VWar <= 1.50 R14 (n) Remote SQL Injection

.: insecurity research team :. ....:...:. . .:. | |/ :/ // :/ .:. : | | | / / :. . ..: ||| / .: .:.. .. ./ .:/:. ./. .:/: . ...:. .advisory. .:... :..................: 1o.o8.2oo6 .. Affected Application: VWar = v1.50 R14 . . : contact :...

PHPMyRing <= 4.2.0 (view_com.php) Remote SQL Injection

PHPMyRing's viewcom.php Remote SQL injection Exploit vulnerable code on viewcom.php line 14 - 24 code ------------------------------------------------------------------------ ----------- if !$idsite echo "p align="center""."Erreur! Le n° du site n'est pas dfini!"."/p"; else // On va aller cherche...

VWar <= 1.50 R14 (online.php) Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications ================================================================ VWar \ \ .: .:.. .. ./ .:/:. ./. .:/: . ...:. .advisory. .:... :..................: 1o.o8.2oo6 .. Affected Application: VWar query" line 64: SELECT memberid, name,...

PHPMyRing <= 4.2.0 (view_com.php) Remote SQL Injection Exploit

Exploit for unknown platform in category web applications ============================================================== PHPMyRing "."Erreur! Le n du site n'est pas dfini!".""; else // On va aller chercher le nom du site consern., .a sera fait ; // Connexion MySQL $conn=connecte;...

PHPMyRing &lt;= 4.2.0 (view_com.php) Remote SQL Injection Exploit

No description provided by source. Title: PHPMyRing's viewcom.php Remote SQL injection Exploit Vendor: phpmyring webiste : http://phpmyring.sourceforge.net/ Version : = 4.2.0 Severity: Critical Discovered by: Simo64 simo64atmorxorg Exploit writting by: Simo Ben youssef simoatmorxorg Discovered: 0...

PHPMyRing 4.2.0 - &#039;view_com.php&#039; SQL Injection

Title: PHPMyRing's viewcom.php Remote SQL injection Exploit Vendor: phpmyring webiste : http://phpmyring.sourceforge.net/ Version : Exploit writting by: Simo Ben youssef Discovered: 09 Aout 2006 Published : 10 Aout 2006 MorX Security Research Team http://www.morx.org Details: vulnerable code on...

Invision Power Board 2.1 <= 2.1.6 Remote SQL Injection Exploit (2)

Exploit for unknown platform in category web applications ================================================================== Invision Power Board 2.1 new; &header; if @ARGV ".$server."result.txt"; for$id = 1; $id = $kol; $id++ $ownquery = "UNION SELECT convergepasshash,1,1,1 FROM...

Invision Power Board 2.1 <= 2.1.6 Remote SQL Injection Exploit

Exploit for unknown platform in category web applications ============================================================== Invision Power Board 2.1 "r57ipb216gui" ; $mw-geometry '420x550' ; $mw-resizable0,0; $mw-Label-text = '!', -font = 'Webdings 22'-pack; $mw-Label-text = 'Invision Power Board 2....

Invision Power Board 2.1 &lt;= 2.1.6 Remote SQL Injection Exploit

No description provided by source. !/usr/bin/perl Invision Power Board v2.1 = 2.1.6 sql injection exploit by RST/GHC Based on LOCALIP bug, more info in RST/GHC Advisory41 http://rst.void.ru/papers/advisory41.txt tested on 2.1.3, 2.1.6 08.06.06 coded by 1dt.w0lf RST/GHC http://rst.void.ru...

phpBB 3 (memberlist.php) Remote SQL Injection Exploit

Exploit for unknown platform in category web applications ===================================================== phpBB 3 memberlist.php Remote SQL Injection Exploit ===================================================== !/usr/bin/php -q -d shortopentag=on ? echo "PhpBB 3 memberlist.php/'ip' argumen...

BXCP <= 0.3.0.4 (where) Remote SQL Injection Exploit

Exploit for unknown platform in category web applications ==================================================== BXCP newProto="tcp", PeerAddr="$webpage", PeerPort="80" || die "+ Can't connect to Server\n"; print " exploiting\n"; print $sock "GET $get HTTP/1.1\n"; print $sock "Host: $webpage\n";...

BXCP &lt;= 0.3.0.4 (where) Remote SQL Injection Exploit

No description provided by source. !/usr/bin/perl use IO::Socket; print q ------------------------------------------------------------------------------------- BXCP exploit by x23 curse-crew.de geekbar.cx.la geeknet.uttx.net use: bxcp.pl server dir id sample: $ perl bxcp.pl bxcp.com / 1 connectin...

DZCP (deV!L_z Clanportal) 1.34 - id SQL Injection

DZCP deV!Lz Clanportal 1.34 - id SQL Injection ? errorreportingEERROR; function exploitinit if !extensionloaded'phpcurl' && !extensionloaded'curl' if !dl'curl.so' && !dl'phpcurl.dll' die "oo error - cannot load curl extension!"; function exploitheader echo...

XOOPS myAds Module (lid) Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications =========================================================== XOOPS myAds Module lid Remote SQL Injection Vulnerability =========================================================== Xoops myAds module SQL-Injection Discovered: KeyCoder Visit :...

BLOG:CMS &lt;= 4.0.0k Remote SQL Injection Exploit

No description provided by source. !/usr/bin/php -q -d shortopentag=on ? echo "BLOG:CMS = 4.0.0k sql injection/admin credentials disclosure exploit\n"; echo "by rgod [email protected]\n"; echo "site: http://retrogod.altervista.org\n"; echo "dork: "Powered by BLOG:CMS"|"Powered by...

BLOG:CMS <= 4.0.0k Remote SQL Injection Exploit

Exploit for unknown platform in category web applications =============================================== BLOG:CMS url=stripslashes$row-url; $redirect=true; if strpos$row-url,'|noseo|'!==false $arr=explode",",'msnbot,googlebot,crawler,centrum'; foreach $arr as $s if strstr$SERVER"HTTPUSERAGENT",$...

Scout Portal Toolkit &lt;= 1.4.0 (forumid) Remote SQL Injection Exploit

No description provided by source. !/usr/bin/perl =============================================================== Scout Portal Toolkit 1.4.0 Remote SQL injection Exploit Coded By Simo64 Moroccan Security Research Team Specials thx to :Greetz : CiM-Team - CrAsHoVeRrIdE - dabdoub - damip - Darkbite...

Scout Portal Toolkit <= 1.4.0 (forumid) Remote SQL Injection Exploit

Exploit for unknown platform in category web applications ==================================================================== Scout Portal Toolkit = 1.4.0 forumid Remote SQL Injection Exploit ==================================================================== !/usr/bin/perl...

Jaws &lt;= 0.6.2 (Search gadget) Remote SQL Injection Exploit

No description provided by source. !/usr/bin/php -q -d shortopentag=on ? echo "Jaws = 0.6.2 'Search gadget' SQL injection / admin credentials disclosure\r\n"; echo "by rgod [email protected]\r\n"; echo "site: http://retrogod.altervista.org\r\n"; echo "dork: "powered by jaws" | "powered by the...

DataLife Engine &lt;= 4.1 Remote SQL Injection Exploit (php)

No description provided by source. ?php errorreporting EERROR; iniset"maxexecutiontime",0; echo ' +========================================+ | RST/GHC Datalife SQL injection exploit | +========================================+ Lite Version for DLE =4.1 '; if $argc 2 print " Usage: " . $argv0 . "...