91 matches found
Vivvo Article Manager 3.4 - 'root' Local File Inclusion
=================================================================================================== Author: Snip0r Script Name: Vivvo Article Manager v 3.4 Website: www.vivvo.net =================================================================================================== Codesnippet of...
Vivvo Article Manager 3.4 (root) Local File Inclusion Vulnerability
Exploit for unknown platform in category web applications =================================================================== Vivvo Article Manager 3.4 root Local File Inclusion Vulnerability ===================================================================...
CVE-2006-5917
Multiple SQL injection vulnerabilities in OmniStar Article Manager allow remote attackers to execute arbitrary SQL commands via the 1 articleid parameter in a articles/comments.php and b articles/article.php, and the 2 pageid parameter in c articles/pages.php...
CVE-2006-5917
Multiple SQL injection vulnerabilities in OmniStar Article Manager allow remote attackers to execute arbitrary SQL commands via the 1 articleid parameter in a articles/comments.php and b articles/article.php, and the 2 pageid parameter in c articles/pages.php...
CVE-2006-5917
Affected software: OmniStar Article Manager. Vulnerability details: Multiple SQL injection vulnerabilities allow remote attackers to execute arbitrary SQL via (1) article_id in articles/comments.php and articles/article.php, and (2) page_id in articles/pages.php. Root cause: improper handling of ...
omnistar-SQL.txt
vendor site:http://www.omnistararticle.com/ product :omnistar article manager bug:injection sql risk : high path: /articles/comments.php?articleid='sql /articles/article.php?op=save&articleid='sql /articles/pages.php?pageid='sql laurent gaffié & benjamin mossé http://s-a-p.ca/ contact:...
omnistar article manager [multiples injection sql]
vendor site:http://www.omnistararticle.com/ product :omnistar article manager bug:injection sql risk : high path: /articles/comments.php?articleid='sql /articles/article.php?op=save&articleid='sql /articles/pages.php?pageid='sql laurent gaffiй & benjamin mossй http://s-a-p.ca/ contact:...
Omnistar Article Manager - Multiple SQL Injections
Omnistar Article Manager - Multiple SQL Injections source: https://www.securityfocus.com/bid/20990/info Omnistar Article Manager is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful...
phpWordPress (Vivvo Article Manager)
MercilessTurk [email protected] App Name: phpWordPress Vivvo Article Manager App Author: vivvo.net App Version: =3.2 Vulnerable Code in pdfversion.php : line 19: $aid=securesql$GET'id'; line 20: $query="SELECT from tblArticles where id=$aid"; securesql function doesn't block all sql injection...
phpWordPress (Vivvo Article Manager)
MercilessTurk [email protected] App Name: phpWordPress Vivvo Article Manager App Author: vivvo.net App Version: =3.2 Vulnerable Code in HTMLfunction.php function HTMLCategoryMenu : line 51: includeonce$classifiedpath.'exportcategory.php'; if registerglobals = On then this code can include...
Vivvo Article Manager 3.2 - id SQL Injection
Vivvo Article Manager 3.2 - id SQL Injection MercilessTurk [email protected] App Name: phpWordPress Vivvo Article Manager App Author: vivvo.net App Version: =3.2 Vulnerable Code in pdfversion.php : line 19: $aid=securesql$GET'id'; line 20: $query="SELECT from tblArticles where id=$aid";...
Vivvo Article Manager <= 3.2 (id) Remote SQL Injection Vulnerability
No description provided by source. MercilessTurk [email protected] App Name: phpWordPress Vivvo Article Manager App Author: vivvo.net App Version: =3.2 Vulnerable Code in pdfversion.php : line 19: $aid=securesql$GET'id'; line 20: $query="SELECT from tblArticles where id=$aid"; securesql...
Vivvo Article Manager <= 3.2 (classified_path) File Include Vulnerability
No description provided by source. MercilessTurk [email protected] App Name: phpWordPress Vivvo Article Manager App Author: vivvo.net App Version: =3.2 Vulnerable Code in HTMLfunction.php function HTMLCategoryMenu : line 51: includeonce$classifiedpath.'exportcategory.php'; if registerglobals ...
Vivvo Article Manager 3.2 - classified_path File Inclusion
Vivvo Article Manager 3.2 - classifiedpath File Inclusion MercilessTurk [email protected] App Name: phpWordPress Vivvo Article Manager App Author: vivvo.net App Version: =3.2 Vulnerable Code in HTMLfunction.php function HTMLCategoryMenu : line 51:...
Vivvo Article Manager <= 3.2 (id) Remote SQL Injection Vulnerability
Exploit for unknown platform in category web applications ==================================================================== Vivvo Article Manager = 3.2 id Remote SQL Injection Vulnerability ==================================================================== MercilessTurk email protected App...
Vivvo Article Manager <= 3.2 (classified_path) File Include Vulnerability
Exploit for unknown platform in category web applications ========================================================================= Vivvo Article Manager = 3.2 classifiedpath File Include Vulnerability ========================================================================= MercilessTurk...
Vivvo Article Manager 3.2 - 'id' SQL Injection
MercilessTurk [email protected] App Name: phpWordPress Vivvo Article Manager App Author: vivvo.net App Version: =3.2 Vulnerable Code in pdfversion.php : line 19: $aid=securesql$GET'id'; line 20: $query="SELECT from tblArticles where id=$aid"; securesql function doesn't block all sql injection...
Vivvo Article Manager 3.2 - 'classified_path' File Inclusion
MercilessTurk [email protected] App Name: phpWordPress Vivvo Article Manager App Author: vivvo.net App Version: =3.2 Vulnerable Code in HTMLfunction.php function HTMLCategoryMenu : line 51: includeonce$classifiedpath.'exportcategory.php'; if registerglobals = On then this code can include...
Alstrasoft Article Manager Pro v1.6
Alstrasoft Article Manager Pro v1.6 - XSS & Full Path errors Homepage: http://www.alstrasoft.com Description: Article Manager Pro is the next generation article publishing system designed to make your life a whole lot easier by enabling webmasters to publish articles or news into their website in...
Sql injection
SQL injection vulnerability in Alstrasoft Article Manager Pro 1.6 allows remote attackers to execute arbitrary SQL commands via 1 the authorid parameter in profile.php and 2 the autid parameter in userarticles.php. NOTE: the autid vector can produce resultant path disclosure if the SQL manipulati...