CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Prion•added 2014/10/15 2:55 p.m.•15 views

Sql injection

7.5CVSS9.3AI score0.01257EPSS

CVE•added 2014/10/15 2:0 p.m.•39 views

CVE-2014-8293

CVE-2014-8293 affects Voice Of Web AllMyGuests 0.4.1 with a reflected XSS via the AMG_signin_topic parameter to index.php. The vulnerability allows remote attackers to inject arbitrary JavaScript/HTML into the page. The provided sources consistently describe the issue but do not specify affected ...

4.3CVSS5.9AI score0.00988EPSS

CVE•added 2014/10/15 2:0 p.m.•42 views

CVE-2014-8294

CVE-2014-8294 affects Voice Of Web AllMyGuests 0.4.1. The vulnerability allows remote attackers to inject arbitrary SQL via (1) the allmyphp_cookie cookie to admin.php or (2) the Username or (3) Password fields. Root cause: SQL injection in login/auth and cookie-handling logic. Impact: arbitrary ...

7.5CVSS8.8AI score0.01257EPSS

Cvelist•added 2014/10/15 2:0 p.m.•19 views

CVE-2014-8294

8.5AI score0.01257EPSS

Exploits0References1

Cvelist•added 2014/10/15 2:0 p.m.•20 views

CVE-2014-8293

Cross-site scripting XSS vulnerability in Voice Of Web AllMyGuests 0.4.1 allows remote attackers to inject arbitrary web script or HTML via the AMGsignintopic parameter to index.php...

5.7AI score0.00988EPSS

Exploits0References1

Packet Storm•added 2014/09/29 12:0 a.m.•39 views

AllMyGuests 0.4.1 XSS / SQL Injection / Insecure Cookie Handling

AllMyGuests0.4.1 Multi Vulnerability ==================================== Author : indoushka Vondor : http://www.php-resource.net/ Dork: powered by AllMyGuests © 2003, voice of web ========================== php info : http://localhost/AllMyGuests0.4.1/tools/phpinfo.php Cross site scripting also...

1AI score

seebug.org•added 2014/07/01 12:0 a.m.•69 views

AllMyGuests <= 0.4.1 (cfg_serverpath) Remote File Include Vulnerability

No description provided by source. ============================================================================ AllMyGuests = ?AMGconfigcfgserverpath Remote File Inclusion Exploit ============================================================================ Scirpt Infected signin.php Critical leve...

seebug.org•added 2014/07/01 12:0 a.m.•15 views

AllMyGuests <= 0.3.0 (AMG_serverpath) Remote Inclusion Vulnerabilities

No description provided by source. AllMyGuests 3.0 Remote File Inclusion Vulnerability Software: AllMyGuests Version: 3.0 Download: http://download.php-resource.net/AllMyGuests/AllMyGuests0.3.0.zip Found By: beks Bug In: /include/submit.inc.php /admin/index.php /include/cmsubmit.inc.php...

seebug.org•added 2014/07/01 12:0 a.m.•17 views

AllMyVisitors 0.x info.inc.php Arbitrary Code Execution

No description provided by source. source: http://www.securityfocus.com/bid/9664/info Reportedly the AllMyPHP applications AllMyGuests, AllMyLinks and AllMyVisitors are prone to a remote file include vulnerability. The issue is due to insufficient filtering of URI passed variables that are used i...

seebug.org•added 2014/07/01 12:0 a.m.•24 views

AllMyGuests 0.x - info.inc.php Arbitrary Code Execution

No description provided by source. source: http://www.securityfocus.com/bid/9664/info Reportedly the AllMyPHP application AllMyGuests is prone to a remote file include vulnerability. The issue is due to insufficient filtering of URI passed variables that are used in a 'requireonce' call. This iss...

seebug.org•added 2014/07/01 12:0 a.m.•61 views

AllMyGuests <= 0.4.1 (AMG_id) Remote SQL Injection Vulnerability

No description provided by source. Found by : -=Player=- Contacts : 282-246-419 ICQ Greatz to: LidlosesAuge, Suicide, enco, Free-Hack Script : AllMyGuests Site : http://www.php-resource.net/ Dork : powered by AllMyGuests Valnu : index.php Parameter: AMGid Injection:...

0day.today•added 2014/05/29 12:0 a.m.•18 views

AllMyGuests 0.4.1 Insecure Cookie Handling Vulnerability

Exploit for php platform in category web applications ----------exploit Debut Insecure Cookie Handling Vulnerability ----------Script Info Author : JIKO ----------Script Info Site : http://www.voice-of-web.de/c-AllMyGuests-s38.html Version : 0.4.1 Download :...

0day.today•added 2014/05/29 12:0 a.m.•14 views

AllMyGuests 0.4.1 (Auth Bypass) SQL Injection Vulnerability

Exploit for php platform in category web applications ----------exploit Debut Auth Bypass SQL Injection Vulnerability ----------Script Info Author : JIKO ----------Script Info Site : http://www.voice-of-web.de/c-AllMyGuests-s38.html Version : 0.4.1 Download :...