Lucene search
+L

643 matches found

NVD
NVD
added 2009/08/21 11:30 a.m.27 views

CVE-2009-2924

Multiple SQL injection vulnerabilities in Videos Broadcast Yourself 2 allow remote attackers to execute arbitrary SQL commands via the 1 UploadID parameter to videoint.php, and possibly the 2 catid parameter to catvideo.php and 3 uid parameter to cviewchannels.php...

7.5CVSS8.6AI score0.00923EPSS
Exploits0References1
Prion
Prion
added 2009/08/21 11:30 a.m.15 views

Sql injection

Multiple SQL injection vulnerabilities in Videos Broadcast Yourself 2 allow remote attackers to execute arbitrary SQL commands via the 1 UploadID parameter to videoint.php, and possibly the 2 catid parameter to catvideo.php and 3 uid parameter to cviewchannels.php...

7.5CVSS9.3AI score0.00923EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2009/08/21 10:0 a.m.24 views

CVE-2009-2924

Multiple SQL injection vulnerabilities in Videos Broadcast Yourself 2 allow remote attackers to execute arbitrary SQL commands via the 1 UploadID parameter to videoint.php, and possibly the 2 catid parameter to catvideo.php and 3 uid parameter to cviewchannels.php...

8.6AI score0.00923EPSS
Exploits0References1
CVE
CVE
added 2009/08/21 10:0 a.m.36 views

CVE-2009-2924

CVE-2009-2924 describes multiple SQL injection vulnerabilities in Videos Broadcast Yourself 2. The affected components include videoint.php (UploadID parameter) and potentially catvideo.php (cat_id) and cviewchannels.php (uid). Successful exploitation could allow remote attackers to execute arbit...

7.5CVSS8.8AI score0.00923EPSS
Exploits0References1Affected Software1
Packet Storm
Packet Storm
added 2009/08/18 12:0 a.m.25 views

Videos Broadcast Yourself 2 SQL Injection

Viva IslaM Viva IslaM Remote SQL Injection Vulnerability videoint.php UploadID Videos Broadcast Yourself V2 http://www.videosbroadcastyourself.com/ AuTh0r : Mr.SQL H0ME : WwW.55a.NeT Email : [email protected] -: ExploiteS :-...

0.8AI score
Exploits0
0day.today
0day.today
added 2009/08/18 12:0 a.m.19 views

Videos Broadcast Yourself V2 (UploadID) SQL Injection Vuln

Exploit for unknown platform in category web applications ========================================================== Videos Broadcast Yourself V2 UploadID SQL Injection Vuln ========================================================== Viva IslaM Viva IslaM Remote SQL Injection Vulnerability...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2009/08/18 12:0 a.m.19 views

Videos Broadcast Yourself 2 - UploadID SQL Injection

Videos Broadcast Yourself 2 - UploadID SQL Injection Viva IslaM Viva IslaM Remote SQL Injection Vulnerability videoint.php UploadID Videos Broadcast Yourself V2 http://www.videosbroadcastyourself.com/ AuTh0r : Mr.SQL H0ME : WwW.55a.NeT Email : [email protected] -: ExploiteS :-...

0.5AI score
Exploits0
seebug.org
seebug.org
added 2009/08/18 12:0 a.m.32 views

Videos Broadcast Yourself V2 (UploadID) SQL Injection Vuln

No description provided by source. Viva IslaM Viva IslaM Remote SQL Injection Vulnerability videoint.php UploadID Videos Broadcast Yourself V2 http://www.videosbroadcastyourself.com/ AuTh0r : Mr.SQL H0ME : WwW.55a.NeT Email : [email protected] -: ExploiteS :-...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2009/08/18 12:0 a.m.36 views

Videos Broadcast Yourself 2 - 'UploadID' SQL Injection

Viva IslaM Viva IslaM Remote SQL Injection Vulnerability videoint.php UploadID Videos Broadcast Yourself V2 http://www.videosbroadcastyourself.com/ AuTh0r : Mr.SQL H0ME : WwW.55a.NeT Email : [email protected] -: ExploiteS :-...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2008/10/11 12:0 a.m.21 views

Joomla Videos 1.0.0 SQL Injection

Joomla Component comvideos SQL Injection Vulnerability Vulnerability found by: Valon Kerolli Contact: valonatitshqip.com Site: www.itshqip.com ScriptName: "Joomla" Component: "Videos comvideos" Version: "1.0.0" Author: "Newgekko" Author E-mail: "[email protected] " Author URL: "www.newgekko.com"...

1.4AI score
Exploits0
xssed
xssed
added 2008/08/15 12:0 a.m.12 views

Unfixed XSS vulnerability at www.jugglingdb.com

Security researcher austinator, has submitted on 15/08/2008 a cross-site-scripting XSS vulnerability affecting www.jugglingdb.com, which at the time of submission ranked 264781 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 16/08/2008. It is...

6.6AI score
Exploits0References1
Exploit DB
Exploit DB
added 2008/04/28 12:0 a.m.33 views

Joovili 3.1 - 'browse.videos.php' SQL Injection

-Joovili- Rem0te SQL Injection Vulnerability IN == browse.videos.php Author: HaCkeR-EgY H^0mE: WWW.PAL-HACKER.COM , ATSDP.COM CONTact: [email protected] ================================================ Script : Joovili version : Version 3.1.0 price :$155 USD DOWNL0AD : www.joovili.com...

7.4AI score
Exploits0
xssed
xssed
added 2007/08/08 12:0 a.m.10 views

Unfixed XSS vulnerability at www.comegetyousome.com

Security researcher Norehem, has submitted on 08/08/2007 a cross-site-scripting XSS vulnerability affecting www.comegetyousome.com, which at the time of submission ranked 37308 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 10/08/2007. It is...

Exploits0References1
Packet Storm
Packet Storm
added 2007/07/13 12:0 a.m.19 views

youtube-bypass2.txt

Youtube.com requires account creation and login before allowing visitors to view videos flagged by users as inappropriate. Sample flagged video: http://www.youtube.com/watch?v=pJg0MYnndnw "This video or group may contain content that is inappropriate for some users, as flagged by YouTube's user...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2007/07/05 12:0 a.m.17 views

PHP Director Videos.PHP SQL注入漏洞

PHP Director是一款基于PHP的WEB应用程序。 PHP Director不正确过滤用户提交的URI数据,远程攻击者可以利用漏洞进行SQL注入攻击获得敏感信息。 问题是由于'Videos.PHP'脚本对用户提交的'id'参数缺少过滤,提交恶意SQL查询作为参数数据,可导致应用程序处理时更改原来的SQL逻辑,攻击者可以获得敏感信息或者操作数据库。 PHPDirector 0.21 目前没有解决方案提供: http://www.phpdirector.co.uk/site/...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2007/06/30 12:0 a.m.29 views

youtube-bypass.txt

Youtube.com requires account creation and login before allowing visitors to view videos flagged by users as inappropriate. Sample flagged video: http://www.youtube.com/watch?v=Chei2buYo9s "This video may contain content that is inappropriate for some users, as flagged by YouTube's user community...

7.4AI score
Exploits0
Prion
Prion
added 2007/02/03 1:28 a.m.16 views

Design/Logic Flaw

Pictures and Videos on Windows Mobile 5.0 and Windows Mobile 2003 and 2003SE for Smartphones and PocketPC allows user-assisted remote attackers to cause a denial of service device hang via a malformed JPEG file...

7.1CVSS7.1AI score0.15759EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2007/02/03 1:28 a.m.19 views

CVE-2007-0674

Pictures and Videos on Windows Mobile 5.0 and Windows Mobile 2003 and 2003SE for Smartphones and PocketPC allows user-assisted remote attackers to cause a denial of service device hang via a malformed JPEG file...

7.1CVSS6.6AI score0.15759EPSS
Exploits0References5
myhack58
myhack58
added 2006/07/15 12:0 a.m.36 views

Hacking skills: in the Real movie put Trojan horse-vulnerability warning-the black bar safety net

Frequently encountered rm the movie plays when pop-up web pages, has been do not know how, a few days ago saw the mass of software in an article only to know the insertion and removal method, a good dongdong dare not exclusive, in the online search of the three articles, The to everyone. In the...

7.1AI score
Exploits0
securityvulns
securityvulns
added 2006/04/10 12:0 a.m.27 views

XMB Forum 1.9.5-Final XSS

XMB Forum 1.9.5 I have not tested this on earlier versions allows users to embed flash .swf videos in their posts. Normally, you could set an option on the object tag to say that ActionScript cannot run, but in this case we don't. The way we execute our code is by making a flash movie containing...

1.1AI score
Exploits0
Rows per page
Query Builder