22 matches found
EUVD-2006-2567
Malware in sbrugna...
EUVD-2006-2566
Malware in sbrugna...
AlstraSoft Article Manager Pro 1.6 - Blind SQL Injection Exploit
No description provided by source. /usr/bin/perl |+| Author: GoLdM --//-- -- AlstraSoft Article Manager Pro Blind SQL Injection Exploit -- --//-- Exploit : use strict; use LWP::Simple; print -+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-++-\n; print - AlstraSoft Article Manager...
AlstraSoft Article Manager Pro Shell Upload
AlstraSoft Article Manager Pro Remote Shell Upload Vulnerability ---------------------------------------------------------- Author: ZoRLu Date: 02.06.2009 Home: yildirimordulari.com / z0rlu.blogspot.com msn: [email protected] N0T: KPSS ananI ... N0T: if you wanna learn hack you must be registe...
Alstrasoft Article Manager Pro - Arbitrary File Upload
Alstrasoft Article Manager Pro - Arbitrary File Upload AlstraSoft Article Manager Pro Remote Shell Upload Vulnerability ---------------------------------------------------------- Author: ZoRLu Date: 02.06.2009 Home: yildirimordulari.com / z0rlu.blogspot.com msn: [email protected] N0T: KPSS ana...
Alstrasoft Article Manager Pro - Arbitrary File Upload
AlstraSoft Article Manager Pro Remote Shell Upload Vulnerability ---------------------------------------------------------- Author: ZoRLu Date: 02.06.2009 Home: yildirimordulari.com / z0rlu.blogspot.com msn: [email protected] N0T: KPSS ananI ... N0T: if you wanna learn hack you must be registe...
AlstraSoft Article Manager Pro Remote Shell Upload Vulnerability
Exploit for unknown platform in category web applications ================================================================ AlstraSoft Article Manager Pro Remote Shell Upload Vulnerability ================================================================ AlstraSoft Article Manager Pro Remote Shell...
AlstraSoft Article Manager Pro Remote Shell Upload Vulnerability
No description provided by source. AlstraSoft Article Manager Pro Remote Shell Upload Vulnerability ---------------------------------------------------------- Author: ZoRLu Date: 02.06.2009 Home: yildirimordulari.com / z0rlu.blogspot.com msn: [email protected] N0T: KPSS ananI ... N0T: if you...
CVE-2008-5649
CVE-2008-5649 describes an SQL injection vulnerability in AlstraSoft Article Manager Pro 1.6, specifically in admin/admin.php where the username parameter can be manipulated to execute arbitrary SQL commands. Documented impact indicates remote attackers could achieve complete confidentiality, int...
AlstraSoft Article Manager Pro (Auth Bypass) SQL Injection Vuln
Exploit for unknown platform in category web applications =============================================================== AlstraSoft Article Manager Pro Auth Bypass SQL Injection Vuln =============================================================== AlstraSoft Article Manager Pro auth bypass...
Alstrasoft Article Manager Pro 1.6 - Authentication Bypass
Alstrasoft Article Manager Pro 1.6 - Authentication Bypass AlstraSoft Article Manager Pro auth bypass ---------------------------------------------------------- Discovered By: ZoRLu Date: 12.11.2008 Home: www.z0rlu.blogspot.com contact: [email protected] N0T: YALNIZLIK, YiTiRDi ANLAMINI...
AlstraSoft Article Manager Pro 1.6 Blind SQL Injection Exploit
No description provided by source. /usr/bin/perl |+| Author: GoLdM --//-- -- AlstraSoft Article Manager Pro Blind SQL Injection Exploit -- --//-- Exploit : use strict; use LWP::Simple; print "-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-++-\n"; print "- AlstraSoft Article...
Cross site scripting
Cross-site scripting XSS vulnerability in contactauthor.php AlstraSoft Article Manager Pro allows remote attackers to inject arbitrary web script or HTML via the userid parameter...
CVE-2007-4082
Cross-site scripting XSS vulnerability in contactauthor.php AlstraSoft Article Manager Pro allows remote attackers to inject arbitrary web script or HTML via the userid parameter...
CVE-2007-4082
Cross-site scripting XSS vulnerability in contactauthor.php AlstraSoft Article Manager Pro allows remote attackers to inject arbitrary web script or HTML via the userid parameter...
CVE-2006-2565
SQL injection vulnerability in Alstrasoft Article Manager Pro 1.6 allows remote attackers to execute arbitrary SQL commands via 1 the authorid parameter in profile.php and 2 the autid parameter in userarticles.php. NOTE: the autid vector can produce resultant path disclosure if the SQL manipulati...
CVE-2006-2566
Alstrasoft Article Manager Pro 1.6 allows remote attackers to obtain sensitive information via 1 a quote character or possibly an invalid value in the action parameter in a request to mrarticles.php or 2 a login QUERYSTRING to admin.php without any additional parameters, which reveal the path in...
Sql injection
SQL injection vulnerability in Alstrasoft Article Manager Pro 1.6 allows remote attackers to execute arbitrary SQL commands via 1 the authorid parameter in profile.php and 2 the autid parameter in userarticles.php. NOTE: the autid vector can produce resultant path disclosure if the SQL manipulati...
CVE-2006-2565
Affected software: Alstrasoft Article Manager Pro 1.6. The vulnerability is an SQL injection in two parameters: author_id in profile.php and aut_id in userarticles.php. The SQL manipulation may lead to arbitrary SQL execution and, for the aut_id vector, potential resultant path disclosure if the ...
CVE-2006-2567
CVE-2006-2567 is an XSS vulnerability in the Alstrasoft Article Manager Pro 1.6, affecting the submit_article.php handler. The issue arises from unsafely handling user input in a STYLE attribute, enabling an attacker to inject JavaScript via a javascript: URI in a CSS property, potentially compro...