Plexum X5 SQL vuln.

Plexum X5 SQL vuln. Vuln. discovered by : r0t Date: 19 april 2006 vendorlink:http://www.plexum.com/network/ affected versions:X5 and previous orginal advisory:http://pridels.blogspot.com/2006/04/plexum-x5-sql-vuln.html Vuln. Description: Plexum contains a flaw that allows a remote sql injection...

[SA19654] Boardsolution "keyword" Cross-Site Scripting Vulnerability

TITLE: Boardsolution "keyword" Cross-Site Scripting Vulnerability SECUNIA ADVISORY ID: SA19654 VERIFY ADVISORY: http://secunia.com/advisories/19654/ CRITICAL: Less critical IMPACT: Cross Site Scripting, Exposure of system information WHERE: From remote SOFTWARE: Boardsolution 1.x...

[SA19685] PMTool "order" SQL Injection Vulnerabilities

TITLE: PMTool "order" SQL Injection Vulnerabilities SECUNIA ADVISORY ID: SA19685 VERIFY ADVISORY: http://secunia.com/advisories/19685/ CRITICAL: Less critical IMPACT: Manipulation of data WHERE: From remote SOFTWARE: PMTool 1.x http://secunia.com/product/9419/ DESCRIPTION: Pratiksha Doshi has...

CommuniMail XSS vuln.

CommuniMail XSS vuln. Vuln. discovered by : r0t Date: 19 april 2006 vendor:http://www.sibsoft.net/communimail.html affected versions: 1.2 and previous orginal advisory: http://pridels.blogspot.com/2006/04/communimail-xss-vuln.html Vuln. Description: IntelliLink Pro contains a flaw that allows a...

xFlow v5.x multiple vuln.

xFlow v5.x multiple vuln. Vuln. discovered by : r0t Date: 18 april 2006 vendorlink:http://www.skymarx.com/affiliatesoftware.html affected versions:v5.46.11 and previous orginal advisory: http://pridels.blogspot.com/2006/04/xflow-v5x-multiple-vuln.html Product info: After over five years of...

BluePay Manager v2.0 Script Insertion Vulnerability

BluePay Manager v2.0 Script Insertion Vulnerability Vuln. discovered by : r0t Date: 18 april 2006 vendor:bluepay.com affected versions:v2.0 and previous orginal advisory: http://pridels.blogspot.com/2006/04/bluepay-manager-v20-script-insertion.html Vuln. description: Input passed to the "Account...

ModernBill multiple SQL inj. vuln.

ModernBill multiple SQL inj. vuln. Vuln. discovered by : r0t Date: 18 april 2006 vendor:www.moderngigabyte.com product link: www.moderngigabyte.net/modernbill/index.htm?ref=homeofmodernbill affected versions:4.3.2 and previous orginal advisory:...

phpLinks <= 2.1.3.1 XSS vuln.

phpLinks = 2.1.3.1 XSS vuln. Vuln. discovered by : r0t Date: 16 april 2006 vendorlink:http://sourceforge.net/projects/phplinks/ affected versions:phpLinks 2.1.3.1 and previous orginal advisory: http://pridels.blogspot.com/2006/04/phplinks-2131-xss-vuln.html Vuln. Description: phpLinks contains a...

Musicbox vuln.

Musicbox vuln. Vuln. discovered by : r0t Date: 16 april 2006 vendorlink:http://www.musicboxv2.com/ affected versions:2.3.3 and previous orginal advisory:http://pridels.blogspot.com/2006/04/musicbox-vuln.html Vuln. Description: 1. Input passed to the "term" parameter when performing a search isn't...

osCommerce "extras/" information/source code disclosure

---- osCommerce = 2.2 "extras/" information/source code disclosure ------------ software site: http://www.oscommerce.com/ if extras/ folder is placed inside the www path, you can see all files on target system, including php source code with database details, poc:...

osCommerce <= 2.2 (extras) Source Code Disclosure Vulnerability

No description provided by source. ---- osCommerce = 2.2 "extras/" information/source code disclosure ------------ software site: http://www.oscommerce.com/ if extras/ folder is placed inside the www path, you can see all files on target system, including php source code with database details, po...

osCommerce 2.2 - 'extras' Source Code Disclosure

---- osCommerce \n"; print nl2brhtmlentitiesimplode$readme, ' '; print "Continue\n"; print "\n"; exit; ... google search: inurl:"extras/update.php" intext:mysql.php -display -------------------------------------------------------------------------------- rgod site: http://retrogod.altervista.org...

osCommerce <= 2.2 (extras) Source Code Disclosure Vulnerability

Exploit for unknown platform in category web applications =============================================================== osCommerce \n"; print nl2brhtmlentitiesimplode$readme, ' '; print "Continue\n"; print "\n"; exit; ... google search: in...

osCommerce 2.2 - extras Source Code Disclosure

osCommerce 2.2 - extras Source Code Disclosure ---- osCommerce \n"; print nl2brhtmlentitiesimplode$readme, ' '; print "Continue\n"; print "\n"; exit; ... google search: inurl:"extras/update.php" intext:mysql.php -display...

[SA19601] dnGuestbook admin.php SQL Injection Vulnerability

TITLE: dnGuestbook admin.php SQL Injection Vulnerability SECUNIA ADVISORY ID: SA19601 VERIFY ADVISORY: http://secunia.com/advisories/19601/ CRITICAL: Moderately critical IMPACT: Manipulation of data WHERE: From remote SOFTWARE: dnGuestbook 2.x http://secunia.com/product/9270/ DESCRIPTION: snatche...

ShopXS v4.0 XSS vuln.

ShopXS v4.0 XSS vuln. Vuln. discovered by : r0t Date: 10 april 2006 vendor:MK Internet-Service GmbH vendorlink:http://www.shopxs.de/ affected versions:ShopXS-Version 4.00 and previous orginal advisory:http://pridels.blogspot.com/2006/04/shopxs-v40-xss-vuln10.html Vuln. Description: Input passed t...

ecotwo Shopsystem vuln.

ecotwo Shopsystem vuln. Vuln. discovered by : r0t Date: 9 april 2006 vendor:http://www.i-webshop.de/6-0-shopsysteme.html affected versions: 1.0-192 and previous orginal advisory: http://pridels.blogspot.com/2006/04/ecotwo-shopsystem-vuln.html Vuln. description: Input passed to the "lang" paramete...

Shopweezle 2.0 multiple vuln.

Shopweezle 2.0 multiple vuln. Vuln. discovered by : r0t Date: 9 april 2006 vendor:http://shopweezle.de/ affected versions: ShopWeezle PERSONAL ShopWeezle PROFESSIONAL ShopWeezle PROFESSIONAL+ orginal advisory: http://pridels.blogspot.com/2006/04/shopweezle-20-multiple-vuln.html Vuln. description:...

APT-webshop-system vuln.

APT-webshop-system vuln. Vuln. discovered by : r0t Date: 9 april 2006 vendor:http://www.apt-webservice.de/shopsoftware/ affected versions: 4.0 PRO 3.0 BASIC 3.0 LIGHT orginal advisory: http://pridels.blogspot.com/2006/04/apt-webshop-system-vuln.html Vuln. description: 1. SQL injection vuln...

Kept in purdah who did not know: FU_Rootkit-vulnerability warning-the black bar safety net

I in 2 0 0 4 year 1 1 period of black anti-posted on the gadgets clever to delete the Guest/Administrator accounts on this article, there are a lot of friends asking about tools is how to write, in fact this tool inside most of the code is my copy FURootkit over. Since friends like, these days I'...