CVE-2010-2459

SQL injection vulnerability in video.php in 2daybiz Video Community Portal Script 1.0 allows remote attackers to execute arbitrary SQL commands via the videoid parameter...

2DayBiz B2B Portal Script - SQL Injection

2DayBiz B2B Portal Script - SQL Injection Exploit Title: 2daybiz B2B Portal Script SQL injection Vulnerability Date: 24/06/2010 Author: JaMbA Script url: http://www.2daybiz.com/b2bportalscript.html Version: N/A Tested on: Windows CVE : =================Exploit================== EXPL0!T...

2DayBiz B2B Portal Script - SQL Injection

Exploit Title: 2daybiz B2B Portal Script SQL injection Vulnerability Date: 24/06/2010 Author: JaMbA Script url: http://www.2daybiz.com/b2bportalscript.html Version: N/A Tested on: Windows CVE : =================Exploit================== EXPL0!T http://server/path/companyinfo.php?id=83SQL...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in NCT Jobs Portal Script allow remote attackers to inject arbitrary web script or HTML via the 1 search, 2 Keywords, 3 Tags, or 4 Desired City field...

CVE-2010-1604

Multiple SQL injection vulnerabilities in adminlogin.php in NCT Jobs Portal Script allow remote attackers to execute arbitrary SQL commands via the 1 user parameter aka login field and 2 passwd parameter aka password field. NOTE: some of these details are obtained from third party information...

CVE-2010-1605

CVE-2010-1605 affects isearch.php in the NCT Jobs Portal Script, where SQL injection is possible through the anyword and cityname parameters. The underlying issue is likely improper input handling allowing malicious SQL to be executed by remote attackers, with the NVD entry citing a base score of...

CVE-2010-1606

CVE-2010-1606 describes multiple cross-site scripting (XSS) vulnerabilities in the NCT Jobs Portal Script. The flaws allow remote attackers to inject arbitrary web script or HTML via the (1) search, (2) Keywords, (3) Tags, or (4) Desired City fields. Exploitation details (e.g., exploit strings, p...

CVE-2010-1604

Multiple SQL injection vulnerabilities in adminlogin.php in NCT Jobs Portal Script allow remote attackers to execute arbitrary SQL commands via the 1 user parameter aka login field and 2 passwd parameter aka password field. NOTE: some of these details are obtained from third party information...

CVE-2010-1606

Multiple cross-site scripting XSS vulnerabilities in NCT Jobs Portal Script allow remote attackers to inject arbitrary web script or HTML via the 1 search, 2 Keywords, 3 Tags, or 4 Desired City field...

CVE-2010-1604

CVE-2010-1604 involves multiple SQL injection vulnerabilities in admin_login.php of the NCT Jobs Portal Script, allowing remote attackers to inject SQL via the login (user) and password (passwd) fields. The issue stems from unsafely constructed SQL queries in the login handling code, enabling arb...

CVE-2009-4675

admin/admininfo/index.php in the Mole Group Gastro Portal Restaurant Directory Script does not require administrative authentication, which allows remote attackers to change the admin password via an unspecified form submission...

CVE-2009-4673

CVE-2009-4673 concerns a SQL injection in profile.php of the Mole Group Adult Portal Script, exploitable via the user_id parameter. The vulnerability allows remote attackers to execute arbitrary SQL commands (impact: partial confidentiality, integrity, and availability according to NVD). Public r...

Softbiz Recipes Portal Script - 'showcats.php' SQL Injection

----------------------------Information------------------------------------------------ +Name : Softbiz Recipes Portal Script SQL Injection showcats.php +Autor : Easy Laster +Date : 25.02.2010 +Script : Softbiz Recipes Portal Script +Price : 99$ +Language : PHP +Discovered by Easy Laster +Securit...

Unrestricted file upload

Unrestricted file upload vulnerability in editlogo.php in AvailScript Jobs Portal Script allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as an image or logo, then accessing it via a direct request to the file in an unspecified directory...

Jokes Portal Script Seo 1.0 XSS

0000000000000000000000000000000000 000000000000000000000 00000000000000000000000000000000000 0000000000000000 00000000000000000000000000000000 + Jokes Portal Script Seo 1.0 Search Remote XSS Vulnerabilities + Software : Jokes Portal Script Seo + Author : 599eme Man + Contact : [email protected] +...

Umer Inc Songs Portal Script (id) SQL Injection Vulnerability

No description provided by source. || || | || o,7 || . o7 || 4||| ow, : / / . |-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=| | | | /' \ /'\ /\ \ /'\ /\ \ | | /, \ /\/\L\ \ \ \ ,/\ /\ \ \ \ / | | //\ \ /' \ /\ //\ /'\ \ /\ \ \ \ /'\ \ | | \ \ /\ /\ \ \ \ /...

Umer Inc Songs Portal Script - 'id' SQL Injection

|| || | || o,7 || . o7 || 4||| ow, : / / . |-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=| | | | /' \ /'\ /\ \ /'\ /\ \ | | /, \ /\/\L\ \ \ \ ,/\ /\ \ \ \ / | | //\ \ /' \ /\ //\ Kings of injection | | // | | |...

CVE-2008-4373

SQL injection vulnerability in jobseeker/applynow.php in AvailScript Job Portal Script allows remote attackers to execute arbitrary SQL commands via the jid parameter...

CVE-2008-4373

SQL injection vulnerability in jobseeker/applynow.php in AvailScript Job Portal Script allows remote attackers to execute arbitrary SQL commands via the jid parameter...

Availscript Jobs Portal Script File Upload Vulnerability (auth)

No description provided by source. || || | || o,7 || . o7 || 4||| ow, : / / . |-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=| | | | /' \ /'\ /\ \ /'\ /\ \ | | /, \ /\/\L\ \ \ \ ,/\ /\ \ \ \ / | | //\ \ /' \ /\ //\ /'\ \ /\ \ \ \ /'\ \ | | \ \ /\ /\ \ \ \ /...