7210 matches found
ScriptMagix Lyrics 2.0 - 'index.php?recid' SQL Injection
!/usr/bin/perl Script Name: ScriptMagix Lyrics : "; $dir = ; chop $dir; if $dir = /exit/ print "-- Exploit FailedYou Are Exited \n"; exit; if $dir = /// else print "-- Exploit FailedNo DIR \n"; exit; $target =...
ScriptMagix Recipes <= 2.0 (index.php catid) SQL Injection Exploit
Exploit for unknown platform in category web applications ================================================================== ScriptMagix Recipes : "; $dir = ; chop $dir; if $dir = /exit/ print "-- Exploit FailedYou Are Exited \n"; exit; if $dir = /// else print "-- Exploit FailedNo DIR \n"; exit;...
ScriptMagix FAQ Builder 2.0 - index.php SQL Injection
ScriptMagix FAQ Builder 2.0 - index.php SQL Injection !/usr/bin/perl Script Name: ScriptMagix FAQ Builder : "; $dir = ; chop $dir; if $dir = /exit/ print "-- Exploit FailedYou Are Exited \n"; exit; if $dir = /// else print "-- Exploit FailedNo DIR \n"; exit; $target =...
ScriptMagix Jokes 2.0 - 'index.php?catid' SQL Injection
!/usr/bin/perl Script Name: ScriptMagix Jokes : "; $dir = ; chop $dir; if $dir = /exit/ print "-- Exploit FailedYou Are Exited \n"; exit; if $dir = /// else print "-- Exploit FailedNo DIR \n"; exit; $target =...
WebLog (index.php file) Remote File Disclosure Vulnerability
.-""""""""-. / Dj7xpl | | |, .-. .-. ,| | o/ o | |/ / | @ ^^ |IIIIII|/ @8@8|-IIIIII/-| / / @ +Iranian Are The Best In World+ Portal : weblog Download : http://www.holtstraeter.com/cybercheffe/pages/websoft.php?action=websoftpagefive Author : Dj7xpl | Dj7xp...
Sql injection
SQL injection vulnerability in index.php in WBBlog allows remote attackers to execute arbitrary SQL commands via the eid parameter in a viewentry cmd...
Directory traversal
Directory traversal vulnerability in index.php in Sascha Schroeder aka CyberTeddy or Cyber-inside WebLog allows remote attackers to read arbitrary files via a .. dot dot in the file parameter in a showarticles action...
CVE-2007-1481
SQL injection vulnerability in index.php in WBBlog allows remote attackers to execute arbitrary SQL commands via the eid parameter in a viewentry cmd...
CVE-2007-1477
Directory traversal vulnerability in index.php in PHP Point Of Sale for osCommerce 1.1 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the cfglanguage parameter. NOTE: this issue has been disputed by CVE, since the cfglanguage variable is configured upon...
CVE-2007-1487
Directory traversal vulnerability in index.php in Sascha Schroeder aka CyberTeddy or Cyber-inside WebLog allows remote attackers to read arbitrary files via a .. dot dot in the file parameter in a showarticles action...
CVE-2007-1482
Summary: CVE-2007-1482 is an XSS vulnerability in WBBlog’s index.php, exploited via the e_id parameter in a viewentry cmd. Affected component: WBBlog, index.php. The underlying issue is a Cross-site scripting flaw that allows remote attackers to inject arbitrary web script or HTML. Impact (as sta...
CVE-2007-1487
Directory traversal in Sascha Schroeder (CyberT Teddy) WebLog: index.php showsArticles action vulnerable to reading arbitrary files via .. in the file parameter. Root cause is improper input handling allowing path traversal. Impact stated as read access to arbitrary files; no exploit specifics or...
CVE-2007-1481
CVE-2007-1481 describes an SQL injection in the WBBlog application. The vulnerability resides in index.php, where an attacker can manipulate the e_id parameter in a viewentry command to execute arbitrary SQL. The NVD entry lists a CVSS v2 base score of 7.5 (HIGH), with network attack vector and n...
ZomPlog <= 3.7.6 Local File Inclusion Vulnerabilty (win32)
No description provided by source. Made by Bl0od3r tech-bl0od3r.blogspot.com use IO::Socket; use Switch; $port = "80"; $target = @ARGV0; $folder = @ARGV1; @paths= "../../../../../var/log/httpd/accesslog", "../../../../../var/log/httpd/errorlog", "../apache/logs/error.log",...
CVE-2007-1417
SQL injection vulnerability in index.php in HC NEWSSYSTEM 1.0-4 allows remote attackers to execute arbitrary SQL commands via the ID parameter in a komm aktion...
CVE-2007-1417
SQL injection vulnerability in index.php in HC NEWSSYSTEM 1.0-4 allows remote attackers to execute arbitrary SQL commands via the ID parameter in a komm aktion...
SonicMailer Pro <= 3.2.3 (index.php) Remote SQL Injection Exploit
No description provided by source. !/usr/bin/perl Script Name: SonicMailer Pro = 3.2.3 index.php Remote Blind SQL Injection Exploit Coded by : ajann Author : ajann Contact : : S.Page : http://www.triexa.com $$ : Standart License 89$ .. : ajann,Turkey use IO::Socket; if@ARGV 1 print "...
SonicMailer Pro 3.2.3 - 'index.php' SQL Injection
!/usr/bin/perl Script Name: SonicMailer Pro : "; $dir = ; chop $dir; if $dir = /exit/ print "-- Exploit FailedYou Are Exited \n"; exit; if $dir = /// else print "-- Exploit FailedNo DIR \n"; exit; $target =...
DEBIAN-CVE-2007-1395
Incomplete blacklist vulnerability in index.php in phpMyAdmin 2.8.0 through 2.9.2 allows remote attackers to conduct cross-site scripting XSS attacks by injecting arbitrary JavaScript or HTML in a 1 db or 2 table parameter value followed by an uppercase end tag, which bypasses the protection...
CVE-2007-1395
CVE-2007-1395 is an incomplete blacklist XSS vulnerability in phpMyAdmin 2.8.0–2.9.2, present in index.php where a (1) db or (2) table parameter value can inject arbitrary JavaScript/HTML, followed by an uppercase tag, bypassing lowercase filters. Multiple connected sources confirm this issue a...