18 matches found
EUVD-2006-1964
Malware in sbrugna...
EUVD-2006-2791
Malware in sbrugna...
EUVD-2006-2790
Malware in sbrugna...
ASPSitem <= 1.83 (Haberler.asp) Remote SQL Injection
No description provided by source...
ASPSitem <= 2.0 - Remote (SQL Injection / DB Disclosure) Vulnerabilities
No description provided by source. ASPSitem = 2.0 Multiple Vulnerabilities. Contacts ICQ: 10072 MSN/Mail: [email protected] web: www.nukedx.com This exploits works on ASPSitem = 2.0. Original advisory can be found at: http://www.nukedx.com/?viewdoc=39 SQL injection - GET -...
Code injection
Hesabim.asp in ASPSitem 2.0 and earlier allows remote attackers to read private messages of other users via a modified id parameter...
Sql injection
SQL injection vulnerability in Anket.asp in ASPSitem 2.0 and earlier allows remote attackers to execute arbitrary SQL commands via the hid parameter...
CVE-2006-2794
CVE-2006-2794 affects Hesabim.asp in ASPSitem 2.0 and earlier. The underlying issue is insufficient access control: a modified id parameter lets remote attackers read private messages of other users. Documented impact is confidential data disclosure; no explicit patch/version remediation is provi...
CVE-2006-2793
CVE-2006-2793 describes an SQL injection vulnerability in Anket.asp within ASPSitem 2.0 and earlier. The hid parameter is injectable, allowing remote attackers to execute arbitrary SQL commands. Affected software: ASPSitem 2.0 and earlier (Anket.asp). Impact: information disclosure/integrity/avai...
Advisory: ASPSitem <= 2.0 Multiple Vulnerabilities.
--Security Report-- Advisory: ASPSitem = 2.0 Multiple Vulnerabilities. --- Author: Mustafa Can Bjorn "nukedx a.k.a nuker" IPEKCI --- Date: 27/05/06 08:26 PM --- Contacts: ICQ: 10072 MSN/Email: [email protected] Web: http://www.nukedx.com --- Vendor: ASPSitem http://www.aspsitem.com Version: 2.0 a...
ASPSitem <= 2.0 Remote (SQL Injection / DB Disclosure) Vulnerabilities
Exploit for unknown platform in category web applications ====================================================================== ASPSitem ICQ: 10072 MSN/Mail: email protected web: www.nukedx.com This exploits works on ASPSitem GET - http://victim/ASPSitemDir/Anket.asp?hid=SQL EXAMPLE -...
ASPSitem 2.0 - SQL Injection / Database Disclosure
ASPSitem ICQ: 10072 MSN/Mail: [email protected] web: www.nukedx.com This exploits works on ASPSitem GET - http://victim/ASPSitemDir/Anket.asp?hid=SQL EXAMPLE - http://victim/ASPSitemDir/Anket.asp?hid=4%20union%20select%20sifre,0%20from%20uyeler%20where%20 id%20like%201 with this example remote...
Sql injection
SQL injection vulnerability in Haberler.asp in ASPSitem 1.83 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter...
CVE-2006-1964
SQL injection vulnerability in Haberler.asp in ASPSitem 1.83 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter...
CVE-2006-1964
SQL injection vulnerability in Haberler.asp in ASPSitem 1.83 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter...
CVE-2006-1964
CVE-2006-1964 describes an SQL injection in Haberler.asp (ASPSitem 1.83 and earlier). The vulnerability is triggered via the id parameter and allows a remote attacker to execute arbitrary SQL commands. Exploitation details are not provided beyond the vulnerability description; CVSS metrics indica...
ASPSitem <= 1.83 Remote SQL Injection Vulnerability
--Security Report-- Advisory: ASPSitem = 1.83 Remote SQL Injection Vulnerability. --- Author: Mustafa Can Bjorn "nukedx a.k.a nuker" IPEKCI --- Date: 19/04/06 19:33 PM --- Contacts: ICQ: 10072 MSN/Email: [email protected] Web: http://www.nukedx.com --- Vendor: ASPSitem http://www.aspsitem.com...
ASPSitem <= 1.83 (Haberler.asp) Remote SQL Injection Exploit
No description provided by source. !/usr/bin/perl Method found & Exploit scripted by nukedx Contacts ICQ: 10072 MSN/Main: [email protected] web: www.nukedx.com Original advisory: http://www.nukedx.com/?viewdoc=23 Usage: aspsi.pl host path userid use IO::Socket; if@ARGV != 3 usage; else exploit; s...