2786 matches found
Looking to Bolster Security, Dropbox Adds Two-Factor Authentication
Several weeks after announcing that some of its users’ log-ins and passwords had been stolen, file storage company Dropbox announced it has added a two-step authentication process over the weekend to help reinforce the security of its users’ accounts. The added layer of security is currently...
xt:Commerce 3.04 SP2.1 Blind SQL Injection
+---------------------------------+ | xt:Commerce = v3.04 SP2.1 | | commerce:SEO = v2.1 CE | | Gambio = v2.0.10 SP1.4 | | Time Based Blind SQL Injection | +---------------------------------+ Author.............: Ralf Zimmermann Mail...............: infoATstoffline.com Vendor Homepage....:...
xt:Commerce 3.04 SP2.1 - Blind SQL Injection
xt:Commerce 3.04 SP2.1 - Blind SQL Injection +---------------------------------+ | xt:Commerce = v3.04 SP2.1 | | commerce:SEO = v2.1 CE | | Gambio = v2.0.10 SP1.4 | | Time Based Blind SQL Injection | +---------------------------------+ Author.............: Ralf Zimmermann Mail...............:...
xt:Commerce 3.04 SP2.1 - Blind SQL Injection
+---------------------------------+ | xt:Commerce = v3.04 SP2.1 | | commerce:SEO = v2.1 CE | | Gambio = v2.0.10 SP1.4 | | Time Based Blind SQL Injection | +---------------------------------+ Author.............: Ralf Zimmermann Mail...............: infoATstoffline.com Vendor Homepage....:...
MagyCMS 2.0.1121 BETA Blind SQL Injection
Region ; Directives created by AutoIt3WrapperGUI AutoIt3WrapperOutfile=cpl.exe AutoIt3WrapperUseUpx=n AutoIt3WrapperChange2CUI=y EndRegion ; Directives created by AutoIt3WrapperGUI NoTrayIcon include include include include cs THIS IS A COMPLETE EXPLOIT WHICH IS WRITEN IN AUTOIT...
Blind SQL Injection in Webmatic
High-Tech Bridge SA Security Research Lab has discovered vulnerability in Webmatic, which can be exploited to perform Blind SQL Injection attacks. 1 Blind SQL Injection in Webmatic: CVE-2012-3350 1.1 Input passed via the "Referer:" field of the HTTP header to index.php is not properly sanitised...
Joomla com_etree Blind SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Joomla cometree Blind SQL-inj Vuln Date: 20.02.2012 Author: Mach1ne Version: 1.5.+ Category:: remote, webapps Google dork: inurl:compersonal Tested in: web ============================== ================================= Multipl...
CommonSense CMS Blind SQL Injection
Exploit Title: CommonSense CMS script Blind SQL Injection Vulnerability Google Dork: intext:"Powered by CommonSense CMS script" Date: 6/1/2012 Author: H4ckCity Security Team Discovered By: farbodmahini Home: WwW.H4ckCity.Org Version: All Version Category:: webapps Security Risk:: High Tested on:...
CommonSense CMS script Blind SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: CommonSense CMS script Blind SQL Injection Vulnerability Google Dork: intext:"Powered by CommonSense CMS script" Date: 6/1/2012 Author: H4ckCity Security Team Discovered By: farbodmahini Home: WwW.H4ckCity.Org Version: All Versi...
Authenex A-KeyASAS Web Management Control 3.1.0.2 - Blind SQL Injection
Authenex A-KeyASAS Web Management Control 3.1.0.2 - Blind SQL Injection ============================================================ FOREGROUND SECURITY, SECURITY ADVISORY 2011-002 - Original release date: September 21, 2011 - Discovered by: Jose Carlos de Arriba - Senior Security Analyst at...
Authenex A-Key/ASAS Web Management Control 3.1.0.2 (latest)
Exploit for multiple platform in category web applications ============================================================ FOREGROUND SECURITY, SECURITY ADVISORY 2011-002 - Original release date: September 21, 2011 - Discovered by: Jose Carlos de Arriba - Senior Security Analyst at Foreground Securi...
WAVSEP 1.0.3 – Web Application Vulnerability Scanner Evaluation Project
WAVSEP 1.0.3 – Web Application Vulnerability Scanner Evaluation Project A vulnerable web application designed to help assessing the features, quality and accuracy of web application vulnerability scanners. This evaluation platform contains a collection of unique vulnerable web pages that can be...
BlueSoft Rate My Photo Site SQL Injection
Script Name : BlueSoft Rate My Photo Site Vulnerable Type : Blind SQL Ýnjection Time Based Author : darkTR Date : 08.08.2011 E-mail : [email protected] Target: : index.php?cmd=SQLi Demo: : http://shopbluesoft.com/demo7/index.php?cmd=10&ty=2SQLi darkTR / Code Hunters TIM...
Joomla 1.5 VirtueMart 1.1.7 Blind SQL Injection
Exploit Title: Joomla 1.5 comvirtuemart 'Joomla 1.5 VirtueMart Component %q A vulnerability was discovered by Rocco Calvi and Steve Seeley which identifies unauthenticated time-based blind SQL injection in the "page" variable of the virtuemart component. This vulnerability allows an attacker to...
Joomla! Component com_virtuemart 1.1.71.5 - Blind SQL Injection (Metasploit)
Joomla! Component comvirtuemart 1.1.71.5 - Blind SQL Injection Metasploit Exploit Title: Joomla 1.5 comvirtuemart 'Joomla 1.5 VirtueMart Component %q A vulnerability was discovered by Rocco Calvi and Steve Seeley which identifies unauthenticated time-based blind SQL injection in the "page" variab...
ICMP Timestamp Detection
The remote host responded to an ICMP timestamp request. The Timestamp Reply is an ICMP message which replies to a Timestamp message. It consists of the originating timestamp sent by the sender of the Timestamp as well as a receive timestamp and a transmit timestamp. This information could...
Joomla! Component com_virtuemart 1.1.7 - Blind SQL Injection
!/usr/bin/python Joomla! comvirtuemart 46 million results Patch: http://dev.virtuemart.net/attachments/202/Patch-VirtueMart-1.1.7a.zip References: - http://www.stratsec.net/Research/Advisories/VirtueMart-SQL-Injection-SS-2011-003 -...
AWBS 2.9.2 - cart.php Blind SQL Injection
AWBS 2.9.2 - cart.php Blind SQL Injection AWBS 2.9.2 Blind SQL Injection 0day ============================================================================================= Dork....: inurl:/cart?ca=addother&oid= Date....: 01-16-2011 Author..: ShivX Contact.: shivanxatgmaildotcom Vendor..:...
SqlInjector : A MS SQL Server Blind Injector !
SqlInjector was originally called as BlindSQLInjector. SqlInjector is an application to perform completely blind SQL injection, that currently supports only MS SQL Server. It uses time based inference to determine true or false conditions to extract data. The key feature is that it uses a binary...
Oxygen2PHP 1.1.3 - 'forumdisplay.php' Blind SQL Injection
!/usr/bin/perl 0-Day Oxygen2PHP newGET = $Host; my $HTTP = new LWP::UserAgent; my $Referrer = "http://warwolfz.altervista.org/"; my $DefaultTime = request$Referrer; sub BlindSQLJnjection my $dec,$hex = @; return "./forumdisplay.php?fid=-1'+OR+1!=SELECT...