Woltlab Burning Board 1.0.2 SQL-Injection Vulnerability

In Woltlab Burning Board Lite1.0.2 is a SQL-Injection Vulnerability in file: search.php : Line: 510-515 if!$savepostids eval"error"".$tpl-get"errorsearchnoresult"."";"; $result=$db-queryfirst"SELECT searchid FROM bb".$n."searchs WHERE postids='$savepostids' AND showposts='$POSTshowposts' AND...

Sql injection

Multiple SQL injection vulnerabilities in phpMyRealty PMR 1.0.9 allow 1 remote attackers to execute arbitrary SQL commands via the type parameter to search.php and 2 remote authenticated administrators to execute arbitrary SQL commands via the listingupdateddays parameter to admin/findlistings.ph...

CVE-2007-6472

Multiple SQL injection vulnerabilities in phpMyRealty PMR 1.0.9 allow 1 remote attackers to execute arbitrary SQL commands via the type parameter to search.php and 2 remote authenticated administrators to execute arbitrary SQL commands via the listingupdateddays parameter to admin/findlistings.ph...

phpmyrealty-sql.txt

xaker.name & grabberz.com . . NN NNNN JNNN NNNN. NNN NNNNNNNNNNN NN NN NNN.NNNF .NNNNN NN """4NNN""" NN NN NNNNNN NNNNN NNN NNN NN NN 4NNNN NNNNNN.NNF NNN NN NN JNNNNL NN NNNNNN NNN NN NN JNNNNNN JNN NNNNN JNNF NN NN .NNNF NNN. NNN 4NNN NNN NN NN JNNN NNNN NN NNN NNN NN NN NN . http://xaker.name...

wbb-sql.txt

In Woltlab Burning Board Lite1.0.2 is a SQL-Injection Vulnerability in file: search.php : Line: 510-515 if!$savepostids eval"error"".$tpl-get"errorsearchnoresult"."";"; $result=$db-queryfirst"SELECT searchid FROM bb".$n."searchs WHERE postids='$savepostids' AND showposts='$POSTshowposts' AND...

phpMyRealty 1.0.x (search.php type) Remote SQL Injection Vulnerability

No description provided by source. xaker.name & grabberz.com . . NN NNNN JNNN NNNN. NNN NNNNNNNNNNN NN NN NNN.NNNF .NNNNN NN """4NNN""" NN NN NNNNNN NNNNN NNN NNN NN NN 4NNNN NNNNNN.NNF NNN NN NN JNNNNL NN NNNNNN NNN NN NN JNNNNNN JNN NNNNN JNNF&nbs...

PHPMyRealty 1.0.x - search.php SQL Injection

PHPMyRealty 1.0.x - search.php SQL Injection xaker.name & grabberz.com . . NN NNNN JNNN NNNN. NNN NNNNNNNNNNN NN NN NNN.NNNF .NNNNN NN """4NNN""" NN NN NNNNNN NNNNN NNN NNN NN NN 4NNNN NNNNNN.NNF NNN NN NN JNNNNL NN NNNNNN NNN NN NN JNNNNNN JNN NNNNN JNNF NN NN .NNNF NNN. NNN 4NNN NNN NN NN JNNN...

PHPMyRealty 1.0.x - 'search.php' SQL Injection

xaker.name & grabberz.com . . NN NNNN JNNN NNNN. NNN NNNNNNNNNNN NN NN NNN.NNNF .NNNNN NN """4NNN""" NN NN NNNNNN NNNNN NNN NNN NN NN 4NNNN NNNNNN.NNF NNN NN NN JNNNNL NN NNNNNN NNN NN NN JNNNNNN JNN NNNNN JNNF NN NN .NNNF NNN. NNN 4NNN NNN NN NN JNNN NNNN NN NNN NNN NN NN NN . http://xaker.name...

Unfixed XSS vulnerability at www.expressddl.com

Security researcher Uber0n, has submitted on 17/12/2007 a cross-site-scripting XSS vulnerability affecting www.expressddl.com, which at the time of submission ranked 83759 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 23/12/2007. It is...

CVE-2003-1536

Multiple cross-site scripting XSS vulnerabilities in Codeworx Technologies DCP-Portal 5.3.1 allow remote attackers to inject arbitrary web script or HTML via 1 the q parameter to search.php and 2 the year parameter to calendar.php...

Unfixed XSS vulnerability at www.yogawiz.com

Security researcher CoNqUeRoR, has submitted on 11/08/2007 a cross-site-scripting XSS vulnerability affecting www.yogawiz.com, which at the time of submission ranked 404635 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 21/08/2007. It is...

CVE-2003-1498

CVE-2003-1498 is an XSS vulnerability in WRENSOFT Zoom Search Engine, affecting version 2.0 Build 1018 and earlier. The vulnerability arises from improper handling of the zoom_query parameter in search.php, allowing remote attackers to inject arbitrary web script or HTML. The available documents ...

Unfixed XSS vulnerability at www.kde-files.org

Security researcher S0m.Ph, has submitted on 25/10/2007 a cross-site-scripting XSS vulnerability affecting www.kde-files.org, which at the time of submission ranked 416012 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 04/11/2007. It is...

CVE-2002-2255

The CVE-2002-2255 entry describes an XSS vulnerability in phpBB 2.0.3 and possibly earlier versions. The issue enables remote attackers to inject arbitrary web script or HTML via the search_username parameter in the searchuser mode, potentially compromising user sessions or data integrity. Accord...

MultiCart 1.0 Remote Blind SQL Injection Exploit

No description provided by source. Indonesian Newhack Security Advisory ------------------------------------ MultiCart 1.0 Remote Blind SQL Injection Waktu : Sep 30 2007 02:00AM Software : MultiCart 1.0 Vendor : http://www.iscripts.com/multicart/ Ditemukan oleh : k1tk4t | http://newhack.org Lokas...

multicart-sql.txt

Indonesian Newhack Security Advisory ------------------------------------ MultiCart 1.0 Remote Blind SQL Injection Waktu : Sep 30 2007 02:00AM Software : MultiCart 1.0 Vendor : http://www.iscripts.com/multicart/ Ditemukan oleh : k1tk4t | http://newhack.org Lokasi : Indonesia ----...

MultiCart 1.0 Remote Blind SQL Injection Exploit

Exploit for unknown platform in category web applications ================================================ MultiCart 1.0 Remote Blind SQL Injection Exploit ================================================ Indonesian Newhack Security Advisory ------------------------------------ MultiCart 1.0 Remo...

MultiCart 1.0 Remote Blind SQL Injection Exploit

No description provided by source. Indonesian Newhack Security Advisory ------------------------------------ MultiCart 1.0 Remote Blind SQL Injection Waktu : Sep 30 2007 02:00AM Software : MultiCart 1.0 Vendor : http://www.iscripts.com/multicart/ Ditemukan oleh : k1tk4t | http://newhack.org Lokas...

MultiCart 1.0 - Blind SQL Injection

Indonesian Newhack Security Advisory ------------------------------------ MultiCart 1.0 Remote Blind SQL Injection Waktu : Sep 30 2007 02:00AM Software : MultiCart 1.0 Vendor : http://www.iscripts.com/multicart/ Ditemukan oleh : k1tk4t | http://newhack.org Lokasi : Indonesia ----...

Unfixed XSS vulnerability at www.axsys.com

Security researcher WhatALegend, has submitted on 20/09/2007 a cross-site-scripting XSS vulnerability affecting www.axsys.com, which at the time of submission ranked 1542276 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 20/09/2007. It is...