eggBlog index.php eggblogpassword Parameter Cookie SQL Injection

The remote host is running eggBlog, a free PHP and MySQL blog software package. The version of eggBlog installed on the remote host fails to sanitize input to the 'eggblogpassword' cookie before using it in 'etc/header.php' to construct database queries. Provided PHP's 'magicquotesgpc' setting is...

TaskFreak! 0.6.1 - SQL Injection

| | |--.-----.| .-----.' |.---.-.----.-----.--| | | | | | -|| -- | -| || | | -| | || |||||/||| |.|||| TheDefaced.org TheDefaced Security Team Presents An 0-day. TaskFreak! SQL Injection Product: TaskFreak!/Discovered in ==0.6.1 Vuln: Remote SQL Injection...

SmallNuke 2.0.4 Pass Recovery Remote SQL Injection Exploit

Exploit for unknown platform in category web applications ========================================================== SmallNuke 2.0.4 Pass Recovery Remote SQL Injection Exploit ========================================================== !/usr/bin/perl use Tk; use Tk::BrowseEntry; use Tk::DialogBox;...

OneCMS 2.4 Remote SQL Injection / Upload Vulnerabilities

No description provided by source. WwW.BugReport.ir AmnPardaz Security Research Team Title: OneCMS Vulnerabilities Vendor: http://www.insanevisions.com Bugs: SQL Injection Authentication bypass , Arbitrary file upload! Vulnerable Version: 2.4 prior versions also may be affected Exploitation: Remo...

RunCMS Multiple Script lid Parameter SQL Injection

The version of this software installed on the remote host fails to sanitize user-supplied input to the 'lid' parameter of the 'modules/mydownloads/visit.php' script before using it in a database query. Regardless of PHP's 'magicquotesgpc' and 'registerglobals' settings, an attacker may be able to...

DCP-Portal 6.11 - SQL Injection

!/usr/bin/php -q But the script filter the quotes with this code, included in each page of the cms: 0 119. $str = $SERVER'QUERYSTRING'; 120. $arr = split';&', URLdecode$str; 121. $pos = strpos$str, "'"; 122. if $pos 123. $hackattempt = true; ... ? But we can bypass this control using %27 instead ...

webportalcms-passwd.txt

!/usr/bin/python ================================================================================================= / | |\ \ / | / |/ | | |/ \ | | | |||| /| / / ================================================================================================= This is a Public Exploit. Date:...

WebPortal CMS 0.6-beta Remote Password Change Exploit

Exploit for unknown platform in category web applications ===================================================== WebPortal CMS 0.6-beta Remote Password Change Exploit ===================================================== !/usr/bin/python...

WebPortal CMS 0.6-beta - Remote Password Change

WebPortal CMS 0.6-beta - Remote Password Change !/usr/bin/python ================================================================================================= / | |\ \ / | / |/ | | |/ \ | | | |||| /| / /...

myphp30-sql.txt

================================================================================================= / | |\ \ / | / |/ | | |/ \ | | | |||| /| / / ================================================================================================= This is a Public Exploit. Date: 03/01/2008 dd,mm,yyyy...

myphp-sql.txt

Name : MyPHP Forum So we can execute an sql injection thrught the bugged variable $id. PoC: http://Site/faq.php?action=view&id=-1'+union+select+1,concatusername,0x3a,password,3+from+tableprefixmember+where+uid=1/ Sql injection in member.php So $member variable isn't controlled so we can exploit i...

ZeusCMS <= 0.3 Remote Blind SQL Injection Exploit

No description provided by source. ? / ------------------------------------------------- ZeusCMS = 0.3 Remote Blind SQL Injection Exploit ------------------------------------------------- author...: EgiX mail.....: n0b0d13satgmaildotcom link.....: http://www.zeuscms.gr/ details..: works with...

AjaxPortal LoginADP函数SQL注入漏洞

BUGTRAQ ID: 18897 AjaxPortal是基于Sajax技术的建站解决方案。 AjaxPortal的的LoginADP函数实现上存在SQL注入漏洞，远程攻击者可能利用此漏洞在服务器上执行任意代码。 仅在禁用了PHP魔术引号的情况下才能利用这个漏洞。 MyioSoft AjaxPortal 3.0 MyioSoft -------- 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本： http://myiosoft.com/...

CVE-2007-6469

SQL injection vulnerability in index.php in phpRPG 0.8, when magicqutoesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the username parameter. NOTE: some of these details are obtained from third party information...

phprpg-sql.txt

By Michael Brooks Vulneralbity: Sql Injection and Session Information Disclosure. Homepage:http://sourceforge.net/projects/phprpg/ Verison affected 0.8.0 There are two flaws that affect this applcation. A nearly vinnella login bypass issues affects phprpg. If magicqutoesgpc=off then this will log...

Anon Proxy Server - Remote Code Execution

By Michael Brooks Vulnerability type: Multiple Remote System commands execution. Software: Anon Proxy Server Home page:http://sourceforge.net/projects/anonproxyserver/ Affects version: 0.100 Example exploit:...

Oreon/Centreon - Multiple Remote File Inclusion

By Michael Brooks Vulnerability Type: Multiple Remote File Inclusion. Software: Oreon and Centreon Homepage:http://www.oreon-project.org/ or http://www.centreon.com/ Versions: 1.4Oreon and 1.4.1Centreon The vulnerable file is: ./oreon-1.4/www/include/monitoring/engine/MakeXML.php Another,virtuall...

PHP RPG - Sql Injection and Session Information Disclosure.

By Michael Brooks Vulneralbity: Sql Injection and Session Information Disclosure. Homepage:http://sourceforge.net/projects/phprpg/ Verison affected 0.8.0 There are two flaws that affect this applcation. A nearly vinnella login bypass issues affects phprpg. If magicqutoesgpc=off then this will log...

Oreon 1.4 / Centreon 1.4.1 Multiple RFI Vulnerabilties

No description provided by source. By Michael Brooks Vulnerability Type: Multiple Remote File Inclusion. Software: Oreon and Centreon Homepage:http://www.oreon-project.org/ or http://www.centreon.com/ Versions: 1.4Oreon and 1.4.1Centreon The vulnerable file is:...

Anon Proxy Server 0.1000 Remote Command Execution Vulnerability

No description provided by source. By Michael Brooks Vulnerability type: Multiple Remote System commands execution. Software: Anon Proxy Server Home page:http://sourceforge.net/projects/anonproxyserver/ Affects version: 0.100 Example exploit:...