296 matches found
Arab Portal 2.0 - 'download.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/17285/info ArabPortal System is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the...
CVE-2005-4221
SQL injection vulnerability in link.php in Arab Portal System 2 Beta 2 allows remote attackers to execute arbitrary SQL commands via the 1 PHPSESSID session ID or 2 REQUESTURI query string...
CVE-2005-4221
CVE-2005-4221 concerns an SQL injection in Arab Portal System 2 Beta 2, specifically in link.php. The vulnerability allows remote attackers to inject arbitrary SQL commands via the PHPSESSID (session ID) or the REQUEST_URI (query string). Public references confirm the issue and its CVE entry, but...
CVE-2005-4221
SQL injection vulnerability in link.php in Arab Portal System 2 Beta 2 allows remote attackers to execute arbitrary SQL commands via the 1 PHPSESSID session ID or 2 REQUESTURI query string...
arabPortalSQL.txt
Hi .. This is small bug for Arab Portal System v2 Beta 2 File name :- global.php Remote:- Yes Credit :- Devil-00 Messenger :- E-Mail :- //-- Devil SQL Injection / This SQL can do when :- magicquotesgpc = Off $sessionid query"DELETE FROM rafiaonline WHERE onlineSID ='$sessionid' or timestamp...
Arab Portal v2 Beta2 SQL Injections
Hi .. This is small bug for Arab Portal System v2 Beta 2 File name :- global.php Remote:- Yes Credit :- Devil-00 Messenger :- [email protected] E-Mail :- [email protected] //-- Devil SQL Injection / This SQL can do when :- magicquotesgpc = Off $sessionid Bad Var Attacking :-...
Arab Portal 2.0 - Link.php SQL Injection
Arab Portal 2.0 - Link.php SQL Injection source: https://www.securityfocus.com/bid/15820/info Arab Portal is prone to multiple SQL injection vulnerabilities. These are due to a lack of proper sanitization of user-supplied input before using it in an SQL query. Successful exploitation could result...
Arab Portal 2.0 - 'Link.php' SQL Injection
source: https://www.securityfocus.com/bid/15820/info Arab Portal is prone to multiple SQL injection vulnerabilities. These are due to a lack of proper sanitization of user-supplied input before using it in an SQL query. Successful exploitation could result in a compromise of the application,...
phpfm.txt
upload phpshell in PHPFM discovered by rUnViRuS www.worlddefacers.net www.security-arab.com =-=-=-=-=-=-=-=-= the code shell :- --------------- save as cmd.php now upload in PHPFM =-=-=-= Used Shell =-=-=-= www.site.com/file upload name/files/cmd.php?cmd=command linux...
forumSQL.txt
Class: Input Validation Error CVE: CVE-MAP-NOMATCH Remote: Yes Discovered BY ABDUCTER & Expliot BY DEVIL-00 [email protected] OR [email protected] Vulnerable:powered by oaboard 1.0 ////////////////////////////////// info:- FOR INFORMATION VISIT http://oaboard.myserver.at/oaboard/forum.ph...
[Full-disclosure] Fwd: Vulnerability in Ar-blog ver 5.2 and prior versions
---------- Forwarded message ---------- From: M.o.H.a.J.a.L.i [email protected] Date: Oct 25, 2005 12:52 AM Subject: Vulnerability in Ar-blog ver 5.2 and prior versions To: [email protected] Vulnerability in Ar-blog ver 5.2 and prior Software: Ar-blog Vulnerable versions: = 5.2 Type:...
CVE-2005-2546
Arab Portal 2.0 allows remote attackers to obtain sensitive information via a long 1 username or 2 password, which reveals the path in an error message when the undefined "errmsg" function is called...
CVE-2005-2546
Arab Portal 2.0 allows remote attackers to obtain sensitive information via a long 1 username or 2 password, which reveals the path in an error message when the undefined "errmsg" function is called...
CVE-2005-2546
Arab Portal 2.0 is affected by a remote information-disclosure vulnerability in which an error message produced by an undefined errmsg function reveals the lengthening username or password, exposing the file path. The issue is triggered during error handling and can disclose sensitive path inform...
SQL IN Open Bulletin Board
Class: Input Validation Error Remote: Yes Local: Yes Credit: ABDUCTER ---- [email protected] OR [email protected] Vulnerable: Powered by Open Bulletin Board ALL VERSION info :- openbb is APOPULAR FORUM HAVE MANY VERSION U CAN FIND SOURCE OF FORUM IN http://www.openbb.com/ discussi...
Arab Portal
Class: Input Validation Error Remote: Yes Local: Yes Credit: ABDUCTER [email protected] oR [email protected] Vulnerable: Arab Portal v2.0 beta 2 discussion :- ARAB PORTAL is powerful nuke designed by arabian programmers you can find source of it in http://www.arabportal.net THE bu...