Lucene search
K

2492 matches found

exploitpack
exploitpack
added 2007/07/02 12:0 a.m.19 views

YouTube Clone Script - msg.php?id SQL Injection

YouTube Clone Script - msg.php?id SQL Injection --==+================================================================================+==-- --==+ YouTube Clone Script SQL Injection Vulnerability +==-- --==+================================================================================+==-- AUTHOR...

8.6AI score
Exploits0
Exploit DB
Exploit DB
added 2007/06/29 12:0 a.m.51 views

Buddy Zone 1.5 - 'view_sub_cat.php?cat_id' SQL Injection

--==+================================================================================+==-- --==+ Buddy Zone Version 1.5 SQL Injection Vulnerability +==-- --==+================================================================================+==-- AUTHOR: t0pP8uZz & xprog SITE:...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2007/06/08 12:0 a.m.33 views

e-Vision CMS <= 2.02 SQL Injection/Remote Code Execution Exploit

No description provided by source. !/usr/bin/php -q -d shortopentag=on ?php / Explanation: Bug 1 admin/showimg.php: ?php $fp = fopen$GET'img', "r"; $img = fread$fp, filesize$GET'img'; fclose$fp; header"Content-type: ".$GET'type'; echo $img; ? ...need i say more? Bug 2 admin/functions.php: if...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2007/05/30 12:0 a.m.22 views

gcards-sql-exec.txt

!/usr/bin/php -q -d shortopentag=on ?php errorreporting0; iniset"maxexecutiontime",0; iniset"defaultsockettimeout",5; if $argc4 print "-------------------------------------------------------------------------\r\n"; print " gCards = 1.46 SQL Injection/Remote Code Execution Exploit\r\n"; print...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2007/05/25 12:0 a.m.20 views

gCards 1.46 - SQL Injection Remote Code Execution

gCards 1.46 - SQL Injection Remote Code Execution !/usr/bin/php -q -d shortopentag=on ?php errorreporting0; iniset"maxexecutiontime",0; iniset"defaultsockettimeout",5; if $argc4 print "-------------------------------------------------------------------------\r\n"; print " gCards = 1.46 SQL...

0.5AI score
Exploits0
Exploit DB
Exploit DB
added 2007/05/21 12:0 a.m.196 views

WordPress Core 2.1.3 - 'admin-ajax.php' SQL Injection Blind Fishing

?php errorreportingEALL; $normdelay = 0; /////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////// // WordPress 2.1.3 "admin-ajax.php" sql injection blind fishing exploit // written by Janek Vind "waraxe" //...

7.4AI score
Exploits0
Positive Technologies
Positive Technologies
added 2007/05/09 12:0 a.m.4 views

PT-2007-3853 · Phphoo3 · Phphoo3

Name of the Vulnerable Software and Affected Versions: phpHoo3 affected versions not specified Description: The issue allows remote attackers to execute arbitrary SQL commands via the ADMIN USER and ADMIN PASS parameters during a login in the admin.php file. However, it is noted that ADMIN USER a...

9.8CVSS8.4AI score0.01346EPSS
Exploits1References8
exploitpack
exploitpack
added 2007/03/25 12:0 a.m.30 views

PBlang 4.66z - Remote Create Admin

PBlang 4.66z - Remote Create Admin !/usr/bin/perl PBlang 4.66z Create Admin Exploit this exploit register a user with admin access Coded & Discovered By Hessam-x / Hessamx-at-Hessamx.net use IO::Socket; use LWP::UserAgent; use HTTP::Cookies; $host = $ARGV0; $uname = $ARGV1; $passwd = $ARGV2; $url...

7.5AI score
Exploits0
securityvulns
securityvulns
added 2007/03/17 12:0 a.m.46 views

Creative Guestbook 1.0 Multiple Remote Vulnerabilities

.-""""""""-. / Dj7xpl | | |, .-. .-. ,| | o/ o | |/ / | @ ^^ |IIIIII|/ @8@8|-IIIIII/-| / / @ +Iranian Are The Best In World+ Portal : Creative Guestbook 1.0 Download : http://www.thecreativeheads.de/CreativeFiles/downloads.php Author : Dj7xpl | Dj7xpl@yahoo...

0.3AI score
Exploits0
exploitpack
exploitpack
added 2007/03/15 12:0 a.m.27 views

creative Guestbook 1.0 - Multiple Vulnerabilities

creative Guestbook 1.0 - Multiple Vulnerabilities .-""""""""-. / Dj7xpl \ | | |, .-. .-. ,| | o/ \o | |/ /\ | @ ^^ \|IIIIII|/ @8@8 / \ / @ +Iranian Are The Best In World+ Portal : Creative Guestbook 1.0 Download : http://www.thecreativeheads.de/CreativeFiles/downloads.php Author : Dj7xpl |...

0.6AI score
Exploits0
0day.today
0day.today
added 2007/03/15 12:0 a.m.29 views

Creative Guestbook 1.0 Multiple Remote Vulnerabilities

Exploit for unknown platform in category web applications ====================================================== Creative Guestbook 1.0 Multiple Remote Vulnerabilities ====================================================== .-""""""""-. / Dj7xpl \ | | |, .-. .-. ,| | o/ \o | |/ /\ | @ ^^...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2007/03/15 12:0 a.m.55 views

creative Guestbook 1.0 - Multiple Vulnerabilities

.-""""""""-. / Dj7xpl \ | | |, .-. .-. ,| | o/ \o | |/ /\ | @ ^^ \|IIIIII|/ @8@8 / \ / @ +Iranian Are The Best In World+ Portal : Creative Guestbook 1.0 Download : http://www.thecreativeheads.de/CreativeFiles/downloads.php Author : Dj7xpl | [email protected] Dork : "Creative Guestbook" Class : Add...

7.4AI score
Exploits0
NVD
NVD
added 2007/01/23 12:28 a.m.14 views

CVE-2007-0409

BEA WebLogic 7.0 through 7.0 SP6, 8.1 through 8.1 SP4, and 9.0 initial release does not encrypt passwords stored in the JDBCDataSourceFactory MBean Properties, which allows local administrative users to read the cleartext password...

1.5CVSS6AI score0.00284EPSS
Exploits0References6
Cvelist
Cvelist
added 2006/12/27 11:0 p.m.21 views

CVE-2006-6773

pages/register/register.php in Fishyshoop 0.930 beta allows remote attackers to create arbitrary administrative users by setting the isadmin HTTP POST parameter to 1...

6.8AI score0.02426EPSS
Exploits1References5
CVE
CVE
added 2006/12/27 11:0 p.m.44 views

CVE-2006-6773

CVE-2006-6773 affects Fishyshoop 0.930 beta, where pages/register/register.php allows remote attackers to create arbitrary administrative users by sending is_admin=1 via HTTP POST. The vulnerability enables elevation of privileges (admin account creation) through a parameter-based bypass in the r...

7.5CVSS7.2AI score0.02426EPSS
Exploits1References5Affected Software1
0day.today
0day.today
added 2006/11/24 12:0 a.m.258 views

Woltlab Burning Board Lite 1.0.2 decode_cookie() SQL Injection Exploit

Exploit for unknown platform in category web applications ====================================================================== Woltlab Burning Board Lite 1.0.2 decodecookie SQL Injection Exploit ====================================================================== ?php printr'...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2006/11/06 12:0 a.m.11 views

Solaris 7 (sparc) : 110011-02

The remote host is missing Sun Security Patch number 110011-02 AnswerBook 1.4.2: create admin user that can interact with shell. Date this patch was last updated by Sun : Thu Aug 03 18:00:00 MDT 2000 You should install this patch for your system to be up-to-date. %NASLMINLEVEL 999999 @DEPRECATED@...

Exploits0
Tenable Nessus
Tenable Nessus
added 2006/11/06 12:0 a.m.13 views

Solaris 8 (sparc) : 110011-02

The remote host is missing Sun Security Patch number 110011-02 AnswerBook 1.4.2: create admin user that can interact with shell. Date this patch was last updated by Sun : Thu Aug 03 18:00:00 MDT 2000 You should install this patch for your system to be up-to-date. %NASLMINLEVEL 999999 @DEPRECATED@...

Exploits0
Packet Storm
Packet Storm
added 2006/10/12 12:0 a.m.19 views

cahierSQL.txt

Cahier de textes Pierre Lemaitre - St Lô France - Ver 2.0 Remote SQL injection Exploit Discovred By s4mi s4miatlinuxmaildotorg exploit http://localhost/PATH/lire.php?classeID=1&matiereID=SQL or http://localhost/PATH/lireafaire.php?classeID=SQL expemle of sql code to get admin user and password...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2006/10/07 12:0 a.m.36 views

Cahier de textes 2.0 Remote SQL injection Exploit

Cahier de textes Pierre Lemaitre - St Lф France - Ver 2.0 Remote SQL injection Exploit Discovred By s4mi s4miatlinuxmaildotorg exploit http://localhost/PATH/lire.php?classeID=1&matiereID=SQL or http://localhost/PATH/lireafaire.php?classeID=SQL expemle of sql code to get admin user and password...

0.8AI score
Exploits0
Rows per page
Query Builder