649 matches found
2532gigs-download.txt
--==+================================================================================+==-- --==+ 2532|Gigs = 1.2.2 Arbitrary Remote Database Backup/Download +==-- --==+================================================================================+==-- Discovered By: t0pP8uZz Discovered On: 18...
2532/Gigs 1.2.2 - Arbitrary Database Backup/Download
--==+================================================================================+==-- --==+ 2532|Gigs = 1.2.2 Arbitrary Remote Database Backup/Download +==-- --==+================================================================================+==-- Discovered By: t0pP8uZz Discovered On: 18...
PT-2008-2989 · Phpbp · Phpbp
Name of the Vulnerable Software and Affected Versions: phpBP version 2.204 Description: The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the id parameter in a "banner out" action. The vulnerable file is includes/functions/banners-external.php...
PT-2008-2906 · Php Nuke Team · Php-Nuke
Name of the Vulnerable Software and Affected Versions: PHP-Nuke ZClassifieds module affected versions not specified Description: The issue allows remote attackers to execute arbitrary SQL commands. This is achieved by exploiting the cat parameter in the modules.php endpoint. Recommendations: For...
photokron <= 1.7 (update script) Remote Database Disclosure Exploit
No description provided by source. !/usr/bin/perl Script : PhotoKron All Version All Version Author : Pr0metheuS Gr33tz to Gr33tz-Team Gr33tz-Team.ORG Dork : "Powered by photokorn" INFO Works IF /update/ is on server...60% site are vulnerable.... INFO use LWP::UserAgent; if @ARGV!=2 print...
photokron <= 1.7 (update script) Remote Database Disclosure Exploit
Exploit for unknown platform in category web applications =================================================================== photokron \n"; print "-=-=-=-=-=-=-=-=-=-=-=--=\n"; my $site,my $pathemail protected; my $ua = new LWP::UserAgent; $ua-agent"Mozilla/8.0"; $ua = LWP::UserAgent-new; my $re...
CVE-2007-6512
PHP MySQL Banner Exchange 2.2.1 stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain database information via a direct request to inc/lib.inc...
IceBB 1.0-rc6 Remote Database Authentication Details Exploit
Exploit for unknown platform in category web applications ============================================================ IceBB 1.0-rc6 Remote Database Authentication Details Exploit ============================================================ ./includes/functions.php, line 73 $ip =...
PT-2007-4557 · Postgresql +1 · Postgresql +1
Name of the Vulnerable Software and Affected Versions: PostgreSQL versions 8.1 and later Description: The issue allows remote attackers to access arbitrary accounts and execute arbitrary SQL queries. This is possible when local trust authentication is enabled and the Database Link library dblink ...
CACTUSHOP 6 Default Installation Allows Remote Database Disclosure
Cactushop V6 allows remote users to download the database which contains creditcard numbers and critical information. The affected carts default installation gives away the path to database file. As a result, an attacker exploiting this vulnerability will be able to obtain detailed private custom...
IBM DB2 < 9 Fix Pack 2 Multiple Vulnerabilities
According to its version, the installation of IBM DB2 running on the remote host allows unsafe access to several setuid-root binaries. A local attacker can exploit this to crash the affected database server or possibly even gain root-level access. In addition, the fenced userid may be able to...
phpfootball16-disclose.txt
Title : PHPFootball 1.6 show.php Remote Database Disclosure Vulnerability Author : ajann Contact : : S.Page : http://phpfootball.sourceforge.net $$ : Free Dork : inurl:/phpfootball/ DBREAD--------------------------------------------------------- http://target/path//show.php VARIABLES Example:...
PHPFootball 1.6 (show.php) Remote Database Disclosure Vulnerability
Exploit for unknown platform in category web applications =================================================================== PHPFootball 1.6 show.php Remote Database Disclosure Vulnerability =================================================================== Title : PHPFootball 1.6 show.php Remo...
PHPFootball 1.6 (show.php) Remote Database Disclosure Vulnerability
Title : PHPFootball 1.6 show.php Remote Database Disclosure Vulnerability Author : ajann Contact : : S.Page : http://phpfootball.sourceforge.net $$ : Free Dork : inurl:/phpfootball/ DBREAD--------------------------------------------------------- http://target/path//show.php VARIABLES Example:...
PHPFootball 1.6 - Remote Database Disclosure
Title : PHPFootball 1.6 show.php Remote Database Disclosure Vulnerability Author : ajann Contact : : S.Page : http://phpfootball.sourceforge.net $$ : Free Dork : inurl:/phpfootball/ DBREAD--------------------------------------------------------- http://target/path//show.php VARIABLES Example:...
PT-2007-1825 · Mgb · Mgb Opensource Guestbook
Name of the Vulnerable Software and Affected Versions: MGB OpenSource Guestbook versions 0.5.4.5 and earlier Description: The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the id parameter in the email.php file. Recommendations: For MGB OpenSource Guestbook...
lblog Remote Password Disclosure
Aria-Security Team Happy New Year!! Aria-Security.com For English Aria-Security.net For Parsi Discovered: Aria-Security Team Vendor: http://www.lblog.dk/ Risk: Low Type:Remote Database Download PoC: http://TARGET/path/admin/db/newFolder/ THEN DOWNLOAD THE DATABASE AVAILABLE IN THIS FOLDER Contact...
BattleBlog Database Download Vulnerability
Aria-Security Team Happy New Year!! Aria-Security.com For English Aria-Security.net For Parsi Discovered: Aria-Security Team Vendor:http://www.battleblog.com/home/g/ Risk: Low Type:Remote Database Download PoC: http://TARGET/path/database/blankmaster.mdb Contact: [email protected]...
battleblog-db.txt
Discovered: Aria-Security Team Vendor:http://www.battleblog.com/home/g/ Risk: Low Type:Remote Database Download PoC: http://TARGET/path/database/blankmaster.mdb Contact: [email protected]...
rblog-db.txt
Discovered: Aria-Security Team Vendor:http://mike.dewolfe.bc.ca/scripts/rblog/ Risk: Low Type:Remote Database Download PoC: http://TARGET/path/data/admin.mdb http://TARGET/path/data/rblog.mdb Contact: [email protected]...