WSCreator 1.1 - Blind SQL Injection

WSCreator 1.1 - Blind SQL Injection Name WSCreator Vendor http://www.wscreator.com Versions Affected 1.1 Author Salvatore Fresta aka Drosophila Website http://www.salvatorefresta.net Contact salvatorefresta at gmail dot com Date 2009-12-15 X. INDEX I. ABOUT THE APPLICATION II. DESCRIPTION III...

Digital Scribe 1.4.1 SQL Injection

Digital Scribe 1.4.1 Multiple SQL Injection Vulnerabilities Name Digital Scribe Vendor http://www.digital-scribe.org Versions Affected 1.4.1 Author Salvatore Fresta aka Drosophila Website http://www.salvatorefresta.net Contact salvatorefresta at gmail dot com Date 2009-12-11 X. INDEX I. ABOUT THE...

Digital Scribe 1.4.1 - Multiple SQL Injections

Digital Scribe 1.4.1 Multiple SQL Injection Vulnerabilities Name Digital Scribe Vendor http://www.digital-scribe.org Versions Affected 1.4.1 Author Salvatore Fresta aka Drosophila Website http://www.salvatorefresta.net Contact salvatorefresta at gmail dot com Date 2009-12-11 X. INDEX I. ABOUT THE...

E-Store SQL Injection Vulnerability

Exploit for unknown platform in category web applications =================================== E-Store SQL Injection Vulnerability =================================== E-Store SQL Injection Vulnerability Name E-Store Vendor http://www.getaphpsite.com X. INDEX I. ABOUT THE APPLICATION II. DESCRIPTIO...

Digital Scribe 1.4.1 - Multiple SQL Injections

Digital Scribe 1.4.1 - Multiple SQL Injections Digital Scribe 1.4.1 Multiple SQL Injection Vulnerabilities Name Digital Scribe Vendor http://www.digital-scribe.org Versions Affected 1.4.1 Author Salvatore Fresta aka Drosophila Website http://www.salvatorefresta.net Contact salvatorefresta at gmai...

phpCollegeExchange 0.1.5c - Multiple SQL Injections

phpCollegeExchange 0.1.5c - Multiple SQL Injections phpCollegeExchange 0.1.5c Multiple SQL Injection Vulnerabilities Name phpCollegeExchange Vendor http://phpcollegeex.sourceforge.net Versions Affected 0.1.5c Author Salvatore Fresta aka Drosophila Website http://www.salvatorefresta.net Contact...

Digital Scribe 1.4.1 Multiple SQL Injection Vulnerabilities

Exploit for unknown platform in category web applications =========================================================== Digital Scribe 1.4.1 Multiple SQL Injection Vulnerabilities =========================================================== Digital Scribe 1.4.1 Multiple SQL Injection Vulnerabilities...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in CutePHP CuteNews 1.4.6, when registerglobals is enabled and magicquotesgpc is disabled, allow remote attackers to inject arbitrary web script or HTML via the 1 lastusername and 2 mod parameters to index.php; and 3 the title parameter to...

PHP vulnerability full solution-vulnerability warning-the black bar safety net

PHP web page security issues For PHP website mainly exist the following types of attacks: 1. Command injectionCommand Injection 2. eval injectionEval Injection 3. Client scripting attacksScript Insertion 4. Cross-site scripting attacksCross Site Scripting, XSS 5. SQL injectionattacksSQL injection...

Joomla 1.5.12 Remote Code Execution via TinyMCE File Upload Vulnerability

No description provided by source. ?php / Joomla 1.5.12 Remote Code Execution via TinyMCE upload vulnerability Tested against : - Joomla 1.5.12 / Ubuntu 8.10 / Apache 2.2.9 - Joomla 1.5.12 / Windows XP SP2 / Apache 2.2.12 Luca "daath" De Fulgentis - daath at nibblesec.org http://blog.nibblesec.or...

Oscailt CMS 3.3 Local File Inclusion

Exploit for unknown platform in category web applications ==================================== Oscailt CMS 3.3 Local File Inclusion ==================================== 0 Oscailt 3.3 CMS 0 Download: http://sourceforge.net/projects/oscailt/ 0 Bug: Local File Inclusion in index.php file ! 0 Poc:...

SLES9: Security update for PHP4

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: php4-gmp php4-ldap php4-xslt php4-servlet php4-ftp php4-exif php4-devel php4-yp php4-shmop php4-iconv php4 php4-pear php4-sysvshm php4-mimemagic php4-curl...

Endonesia CMS 8.4 local file inclusion

Exploit for unknown platform in category web applications ====================================== Endonesia CMS 8.4 local file inclusion ====================================== Endonesia 8.4 CMS Site: http://www.endonesia.org/ Download: http://sourceforge.net/projects/endonesia Bug: Local File...

CVE-2009-3338

Stack-based buffer overflow in EffectMatrix E.M. Magic Morph 1.95b allows remote attackers to execute arbitrary code via a long string in a .mor file...

Stack overflow

Stack-based buffer overflow in EffectMatrix E.M. Magic Morph 1.95b allows remote attackers to execute arbitrary code via a long string in a .mor file...

CVE-2009-3338

CVE-2009-3338 describes a stack-based buffer overflow in EffectMatrix (E.M.) Magic Morph 1.95b. The vulnerability allows remote attackers to execute arbitrary code via a long string contained in a .mor file. This is the explicit impact reported by sources such as NVD. The connected documents conf...

CVE-2009-3338

Stack-based buffer overflow in EffectMatrix E.M. Magic Morph 1.95b allows remote attackers to execute arbitrary code via a long string in a .mor file...

cP Creator 2.7.1 - SQL Injection

!/usr/bin/python cP Creator v2.7.1 Remote Sql Injection AUTHOR : Sina Yazdanmehr R3d.W0rm Discovered by : Sina Yazdanmehr R3d.W0rm Our Site : http://IrCrash.com - Coming Soon Again My Official WebSite : http://R3dW0rm.ir IRCRASH Team Members : Khashayar Fereidani - R3d.w0rm Sina Yazdanmehr Downlo...

cP Creator 2.7.1 (Cookie tickets) Remote SQL Injection Exploit

Exploit for unknown platform in category web applications ============================================================== cP Creator 2.7.1 Cookie tickets Remote SQL Injection Exploit ============================================================== !/usr/bin/python cP Creator v2.7.1 Remote Sql...

cP Creator 2.7.1 - SQL Injection

cP Creator 2.7.1 - SQL Injection !/usr/bin/python cP Creator v2.7.1 Remote Sql Injection AUTHOR : Sina Yazdanmehr R3d.W0rm Discovered by : Sina Yazdanmehr R3d.W0rm Our Site : http://IrCrash.com - Coming Soon Again My Official WebSite : http://R3dW0rm.ir IRCRASH Team Members : Khashayar Fereidani ...