Lucene search
+L

109 matches found

Cvelist
Cvelist
added 2024/01/23 4:31 a.m.43 views

CVE-2024-22768 Hitron Systems DVR HVR-4781 Improper Input Validation Vulnerability

Improper Input Validation in Hitron Systems DVR HVR-4781 1.034.02 allows an attacker to cause network attack in case of using defalut admin ID/PW...

7.4CVSS7.6AI score0.00562EPSS
Exploits0References1
OSV
OSV
added 2023/09/09 7:15 a.m.2 views

CVE-2023-4845

A vulnerability was found in SourceCodester Simple Membership System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file accounteditquery.php. The manipulation of the argument adminid leads to sql injection. The attack can be initiated remotely. The exploit...

9.8CVSS5.8AI score0.00649EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2023/09/09 12:0 a.m.7 views

PT-2023-30854 · Sourcecodester · Sourcecodester Simple Membership System

Name of the Vulnerable Software and Affected Versions: SourceCodester Simple Membership System version 1.0 Description: A critical vulnerability was found in the SourceCodester Simple Membership System. The issue affects the file account edit query.php, where the manipulation of the admin id...

9.8CVSS8AI score0.00649EPSS
Exploits1References9
CNVD
CNVD
added 2020/02/24 12:0 a.m.3 views

fauzantrif eLection SQL Injection Vulnerability

fauzantrif eLection is a web-based election system. A SQL injection vulnerability exists in fauzantrif eLection 2.0. An attacker can exploit this vulnerability to achieve remote code execution via the admin/ajax/opkandidat.php id parameter...

7.2CVSS9.1AI score0.0104EPSS
Exploits2References1
0day.today
0day.today
added 2019/10/02 12:0 a.m.91 views

Detrix EDMS 1.2.3.1505 - SQL Injection Vulnerability

Exploit for php platform in category web applications !/usr/bin/php / Exploit Title: Detrix EDMS cleartext user password remote SQLI exploit Google Dork: Date: Jul 2019 Exploit Author: Burov Konstantin Vendor Homepage: forum.detrix.kz Software Link:...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2017/03/06 12:0 a.m.12 views

Groupon Clone Script 3.01 - catid SQL Injection

Groupon Clone Script 3.01 - catid SQL Injection Exploit Title: Groupon Clone Script v3.01 - SQL Injection Google Dork: N/A Date: 06.03.2017 Vendor Homepage: http://www.phpscriptsmall.com/ Software : http://www.phpscriptsmall.com/product/groupon-clone-script/ Demo:...

8.6AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.17 views

YaBB SE <= 1.5.5 - Remote Command Execution Exploit

No description provided by source. !/usr/bin/perl YaBB SE version = 1.5.5 commands execution exploit by RST/GHC GUI version = THIS IS UNPUBLISHED RST/GHC EXPLOIT CODE KEEP IT PRIVATE coded by 1dt.w0lf http://rst.void.ru http://ghc.ru use Tk; use Tk::Menu; use LWP::UserAgent; $top = MainWindow-new...

7.1AI score
Exploits0
0day.today
0day.today
added 2010/08/09 12:0 a.m.36 views

wizmall 6.4 CSRF Vulnerabilities

Exploit for php platform in category web applications ================================ wizmall 6.4 CSRF Vulnerabilities ================================ Author: pyw1414 Software Link: http://www.shop-wiz.com/board/main/view/root/wizmall01/159/0 Version: 6.4 UTF-8 For php Tested on: XP SP3 -= CSRF...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2010/08/09 12:0 a.m.36 views

wizmall 6.4 - Cross-Site Request Forgery

Exploit Title: wizmall 6.4 CSRF Vulnerabilities Date: 08/10/2010 Author: pyw1414 Software Link: http://www.shop-wiz.com/board/main/view/root/wizmall01/159/0 Version: 6.4 UTF-8 For php Tested on: XP SP3 -= CSRF Exploit - Change Admin ID/PW =- Wizmall 6.4 UTF-8 For php CSRF Vulnerabilities - Change...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2010/05/21 12:0 a.m.21 views

Online Job Board - Authentication Bypass

Online Job Board - Authentication Bypass '/ -.- --------------------oOO------OOo----------------------------- | Online Job Board Auth Bypass SQL Injection Vulnerability | | works only with magicquotesgpc = off | ---------------------------------------------------------------- ! Discovered: cr4wl3...

0.3AI score
Exploits0
exploitpack
exploitpack
added 2010/02/27 12:0 a.m.18 views

Gravity Board X 2.0 Beta (Public Release 3) - SQL Injection

Gravity Board X 2.0 Beta Public Release 3 - SQL Injection !/usr/bin/perl Exploit Title: Gravity Board X 2.0 BETA Public Release 3 SQL INJECTION Date: 26.02.2010 Author: Ctacok Software Link: http://www.gravityboardx.com/ Version: 2.0 BETA Public Release 3 Tested on: Windows SP 3 Code : exploit co...

Exploits0
seebug.org
seebug.org
added 2008/11/06 12:0 a.m.27 views

Pre Classified Listings Insecure Cookie Handling Vulnerability

No description provided by source. -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= IN THE NAME OF ALLAH -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= Pre...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2008/06/14 12:0 a.m.15 views

GLLCTS2 &lt;= 4.2.4 (login.php detail) SQL Injection Exploit

No description provided by source. ?php settimelimit0; ignoreuserabort0; function addhtmlspace$count $out2 = strrepeat"",$count; return $out2; function writecontent$title,$desc,$content $out = "div class='content'div class='item'h1$title/h1div class='descr'$desc/divbrp$content/p/div"; return $out...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2008/04/14 12:0 a.m.28 views

mumbojumbo-sql.txt

php '.$argv0.' http://www.site.com/cms/ 300 1 '; if $argc 1 printr' '; echo 'Searching for Admin: '; for$i=1; $i = 50; $i++ $temp1 = filegetcontents$argv1.'index.php?id='.$argv2.'+and+lengthselect+kennung+from+op4admin+where+id='.$argv3.'='.$i.'--'; if strpos$temp1,'Die angeforderte Seite existie...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2008/01/22 12:0 a.m.51 views

YaBB SE 1.5.5 - Remote Command Execution

!/usr/bin/perl YaBB SE version new; $top-title"r57yabbse155ceGUI"; $top-resizable0,0; $url = 'http://server/forum/index.php'; $id = '1'; $cookiename = 'YaBBSE155'; $cmd = 'ls -la; id; uname -a;'; $button1text = 'Found admin ID'; $foundadminid = \ $stop = 0; $xpl = LWP::UserAgent-new or die;...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2007/05/20 12:0 a.m.9 views

Alstrasoft Template Seller Pro 3.25 - Admin Password Change

Alstrasoft Template Seller Pro 3.25 - Admin Password Change !/usr/bin/php -q -d shortopentag=on Thanks to rgod for the php code and Marty for the Love "; if $argc4 echo "Usage: php ".$argv0." Host Path ID password Host: target server ip/hostname Path: path of template ID: A Valid Admin ID usally ...

0.3AI score
Exploits0
Exploit DB
Exploit DB
added 2007/04/11 12:0 a.m.25 views

PunBB 1.2.14 - Remote Code Execution

!/usr/bin/php URL: http://www.acid-root.new.fr/ ----------------------------------------------------------------------- Usage: $argv0 -url -usr -pwd Options Params: -url For example http://victim.com/punBB/ -usr User account 1 post at least -pwd Password account Options: -uid Admin id default=2...

7AI score
Exploits0
Packet Storm
Packet Storm
added 2007/03/08 12:0 a.m.39 views

webspell-exec.txt

!/usr/bin/php URL: http://www.acid-root.new.fr/ ----------------------------------------------------------------------- Usage: $argv0 -url -file Options Params: -url For example http://victim.com/webspell/ -file The file you wanna upload c99shell.php... Options: -prefix Table prefix default=webs...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2007/03/04 12:0 a.m.15 views

webSPELL &lt;= 4.01.02 Remote PHP Code Execution Exploit

No description provided by source. !/usr/bin/php ?php errorreportingEALL ^ ENOTICE; Admin id: 1 Admin hash: 7b24afc8bc80e548d66c4e7ff72171c5 Logged in wsauth=1%3A7b24afc8bc80e548d66c4e7ff72171c5 Trying to upload the malicious file Done http://localhost/webspell4.01.02/downloads/c99shell.php if$ar...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2007/03/03 12:0 a.m.14 views

webSPELL 4.01.02 - PHP Remote Code Execution

webSPELL 4.01.02 - PHP Remote Code Execution !/usr/bin/php URL: http://www.acid-root.new.fr/ ----------------------------------------------------------------------- Usage: $argv0 -url -file Options Params: -url For example http://victim.com/webspell/ -file The file you wanna upload c99shell.php...

8.2AI score
Exploits0
Rows per page
Query Builder