13 matches found
EUVD-2008-3929
Malware in sbrugna...
EUVD-2008-3768
Malware in sbrugna...
ACG-PTP 'adid' SQL注入漏洞
BUGTRAQ ID: 31005 CNCAN ID:CNCAN-2008090502 ACG-PTP是一款基于PHP的WEB应用程序。 ACG-PTP不正确处理用户提交的输入,远程攻击者可以利用漏洞进行SQL注入攻击,可能获得敏感信息或操作数据库。 问题由于'index.php'脚本对用户提交给'adid'参数缺少过滤,构建恶意SQL查询作为参数数据,可更改原来的SQL逻辑,获得敏感信息或操作数据库。 DiscountedScripts ACG-PTP 1.0.6 目前没有解决方案提供:...
ACG-PTP 1.0.6 (adid) Remote SQL Injection Vulnerability
No description provided by source. || | | ACG-PTP 1.0.6 adid Remote SQL Injection Vulnerability | | |---------------------Hussin X----------------------| | | Author: Hussin X | | Home : WwW.Hussin-X.CoM | www.tryag.cc/cc | | email: darkangelg85atYahooDoTcom | | | | | | | script...
CVE-2008-3944
SQL injection vulnerability in index.php in ACG-PTP 1.0.6 allows remote attackers to execute arbitrary SQL commands via the adid parameter in an adorder action...
Sql injection
SQL injection vulnerability in index.php in ACG-PTP 1.0.6 allows remote attackers to execute arbitrary SQL commands via the adid parameter in an adorder action...
CVE-2008-3944
SQL injection vulnerability in index.php in ACG-PTP 1.0.6 allows remote attackers to execute arbitrary SQL commands via the adid parameter in an adorder action...
CVE-2008-3944
The CVE-2008-3944 entry describes a SQL injection vulnerability in the ACG-PTP 1.0.6 application, specifically in index.php where the adid parameter used in an adorder action can be exploited by a remote attacker to execute arbitrary SQL commands. The issue is tied to unsanitized input in adid, e...
ACG-PTP 1.0.6 (adid) Remote SQL Injection Vulnerability
Exploit for unknown platform in category web applications ======================================================= ACG-PTP 1.0.6 adid Remote SQL Injection Vulnerability ======================================================= || | | ACG-PTP 1.0.6 adid Remote SQL Injection Vulnerability | |...
ACG-PTP 1.0.6 - 'adid' SQL Injection
|| | | ACG-PTP 1.0.6 adid Remote SQL Injection Vulnerability | | |---------------------Hussin X----------------------| | | Author: Hussin X | | Home : WwW.Hussin-X.CoM | www.tryag.cc/cc | | email: darkangelg85atYahooDoTcom | | | | | | | script...
CVE-2008-3782
Multiple cross-site scripting XSS vulnerabilities in admin/index.php in ACG-PTP 1.0.6 allow remote authenticated administrators to inject arbitrary web script or HTML via the 1 Category name field under Advertisement Packages, the 2 Reason field under Credit/Debit Users, and the 3 FAQ question an...
CVE-2008-3782
Multiple XSS vulnerabilities exist in admin/index.php of ACG-PTP 1.0.6, allowing remote authenticated administrators to inject arbitrary web script or HTML. The flaws are triggered via (1) Category name under Advertisement Packages, (2) Reason under Credit/Debit Users, and (3) FAQ question and (4...
acgptp-sql.txt
|| | | ACG-PTP 1.0.6 adid Remote SQL Injection Vulnerability | | |---------------------Hussin X----------------------| | | Author: Hussin X | | Home : www.tryag.cc/cc | | email: darkangelg85atYahooDoTcom | | | | | | | script :http://discountedscripts.com/productinfo.php?productsid=65 | | DorK :...