phpShop <= 0.8.1 - Remote SQL injection / Filter Bypass Vulnerabilities

No description provided by source. Vendor : PHPShop Webiste : http://www.phpshop.org Version : v0.8.1 Author: the redc0ders / theredc0dersatgmaildotcom Condition: magicquotegpc = off , in php.ini setting Details : ========== Vulnerable Code in index.php near lines 98 - 128 code // basic SQL injec...

IPBProArcade 2.5.2 GameID Parameter Remote SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/15205/info A remote SQL injection vulnerability reportedly affects ipbProArcade. The problem affects the 'gameid' parameter. An attacker may leverage this issue to manipulate SQL query strings and potentially carry out...

DigitalHive <= 2.0 RC2 (user_id) Remote SQL Injection Exploit

No description provided by source. !-- Hive v2.0 RC2 Remote SQL Injection c0ded by j0j0 -- html head style type=text/css body margin:3%; font-size:10px; color:FFFFFF; font-family:Verdana,Arial; background-color:1a1a1a; text-align: center; input background:303030; color:FFFFFF;...

PHP Webquest <= 2.5 (id_actividad) Remote SQL Injection Exploit

No description provided by source. / script name : phpwebquest script version : 2.5 script website : http://phpwebquest.org Bug Finder : D4realTeaM 'unkn0wnX','n3t-mapper','ToxiC350'; injected file : webquest/soportederechaw.php Variable : idactividad Contact : n3t-mapp3r At hotmail dot com,is14m...

Sisplet CMS (index.php id) 2008-01-24 - Remote SQL Injection Vulnerability

No description provided by source. ================================================================= Sisplet CMS index.php id Remote SQL Injection Vulnerability ================================================================= ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O...

eWebquiz 8 - (Auth Bypass) Remote SQL Injection Vulnerability

No description provided by source. ----------------------------بسم الله الرحمن الرحيم------------------------------ وما أوتيتم من العلم الا قليلا -------------------------------صدق الله العظيم------------------------------- Tybe:Auth Bypass Remote SQL Injection Vulnerability Vendor:...

Joomla Component RWCards <= 2.4.3 - Remote SQL Injection Exploit

No description provided by source. !/usr/bin/perl Script Name: Joomla Component RWCards = 2.4.3 Remote Blind SQL Injection Exploit Coded by : ajann Author : ajann Dork : index.php?option=comrwcards Contact : : S.Page : http://www.weberr.de $$ : Free .. : ajann,Turkey use IO::Socket; if@ARGV 1 pri...

Woltlab Burning Board 2.2 / 2.3 [WN]KT KickTipp 3.1 remote SQL Injection

No description provided by source. ======================================================================================== | Title : Woltlab Burning Board 2.2 / 2.3 WNKT KickTipp 3.1 remote SQL Injection | Author : Easy Laster | Script : Woltlab Burning Board 2.2 / 2.3 WNKT KickTipp 3.1 | Site :...

Php-Stats <= 0.1.9.1b (ip) Remote SQL Injection Exploit

No description provided by source. ?php printr' --------------------------------------------------------------------------- Php-Stats = 0.1.9.1b ip urldecode/ ereg / sql injection / cleat text admin pass disclosure exploit method ii by rgod mail: retrog at alice dot it site:...

IPTBB <= 0.5.4 (viewdir id) Remote SQL Injection Vulnerability

No description provided by source. --------------------------------------------------------------- / | |\ \ / | / |/ | | |/ \ | | / \ \ | \ \ | | | \ | |/ \ | | // | || | ||| /| / /\ | |||| /| / / --------------------------------------------------------------- Http://www.inj3ct-it.org...

Active Membership 2 - (Auth Bypass) Remote SQL Injection Vulnerability

No description provided by source. ----------------------------بسم الله الرحمن الرحيم------------------------------ Tybe:Auth Bypass Remote SQL Injection Vulnerability Vendor: www.activewebsoftwares.com Software: Active Membership v 2 author: я3d D3v!L Date: 28.11.2008 Home: www.ahacker.biz...

HockeySTATS Online 2.0 - Multiple Remote SQL Injection Vulnerabilities

No description provided by source. Viva IslaM Viva IslaM Remote SQL injection Vulnerability Hockeystats Online V BASIC & ADVANCED index.php opt AuTh0r : Mr.SQL H0ME : WwW.PaL-HaCkEr.CoM && WwW.AtsDp.CoM/f Email : [email protected] SYRiAN Arab HACkErS -: L!VE DEMO :- BASIC VERSION...

BtiTracker <= 1.4.1 (become admin) Remote SQL Injection Vulnerability

No description provided by source. BtiTracker =v1.4.1 Remote SQL Injection Exploit Discovered by: m@ge|ozz - [email protected] Vulnerabitity: Remote Sql Injection / Problem: Any user can be Administrator Website Vendor: http://www.btiteam.org Vulnerable Code accountchange.php: if isset$GETstyle...

Simplog <= 0.9.3 (tid) Remote SQL Injection Exploit

No description provided by source. !/usr/bin/perl Method found & Exploit scripted by nukedx Contacts ICQ: 10072 MSN/Main: [email protected] web: www.nukedx.com Original advisory: http://www.nukedx.com/?viewdoc=25 Usage: simplog.pl host path use IO::Socket; if@ARGV != 2 usage; else exploit; sub...

PostNuke Module v4bJournal - Remote SQL Injection Vulnerability

No description provided by source. ---------------------------------------- PostNuke Journal ---------------------------------------- DISCOVERED BY :Ali Abbasi Olom Fonon Mazandaran University - Security Research Center, Babol, Iran Greetz For All Y! UnderGround Group Members www.2600.ir Greetz F...

PHP Forge <= 3 beta 2 (id) Remote SQL Injection Vulnerability

No description provided by source. ========================================================= =============== JIKI TEAM Maroc And YameN =============== ========================================================= Author : jiko email : [email protected] Home : www.no-back.org Script : Forge 3.0 bêta...

Joomla Component GameQ <= 4.0 - Remote SQL injection Vulnerability

No description provided by source. /---------------------------------------------------------------\ \ / / Joomla Component GameQ Remote SQL injection \ \ / ---------------------------------------------------------------/ Author : His0k4 ALGERIAN HaCkEr POC :...

uniForum <= 4 - (wbsearch.aspx) Remote SQL Injection Vulnerability

No description provided by source. Title : uniForum = v4 wbsearch.aspx Remote SQL Injection Vulnerability Author : ajann Contact : : S.Page : ... Vendor : http://uniforum.biz/ $$ : $99 SQL--------------------------------------------------------- http://target/path//wbsearch.aspx POST Method SQL...

SimpleBlog <= 2.3 (admin/edit.asp) Remote SQL Injection Vulnerability

No description provided by source. Title : simpleblog = v 2.3 /admin/edit.asp Remote SQL Injection Vulnerability Author : bolivar Dork : SimpleBlog 2.3 by 8pixel.net ---------------------------------------------------------------------------...

LDU <= 8.x (avatarselect id) Remote SQL Injection Vulnerability

No description provided by source. LDU = 8.x Remote SQL Injection avatarselect id Vulnerability Discovered by: nukedx Contacts: ICQ: 10072 MSN/Mail: [email protected] web: http://www.nukedx.com Original advisory can be found at: http://www.nukedx.com/?viewdoc=51 ---- GET -...