EUVD-2010-2921

Malware in sbrugna...

EUVD-2008-5190

Malware in sbrugna...

CVE-2010-2917

Multiple cross-site scripting XSS vulnerabilities in index.php in AJ Square AJ Article 3.0 allow remote attackers to inject arbitrary web script or HTML via the 1 emailid, 2 fname, 3 lname, 4 company, 5 address1, 6 address2, 7 city, 8 state, 9 zipcode, 10 phone, and 11 fax parameters in an update...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in index.php in AJ Square AJ Article 3.0 allow remote attackers to inject arbitrary web script or HTML via the 1 emailid, 2 fname, 3 lname, 4 company, 5 address1, 6 address2, 7 city, 8 state, 9 zipcode, 10 phone, and 11 fax parameters in an update...

CVE-2010-2917

AJ Square AJ Article 3.0 contains multiple XSS flaws in index.php exploitable via update action parameters (emailid, fname, lname, company, address1, address2, city, state, zipcode, phone, fax). Root cause is unsanitized input leading to script/HTML injection. CVE-2010-2917 has multiple reference...

CVE-2010-2917

Multiple cross-site scripting XSS vulnerabilities in index.php in AJ Square AJ Article 3.0 allow remote attackers to inject arbitrary web script or HTML via the 1 emailid, 2 fname, 3 lname, 4 company, 5 address1, 6 address2, 7 city, 8 state, 9 zipcode, 10 phone, and 11 fax parameters in an update...

CVE-2008-7051

AJ Square AJ Article allows remote attackers to bypass authentication and access administrator functionality via a direct request to 1 user.php, 2 articles.php, 3 articlesuspend.php, 4 site.php, 5 statistics.php, 6 mail.php, 7 category.php, 8 subcategory.php, 9 changepassword.php, 10 polling.php,...

CVE-2008-7051

AJ Square AJ Article is affected by CVE-2008-7051, where remote attackers can bypass authentication and access administrator functionality by directly requesting any of the admin scripts: user.php, articles.php, articlesuspend.php, site.php, statistics.php, mail.php, category.php, subcategory.php...

Sql injection

SQL injection vulnerability in index.php in AJ Square AJ Article allows remote attackers to execute arbitrary SQL commands via the txtName parameter aka the username field...

CVE-2008-6721

AJ Square AJ Article is affected by a SQL injection in index.php, exploitable via the txtName parameter (username field). The vulnerability is documented in CVE-2008-6721 with a base CVSS v2 score of 7.5 (HIGH) and shows network attack vector, low complexity, no authentication required, and parti...

CVE-2008-5213

SQL injection vulnerability in featuredarticle.php in AJ Article 1.0 allows remote attackers to execute arbitrary SQL commands via the artid parameter in a search detail action...

CVE-2008-5213

The CVE-2008-5213 entry describes a SQL injection vulnerability in AJ Article 1.0, specifically in featured_article.php. The flaw allows remote attackers to inject arbitrary SQL via the artid parameter used in a search detail action, enabling potential data disclosure or modification. Related con...

CVE-2008-5213

SQL injection vulnerability in featuredarticle.php in AJ Article 1.0 allows remote attackers to execute arbitrary SQL commands via the artid parameter in a search detail action...

ajarticle-bypass.txt

============================================================================== / \ | | | | / \ | | | | / \ | | | | / \ | || | / \ | | | | / \ | | IN THE NAME OF // \ || || // \ || || ============================================================================== / | | || | | \ | | / \ | |/ / | | |...

AJ ARTICLE Remote Authentication Bypass Vulnerability

No description provided by source. ============================================================================== / \ | | | | / \ | | | | / \ | | | | / \ | || | / \ | | | | / \ | | IN THE NAME OF // \ || || // \ || || ==============================================================================...

AJ Article 1.0 - Remote Authentication Bypass

============================================================================== / \ | | | | / \ | | | | / \ | | | | / \ | || | / \ | | | | / \ | | IN THE NAME OF // \ || || // \ || || ============================================================================== / | | || | | \ | | / \ | |/ / | | |...

AJ ARTICLE Remote Authentication Bypass Vulnerability

Exploit for unknown platform in category web applications ===================================================== AJ ARTICLE Remote Authentication Bypass Vulnerability ===================================================== =============================================================================...

AJ Article 1.0 - Remote Authentication Bypass

AJ Article 1.0 - Remote Authentication Bypass ============================================================================== / \ | | | | / \ | | | | / \ | | | | / \ | || | / \ | | | | / \ | | IN THE NAME OF // \ || || // \ || ||...

AJ ARTICLE (SQL Injection) Remote Auth Bypass Vulnerability

No description provided by source. Discovered by : Hakxer Type Gap : Auth Bypass Script : AJ ARTICLE Greetz : Allah , Egyptian x hacker , Br1ght D@rk First Go to http://www.ajsquare.com/products/demo/admin/index.php In username Write : admin ' or ' 1=1 In Password Any thing : Hakxer Click Login ....

AJ ARTICLE (featured_article.php mode) SQL injection Vulnerability

No description provided by source. Viva IslaM Viva IslaM Remote SQL injection Vulnerability AJ ARTICLE featuredarticle.php mode AuTh0r : Mr.SQL H0ME : WwW.PaL-HaCkEr.CoM && WwW.AtsDp.CoM/f Email : [email protected] SYRiAN Arab HACkErS Name : AJ ARTICLE Site : www.ajsquare.com -:: L!VE DEMO ::-...