Joomla! Component iJoomla! com_magazine - pageid SQL Injection

Joomla! Component iJoomla! commagazine - pageid SQL Injection source: https://www.securityfocus.com/bid/27888/info iJoomla 'commagazine' component is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting th...

Joomla! Mambo Component Filebase - filecatid SQL Injection

Joomla! Mambo Component Filebase - filecatid SQL Injection source: https://www.securityfocus.com/bid/27829/info The Joomla! and Mambo 'comfilebase' component is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query...

Joomla! / Mambo Component faq - 'catid' SQL Injection

source: https://www.securityfocus.com/bid/27822/info The Joomla! and Mambo 'faq' component is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...

Joomla! Mambo Component com_smslist - listid SQL Injection

Joomla! Mambo Component comsmslist - listid SQL Injection source: https://www.securityfocus.com/bid/27818/info The Joomla! and Mambo 'comsmslist' component is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query...

Joomla! / Mambo Component com_salesrep - 'rid' SQL Injection

source: https://www.securityfocus.com/bid/27827/info The Joomla! and Mambo 'comsalesrep' component is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise t...

Joomla! Mambo Component com_scheduling - id SQL Injection

Joomla! Mambo Component comscheduling - id SQL Injection source: https://www.securityfocus.com/bid/27830/info The Joomla! and Mambo 'comscheduling' component is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query...

Joomla! Mambo Component com_sg - pid SQL Injection

Joomla! Mambo Component comsg - pid SQL Injection source: https://www.securityfocus.com/bid/27821/info The Joomla! and Mambo 'comsg' component is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this...

Joomla! Mambo Component com_model - objid SQL Injection

Joomla! Mambo Component commodel - objid SQL Injection source: https://www.securityfocus.com/bid/27781/info The Joomla! and Mambo 'commodel' component is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploitin...

Joomla! Mambo Component com_iomezun - id SQL Injection

Joomla! Mambo Component comiomezun - id SQL Injection source: https://www.securityfocus.com/bid/27748/info The Joomla! and Mambo 'comiomezun' component is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiti...

YeSiL KoRiDoR Ziyaretçi Defteri - index.php SQL Injection

YeSiL KoRiDoR Ziyaretçi Defteri - index.php SQL Injection source: https://www.securityfocus.com/bid/27518/info YeSiL KoRiDoR Ziyaretçi Defteri is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this...

phpnuke80final-sql.txt

?php UNPUBLISHED RST/GHC EXPLOIT PHP Nuke sid sql injection exploit for Search module POST method - the best for version 8.0 FINAL coded by Foster & 1dt.w0lf tested on 6.0 , 6.6 , 7.9 , 8.0 FINAL versions if isset$POST'Submit' $result=sendit'CONCAT"::",aid,"::",pwd,"::"'; if...

PHP-Nuke 8.0 Final - sid SQL Injection

PHP-Nuke 8.0 Final - sid SQL Injection ?php UNPUBLISHED RST/GHC EXPLOIT PHP Nuke sid sql injection exploit for Search module POST method - the best for version 8.0 FINAL coded by Foster & 1dt.w0lf tested on 6.0 , 6.6 , 7.9 , 8.0 FINAL versions if isset$POST'Submit'...

PHP-Nuke 8.0 Final - 'sid' SQL Injection

?php UNPUBLISHED RST/GHC EXPLOIT PHP Nuke sid sql injection exploit for Search module POST method - the best for version 8.0 FINAL coded by Foster & 1dt.w0lf tested on 6.0 , 6.6 , 7.9 , 8.0 FINAL versions if isset$POST'Submit' $result=sendit'CONCAT"::",aid,"::",pwd,"::"'; if...

eticket-multi.txt

====================================================================== eTicket 1.5.5.2 Multiple Vulnerabilities ====================================================================== Author: L4teral Impact: Cross Site Scripting Cross Site Request Forgery SQL Injection Status: patch not available...

MyPHP Forum多个SQL注入漏洞

BUGTRAQ ID: 27118 MyPHP Forum是一个易于架设并且易于使用基于MySQL与PHP的论坛。 MyPHP Forum处理用户请求数据时存在输入验证漏洞，远程攻击者可能利用此漏洞执行SQL注入攻击。 MyPHP Forum的faq.php文件没有正确地验证对id参数的输入，member.php文件没有正确验证对member参数的输入，search.php文件没有正确验证对searchtext和searchuser参数的输入，允许攻击者通过注入任意SQL代码控制SQL查询。成功攻击要求禁用了magicquotesgpc。 faq.php文件中的漏洞代码：...

Zenphoto 'rss.php' SQL Injection Vulnerability

Zenphoto is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying...

Blind Sql-Injection in Joomla 1.5 RC3

Thanks to team of Darkc0de.com Blind Sql-Injection in Joomla 1.5 RC3 URL : http://localhost/index.php 1. Parameter = view The following changes were applied to the original request: • Set parameter 'view's value to 'somechars'20+20'article' POC URL :...

FooSun - Api_Response.asp SQL Injection

FooSun - ApiResponse.asp SQL Injection source: https://www.securityfocus.com/bid/26552/info FooSun is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise t...

JiRo's Banner System 2.0 - 'login.asp' Multiple SQL Injections

source: https://www.securityfocus.com/bid/26479/info JiRo's Banner System is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to compromise the application,...

miniBB 2.1 (table) Remote SQL Injection Vulnerability

No description provided by source. vuln.: miniBB 2.1 table Remote SQL Injection Exploit download: http://www.minibb.net/download.php?file=minibb21 dork: "These forums are running on" "miniBB" author: [email protected] greets to: str0ke, polish under :...