10 matches found
CVE-2020-26903
Certain NETGEAR devices are affected by disclosure of administrative credentials. This affects CBR40 before 2.5.0.10, RBK752 before 3.2.15.25, RBR750 before 3.2.15.25, RBS750 before 3.2.15.25, RBK852 before 3.2.10.11, RBR850 before 3.2.10.11, and RBS850 before 3.2.10.11...
CVE-2019-20646
NETGEAR RAX40 devices before 1.0.3.64 are affected by disclosure of administrative credentials...
GetSimple CMS 2.01 and 2.02 Administrative Credentials Disclosure
No description provided by source. Researcher: Michael Brooks Affecting: GetSimple CMS 2.01 and 2.02 Fixed:2.03 Vulnerability: Administrative Credentials Disclosure Vendor's Homepage: http://code.google.com/p/get-simple-cms download url for 2.01: http://www.box.net/get-simple/1/30435008/399754548...
myBloggie <= 2.1.4 (trackback.php) Multiple SQL Injections Exploit
No description provided by source. !/usr/bin/php -q -d shortopentag=on ? echo MyBloggie = 2.1.4 trackback.php multiple SQL injections vulnerability /\n; echo administrative credentials disclosure exploit\n; echo by rgod [email protected]\n; echo site: http://retrogod.altervista.org\n\n; / works...
phpvidz 0.9.5 - Administrative Credentials Disclosure
phpvidz 0.9.5 - Administrative Credentials Disclosure Researcher: Michael Brooks Affecting: phpvidz 0.9.5 Vulnerability: Administrative Credentials Disclosure Vendor's Homepage: http://sourceforge.net/projects/phpvidz/ phpvidz does not use a SQL database. Instead it uses a system of flat files to...
GetSimple CMS 2.01 / 2.02 Credential Disclosure
Researcher: Michael Brooks Affecting: GetSimple CMS 2.01 and 2.02 Fixed:2.03 Vulnerability: Administrative Credentials Disclosure Vendor's Homepage: http://code.google.com/p/get-simple-cms download url for 2.01: http://www.box.net/get-simple/1/30435008/399754548 download svn for 2.02beta: svn...
Getsimple CMS 2.01 < 2.02 - Administrative Credentials Disclosure
Researcher: Michael Brooks Affecting: GetSimple CMS 2.01 and 2.02 Fixed:2.03 Vulnerability: Administrative Credentials Disclosure Vendor's Homepage: http://code.google.com/p/get-simple-cms download url for 2.01: http://www.box.net/get-simple/1/30435008/399754548 download svn for 2.02beta: svn...
CodeAvalanche News 1.2 - 'default.asp' SQL Injection
source: https://www.securityfocus.com/bid/18031/info CodeAvalanche News is prone to an SQL-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to compromis...
PHPWebThings <= 1.4 (msg/forum) SQL Injection Exploit
No description provided by source. ?php ---phpwebth14xpl.php 10.47 16/11/2005 PHPWebThings 1.4 "msg" and "forum" SQL injection / Administrative credentials disclosure and remote commands execution coded by rgod site: http://rgod.altervista.org based on http://secunia.com/advisories/17410/, but he...
Utopia News Pro <= 1.1.3 (news.php) SQL Injection Exploit
No description provided by source. ?php bif magic quotes off -SQL INJECTION: /str0ke 3.10 07/10/2005 utopiaxpl.php Utopia News Pro 1.1.3 possibly prior versions SQL Injection / Administrative credentials disclosure by rgod site: http://rgod.altervista.org make these changes in php.ini if you have...