Information disclosure

PHP Point Of Sale POS 10.7 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by system/scaffolding/views/view.php and certain other files...

Information disclosure

bbPress 1.0.2 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by bb-templates/kakumei/view.php and certain other files...

CVE-2011-3719

CodeIgniter 1.7.2 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by system/scaffolding/views/view.php and certain other files...

CVE-2011-3710

bbPress 1.0.2 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by bb-templates/kakumei/view.php and certain other files...

Ileys Technology Inc. SQL Injection

x Exploit Title: Site Designed & Developed by: Ileys Technology Inc. SQL Injection Vulnerability view.php x Date: 25/07/2011 x Author: 3spi0n x HomePage: Http://Www.3spi0n.NET | Http://Twitter.Com/RigidusCO | CrypTR.ORG x E-Mail: 3spi0natgmaildotcom x Software Link: http://ileystechnology.com/ x...

Ileys Web Control 2.0 SQL Injection

x Exploit Title: Powered by: Ileys Web Control 2.0 SQL Ýnjection Vulnerability view.php x Date: 25/07/2011 x Author: 3spi0n x HomePage: Http://Www.3spi0n.NET | Http://Twitter.Com/RigidusCO | CrypTR.ORG x E-Mail: 3spi0natgmaildotcom x Software Link: http://ileystechnology.com/ x Category: WebApps ...

PHP-AddressBook v6.2.12 (view.php) SQL Injection Vulnerability

Exploit for php platform in category web applications 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 +...

PHP-AddressBook 6.2.12 SQL Injection

1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : 1337day.com 0 1 + Support e-mail :...

Traidnt UP 2.0 SQL Injection

|Title : Traidnt UP view.php SQL Injection Vulnerability | Software : Traidnt UP | Version : 2.0 | Date : 09 / 05 / 2011 | Author : ScOrPiOn | Contact : [email protected] | Google Dork : "Powered by Traidnt UP Version 2.0" | Vendor :...

Traidnt UP (view.php) SQL Injection Vulnerability

Exploit for php platform in category web applications |Title : Traidnt UP view.php SQL Injection Vulnerability | Software : Traidnt UP | Version : 2.0 | Date : 09 / 05 / 2011 | Author : ScOrPiOn | Contact : email protected | Google Dork : "Powered by Traidnt UP Version 2.0" | Exploit : |...

ADAN Neuronlabs - 'view.php' SQL Injection

-------------------------------------------------------- ADAN view.php Sql Injection Vulnerability -------------------------------------------------------- Date 04-03-2011 -------------------------------------------------------- Discovered By: IRAQJAGUAR Mail: [email protected]...

ADAN Neuronlabs - view.php SQL Injection

ADAN Neuronlabs - view.php SQL Injection -------------------------------------------------------- ADAN view.php Sql Injection Vulnerability -------------------------------------------------------- Date 04-03-2011 -------------------------------------------------------- Discovered By: IRAQJAGUAR...

ADAN Neuronlabs SQL Injection

-------------------------------------------------------- ADAN view.php Sql Injection Vulnerability -------------------------------------------------------- Date 04-03-2011 -------------------------------------------------------- Discovered By: IRAQJAGUAR Mail: [email protected]...

CVE-2010-1617

user/view.php in Moodle 1.8.x before 1.8.12 and 1.9.x before 1.9.8 does not properly check a role, which allows remote authenticated users to obtain the full names of other users via the course profile page...

Sql injection

Multiple SQL injection vulnerabilities in Graugon PHP Article Publisher 1.0 allow remote attackers to execute arbitrary SQL commands via the 1 c parameter to index.php and the 2 id parameter to view.php...

Sql injection

Multiple SQL injection vulnerabilities in Community CMS 0.5 allow remote attackers to execute arbitrary SQL commands via the 1 articleid parameter to view.php and the 2 a parameter in an event action to calendar.php, reachable through index.php...

CVE-2009-4794

Multiple SQL injection vulnerabilities in Community CMS 0.5 allow remote attackers to execute arbitrary SQL commands via the 1 articleid parameter to view.php and the 2 a parameter in an event action to calendar.php, reachable through index.php...

Uploader 0.7 Shell Upload Vulnerability

Exploit for php platform in category web applications ======================================= Uploader 0.7 Shell Upload Vulnerability ======================================= Exploit Title: Uploader 0.7 Shell Upload Vulnerability Date: 16.04.2010 Author: DigitALL Software Link: http://www.paehl.de...

CVE-2010-1298

Directory traversal vulnerability in view.php in Pulse CMS 1.2.2 allows remote attackers to read arbitrary files via directory traversal sequences in the f parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

CVE-2010-1080

Cross-site scripting XSS vulnerability in view.php in Pulse CMS 1.2.2 allows remote attackers to inject arbitrary web script or HTML via the f parameter...