1035 matches found
Rad User Manager Cross Site Scripting
Exploit Title: Rad User Manager XSS Vulnerabilities Date: 01.05.2010 Author: Valentin Category: webapps/0day Version: 2.90 Tested on: Debian Linux, Apache2, PHP5, MySQL5 CVE : Code : :::::::::::::::::::::::::::::::::::::: 0x1 :::::::::::::::::::::::::::::::::::::: General Information...
Sql injection
SQL injection vulnerability in signup.asp in Pre Classified Listings ASP allows remote attackers to execute arbitrary SQL commands via the email parameter...
CVE-2010-1371
Cross-site scripting XSS vulnerability in signup.asp in Pre Classified Listings ASP allows remote attackers to inject arbitrary web script or HTML via the address parameter...
CVE-2010-1369
SQL injection vulnerability in signup.asp in Pre Classified Listings ASP allows remote attackers to execute arbitrary SQL commands via the email parameter...
Pre Classified Listings Remote SQL Injection Vulnerability
Exploit for unknown platform in category web applications ========================================================== Pre Classified Listings Remote SQL Injection Vulnerability ==========================================================...
Pre Classified Listings - SQL Injection
Pre Classified Listings - SQL Injection ================================================================= Pre Classified Listings Remote SQL Injection Vulnerability ================================================================= Author: Crux Homepage: http://hack-tech.com Date: 2-27-2010 Softwa...
Pre Classified Listings - SQL Injection
================================================================= Pre Classified Listings Remote SQL Injection Vulnerability ================================================================= Author: Crux Homepage: http://hack-tech.com Date: 2-27-2010 Software Link:...
php Banner Exchange 1.2 Cross Site Scripting
======================================================================================== | Title : php Banner Exchange version 1.2 Arabic Version Cross Site Scripting Vulnerability | Author : indoushka | email : [email protected] | Home : Souk Naamane - 04325 - Oum El Bouaghi - Algeria...
iDevAffiliate v4.0 XSS Vulnerability
No description provided by source. ======================================================================================== | Title : iDevAffiliate v4.0 XSS Vulnerability | | Author : indoushka | | email : [email protected] | | Home : Souk Naamane - 04325 - Oum El Bouaghi - Algeria...
DigitalHive Shell Upload
| | DigitalHive Remote File Upload Vulnerability | | Author : ViRuSMaN | | Contact : [email protected] | | Home : Islam-Attack.CoM , HackTeach.OrG | | Download :http://www.digitalhive.com/base.php?page=site/telechargements.php&var=accueil - | | Exp: | | 1- First signup in the forum by going here...
DigitalHive Remote File Upload Vulnerability
No description provided by source. - | | DigitalHive Remote File Upload Vulnerability | | Author : ViRuSMaN | | Contact : [email protected] | | Home : Islam-Attack.CoM , HackTeach.OrG | | Download :http://www.digitalhive.com/base.php?page=site/telechargements.php&var=accueil - | | Exp: | | 1- First...
Bractus SunTrack Multiple XSS
Vendor: Bractus http://bract.us Product: SunTrack http://bract.us/demo/login.jsp Multiple stored XSS vulnerabilities exist in the Bractus SunTrack courier software suite. Affected scripts: newprofile.html title parameter signup/signup.html firstname, lastname, company parameter contact.html...
Mob oLyrics Cross Site Scripting
-----------------------------I AM MUSLIM !!------------------------------ ============================================================================== / \ | | | | / \ | | | | / \ | | | | / \ | || | / \ | | | | / \ | | IN THE NAME OF // \ || || // \ || ||...
Arab Portal 2.x SQL Injection
getqc &&!isset$apt-getqp $qc = $apt-getqc; $result = $apt-query"select name,comment from rafiacomment where id='$qc'"; $row = $apt-dbarray$result; $apt-row'quote' = "\n\n\nQUOTE..... :".$row'name'."\n".$row'comment'."/QUOTE"; /code - Debug : code $qc = intval$apt-getqc; /code - Note : Path to...
[InterN0T] AdPeeps 8.5d1 - XSS and HTML Injection Vulnerabilities
AdPeeps Ad Rotator - XSS and HTML Injection Vulnerabilities Version Affected: 8.5d1 3-18-09 newest Info: Ad Peeps is a banner rotator and text ad rotator - all in one that allows you to track, sell and manage banner ads, rich-media/flash ads and text ads on your website. Built using PHP/MYSQL, Ad...
CVE-2008-6717
U&M Software Signup 1.0 and 1.1 does not require administrative authentication for all scripts in the admin/ directory, which allows remote attackers to have an unspecified impact via a direct request to 1 adminstart.php, 2 admineventtype.php, 3 admineventdetails.php, 4 admineventlist.php, 5...
CVE-2008-6717
U&M Software Signup 1.0 and 1.1 does not require administrative authentication for all scripts in the admin/ directory, which allows remote attackers to have an unspecified impact via a direct request to 1 adminstart.php, 2 admineventtype.php, 3 admineventdetails.php, 4 admineventlist.php, 5...
CVE-2008-6717
CVE-2008-6717 affects U&M Software Signup 1.0 and 1.1. The issue is that administrative authentication is not required for all scripts in the admin/ directory, allowing remote attackers to access sensitive admin endpoints (adminstart.php, admineventtype.php, admineventdetails.php, admineventlist....
Availscript Article Script Remote File Upload Vulnerability
Exploit for unknown platform in category web applications =========================================================== Availscript Article Script Remote File Upload Vulnerability =========================================================== Availscript Article Script Remote File Upload Vulnerability...
U&M Software Signup 1.1 Auth Bypass Vulnerability
Exploit for unknown platform in category web applications ================================================= U&M Software Signup 1.1 Auth Bypass Vulnerability ================================================= ============================================================================== U&M Softwa...