 2.0.0 Class: SQL Injection Found: 30/08/2007 Remote: Yes Site: http://www.wsdeluxe.com/nmdeluxe/ Download: http://downloads.sourceforge.net/nmdeluxe/nmdeluxe2.0.0.zip?modtime=1178396844&bigmirror=0 Vulnerable code: index.php...

7AI score
Exploits0
seebug.org
seebug.org
added 2007/08/29 12:0 a.m.18 views

ACG News 1.0 (aid/catid) Remote SQL Injection Vulnerabilities

No description provided by source. ACG News SQL Injection Software: ACG News 1.0 Vendor link: http://www.altercoder.com Vendor Demo link: http://acgnews.uw.hu/index.php Attack: SQL Injection Original Advisory: http://14house.blogspot.com/2007/08/acg-news-sql-injection.html Discovered by: David...

7.1AI score
Exploits0
0day.today
0day.today
added 2007/08/29 12:0 a.m.16 views

ABC estore 3.0 (cat_id) Remote Blind SQL Injection Exploit

Exploit for unknown platform in category web applications ========================================================== ABC estore 3.0 catid Remote Blind SQL Injection Exploit ========================================================== !/usr/bin/perl use LWP::UserAgent; use Getopt::Long; if!$ARGV1...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2007/08/29 12:0 a.m.35 views

ABC estore 3.0 - 'cat_id' Blind SQL Injection

!/usr/bin/perl use LWP::UserAgent; use Getopt::Long; if!$ARGV1 print "\n |-------------------------------------------------|"; print "\n | newhackdotorg |"; print "\n |-------------------------------------------------|"; print "\n | ABC estore 3.0 catid Blind SQL Injection |"; print "\n | Found b...

7.4AI score
Exploits0
Prion
Prion
added 2007/08/28 12:17 a.m.14 views

Sql injection

SQL injection vulnerability in index.php in Agares Media Arcadem 2.01 allows remote attackers to execute arbitrary SQL commands via the blockpage parameter. NOTE: as of 20070827, the vendor has made conflicting statements regarding whether this issue exists or not...

7.5CVSS9.1AI score0.01002EPSS
Exploits1References5Affected Software1
FreeBSD
FreeBSD
added 2007/08/27 12:0 a.m.19 views

tikiwiki -- multiple vulnerabilities

Secunia reports: Some vulnerabilities have been reported in TikiWiki, which can be exploited by malicious people to conduct cross-site scripting and script insertion attacks and disclose potentially sensitive information. Input passed to the username parameter in tiki-remindpassword.php when remi...

7.5CVSS6.8AI score0.03024EPSS
Exploits1References2
Packet Storm
Packet Storm
added 2007/08/24 12:0 a.m.30 views

mamboremository-sql.txt

Title : Mambo Component RemoSitory cat Remote SQL Injection Vulnerability Author : ajann Contact : : S.Page : http://www.remository.com/ $$ : Free Dork : inurl:func=selectcat + comremository // Result:43.400 DorkEx :...

7.4AI score
Exploits0
Prion
Prion
added 2007/08/23 7:17 p.m.9 views

Sql injection

SQL injection vulnerability in index.php in the RemoSitory component comremository for Mambo allows remote attackers to execute arbitrary SQL commands via the cat parameter in a selectcat action...

7.5CVSS9.1AI score0.01029EPSS
Exploits0References3
Rows per page
Query Builder