18 matches found
EUVD-2006-1964
Malware in sbrugna...
EUVD-2006-2791
Malware in sbrugna...
EUVD-2006-2790
Malware in sbrugna...
ASPSitem <= 2.0 - Remote (SQL Injection / DB Disclosure) Vulnerabilities
No description provided by source. ASPSitem = 2.0 Multiple Vulnerabilities. Contacts ICQ: 10072 MSN/Mail: [email protected] web: www.nukedx.com This exploits works on ASPSitem = 2.0. Original advisory can be found at: http://www.nukedx.com/?viewdoc=39 SQL injection - GET -...
ASPSitem <= 1.83 (Haberler.asp) Remote SQL Injection
No description provided by source...
Sql injection
SQL injection vulnerability in Anket.asp in ASPSitem 2.0 and earlier allows remote attackers to execute arbitrary SQL commands via the hid parameter...
Code injection
Hesabim.asp in ASPSitem 2.0 and earlier allows remote attackers to read private messages of other users via a modified id parameter...
CVE-2006-2793
CVE-2006-2793 describes an SQL injection vulnerability in Anket.asp within ASPSitem 2.0 and earlier. The hid parameter is injectable, allowing remote attackers to execute arbitrary SQL commands. Affected software: ASPSitem 2.0 and earlier (Anket.asp). Impact: information disclosure/integrity/avai...
CVE-2006-2794
CVE-2006-2794 affects Hesabim.asp in ASPSitem 2.0 and earlier. The underlying issue is insufficient access control: a modified id parameter lets remote attackers read private messages of other users. Documented impact is confidential data disclosure; no explicit patch/version remediation is provi...
Advisory: ASPSitem <= 2.0 Multiple Vulnerabilities.
--Security Report-- Advisory: ASPSitem = 2.0 Multiple Vulnerabilities. --- Author: Mustafa Can Bjorn "nukedx a.k.a nuker" IPEKCI --- Date: 27/05/06 08:26 PM --- Contacts: ICQ: 10072 MSN/Email: [email protected] Web: http://www.nukedx.com --- Vendor: ASPSitem http://www.aspsitem.com Version: 2.0 a...
ASPSitem 2.0 - SQL Injection / Database Disclosure
ASPSitem ICQ: 10072 MSN/Mail: [email protected] web: www.nukedx.com This exploits works on ASPSitem GET - http://victim/ASPSitemDir/Anket.asp?hid=SQL EXAMPLE - http://victim/ASPSitemDir/Anket.asp?hid=4%20union%20select%20sifre,0%20from%20uyeler%20where%20 id%20like%201 with this example remote...
ASPSitem <= 2.0 Remote (SQL Injection / DB Disclosure) Vulnerabilities
Exploit for unknown platform in category web applications ====================================================================== ASPSitem ICQ: 10072 MSN/Mail: email protected web: www.nukedx.com This exploits works on ASPSitem GET - http://victim/ASPSitemDir/Anket.asp?hid=SQL EXAMPLE -...
Sql injection
SQL injection vulnerability in Haberler.asp in ASPSitem 1.83 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter...
CVE-2006-1964
SQL injection vulnerability in Haberler.asp in ASPSitem 1.83 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter...
CVE-2006-1964
SQL injection vulnerability in Haberler.asp in ASPSitem 1.83 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter...
CVE-2006-1964
CVE-2006-1964 describes an SQL injection in Haberler.asp (ASPSitem 1.83 and earlier). The vulnerability is triggered via the id parameter and allows a remote attacker to execute arbitrary SQL commands. Exploitation details are not provided beyond the vulnerability description; CVSS metrics indica...
ASPSitem <= 1.83 Remote SQL Injection Vulnerability
--Security Report-- Advisory: ASPSitem = 1.83 Remote SQL Injection Vulnerability. --- Author: Mustafa Can Bjorn "nukedx a.k.a nuker" IPEKCI --- Date: 19/04/06 19:33 PM --- Contacts: ICQ: 10072 MSN/Email: [email protected] Web: http://www.nukedx.com --- Vendor: ASPSitem http://www.aspsitem.com...
ASPSitem <= 1.83 (Haberler.asp) Remote SQL Injection Exploit
No description provided by source. !/usr/bin/perl Method found & Exploit scripted by nukedx Contacts ICQ: 10072 MSN/Main: [email protected] web: www.nukedx.com Original advisory: http://www.nukedx.com/?viewdoc=23 Usage: aspsi.pl host path userid use IO::Socket; if@ARGV != 3 usage; else exploit; s...