SaphpLesson 2.0 (forumid) Remote SQL Injection Exploit

--------------------------------------------------------------------------- SaphpLesson 2.0 forumid Remote SQL Injection Exploit --------------------------------------------------------------------------- Discovered By SnIpErSA Author : SnIpErSA Exploit in Perl :...

Clansys v.1.1 (showid) Remote SQL Injection Exploit

No description provided by source. ?php / |---==============================================================---| | /\¯\ /\¯\ | | \ \ \ \ \ \ | | / \ / \ / \ \ \ / / \ \ \ / /\ \ | | /, /\ /\ /\ \ \ \ /\ /\ \ \ \ /\ /\ \ / | | //\ \ \ / \\ \ \\ \ \ \\ \ | | // ////////...

[SECURITY] [DSA 1029-1] New libphp-adodb packages fix several vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 1029-1 [email protected] http://www.debian.org/security/ Martin Schulze April 8th, 2006 http://www.debian.org/security/faq -...

Clansys 1.1 (showid) - SQL Injection

Internet Security | |---==============================================================---| title: clansys 1.1 remote sql injection release: 2006-04-10 author: snatcher snatcher at gmx.ch country: switzerland |+| application: clansys 1.1 description: a php / mysql based clan content management...

XBrite Members <= 1.1 (id) Remote SQL Injection Exploit

No description provided by source. ?php / |=================================================================================================| | .. . .. . | | / || \ | | / \ | | / || | | | | || \ | | | ----| | | / ^ \ ---| |----| ,----'| || | | | | | | | | \ \ | . | / /\ \ | | | | | | | | | / | |...

DSA-1030-1 moodle - several

Bulletin has no description...

EzASPSite <= 2.0 RC3 Remote SQL Injection Exploit Vulnerability.

--Security Report-- Advisory: EzASPSite = 2.0 RC3 Remote SQL Injection Exploit Vulnerability. --- Author: Mustafa Can Bjorn "nukedx a.k.a nuker" IPEKCI --- Date: 29/03/06 21:33 PM --- Contacts: ICQ: 10072 MSN/Email: [email protected] Web: http://www.nukedx.com --- Vendor: EzASPSite...

[Full-disclosure] EzASPSite <= 2.0 RC3 Remote SQL Injection Exploit Vulnerability.

--Security Report-- Advisory: EzASPSite = 2.0 RC3 Remote SQL Injection Exploit Vulnerability. --- Author: Mustafa Can Bjorn "nukedx a.k.a nuker" IPEKCI --- Date: 29/03/06 21:33 PM --- Contacts: ICQ: 10072 MSN/Email: [email protected] Web: http://www.nukedx.com --- Vendor: EzASPSite...

EzASPSite <= 2.0 RC3 (Scheme) Remote SQL Injection Exploit

No description provided by source. !/usr/bin/perl Method found & Exploit scripted by nukedx Contacts ICQ: 10072 MSN/Main: [email protected] web: www.nukedx.com Original advisory: http://www.nukedx.com/?viewdoc=22 Usage: ezasp.pl host path googledork: "Powered By EzASPSite v2.0 RC3" 62.400 Pages...

EzASPSite <= 2.0 RC3 (Scheme) Remote SQL Injection Exploit

Exploit for unknown platform in category web applications ========================================================== EzASPSite ICQ: 10072 MSN/Main: email protected web: www.nukedx.com Original advisory: http://www.nukedx.com/?viewdoc=22 Usage: ezasp.pl googledork: "Powered By EzASPSite v2.0 RC3"...

PHP Ticket &lt;= 0.71 (search.php) Remote SQL Injection Exploit

No description provided by source. !/usr/bin/perl Copyright C undefined1 This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or at your option any...

PHP Ticket <= 0.71 (search.php) Remote SQL Injection Exploit

Exploit for unknown platform in category web applications ============================================================ PHP Ticket = 0.71 search.php Remote SQL Injection Exploit ============================================================ !/usr/bin/perl Copyright C undefined1 This program is free...

ASPPortal &lt;= 3.1.1 (downloadid) Remote SQL Injection Exploit

No description provided by source. !/usr/bin/perl Method found & Exploit scripted by nukedx Contacts ICQ: 10072 MSN/Main: [email protected] web: www.nukedx.com Original advisory: http://www.nukedx.com/?viewdoc=21 Usage: aspp.pl host path user use IO::Socket; use Math::BigInt; if@ARGV != 3 usage;...

BetaParticle Blog <= 6.0 (fldGalleryID) Remote SQL Injection Exploit

Exploit for unknown platform in category web applications ==================================================================== BetaParticle Blog googledork: "Powered by bp blog" 9.710 pages.. use IO::Socket; if@ARGV != 2 usage; else exploit; sub header print "\n- NukedX Security Advisory...

BetaParticle Blog &lt;= 6.0 (fldGalleryID) Remote SQL Injection Exploit

No description provided by source. !/usr/bin/perl Method found & Exploit scripted by nukedx Contacts ICQ: 10072 MSN/Main: [email protected] web: www.nukedx.com Original advisory: http://www.nukedx.com/?viewdoc=20 Usage: beta.pl host path googledork: "Powered by bp blog" 9.710 pages.. use...

RedBLoG <= 0.5 (cat_id) Remote SQL Injection Exploit

Exploit for unknown platform in category web applications ==================================================== RedBLoG x...

D2-Shoutbox 4.2 IPB Mod (load) Remote SQL Injection Exploit

No description provided by source. !/usr/bin/perl | | | \ | | |/ D2-Shoutbox 4.2IPB Mod=SQL injection Created By SkOd SED security Team http://www.sed-team.be [email protected] ISRAEL google: "Powered By D2-Shoutbox 4.2" use IO::Socket; $host = $ARGV0; $user = $ARGV2; $uid = $ARGV3; $pid = $ARGV4...

TotalECommerce &lt;= 1.0 (index.asp id) Remote SQL Injection Exploit

No description provided by source. Original advisory: http://www.nukedx.com/?viewdoc=18 Advisory by: nukedx Full PoC Explotation: GET - http://victim/dir/index.asp?secao=PageID&id=SQL EXAMPLE 1 -...

vuBB <= 0.2 (Cookie) Final Remote SQL Injection Exploit (mq=off)

Exploit for unknown platform in category web applications ================================================================ vuBB agent"Mosiac 1.0" . $ua-agent; if !$ARGV0 $ARGV0 = ''; if !$ARGV1 $ARGV1 = '1'; my $path = $ARGV0 . '/index.php'; my $user = $ARGV1; userid to jack my $uname = $ARGV2; m...

Woltlab Burning Board 2.x - Datenbank MOD fileid SQL Injection

Woltlab Burning Board 2.x - Datenbank MOD fileid SQL Injection !/usr/bin/perl Method found & Exploit scripted by nukedx Contacts ICQ: 10072 MSN/Main: [email protected] web: www.nukedx.com Usage: wbb.pl Original Advisory: http://www.nukedx.com/?viewdoc=17 use IO::Socket; if@ARGV + + Example: wbb.p...