CVE-2022-50966 uBidAuction 2.0.1 news manage Reflected XSS

uBidAuction 2.0.1 contains a reflected cross-site scripting vulnerability in the news/manage module. The datecreated, datefrom, dateto, and createdat parameters in the filter functionality are not properly sanitized, allowing remote attackers to inject malicious scripts via crafted GET requests...

CVE-2022-50965 uBidAuction 2.0.1 posts manage Reflected XSS

uBidAuction 2.0.1 contains a reflected cross-site scripting vulnerability in the posts/manage module. The datecreated, datefrom, dateto, and createdat parameters in the filter functionality are not properly sanitized, allowing remote attackers to inject malicious scripts via crafted GET requests...

EUVD-2007-1784

Malware in sbrugna...

Auction_Software Script Admin Login Bypass vulnerability

No description provided by source. 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1 Name : AuctionSoftware Script Admin Login Bypass vulnerability vendor URL :http://www.brotherscripts.com/ Price: $24.95 Author : altbta l9athotmail.com dork : PHPAuction GPL Enhanced V2.51 ...

Bs Auction Script SQL Injection Vulnerability

No description provided by source. 1 1 0 I'm Sid3^effects member from Inj3ct0r Team 1 1 0 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1 Name : Bs Auction Script Sqli Vulnerability Date : july 5,2010 Critical Level : HIGH vendor URL :http://www.brotherscripts.com/...

Auction_Software Script - Admin Authentication Bypass

1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1 Name : AuctionSoftware Script Admin Login Bypass vulnerability vendor URL :http://www.brotherscripts.com/ Price: $24.95 Author : altbta dork : "PHPAuction GPL Enhanced V2.51 by AuctionCode.com"...

BS Auction - SQL Injection

----------------------------Information------------------------------------------------ +Name : BS Auction = SQL Injection Vulnerability Exploit +Autor : Easy Laster +ICQ : 11-051-551 +Date : 06.07.2010 +Script : BS Auction +Price : $24.95 +Language :PHP +Exploit Language : ruby +Discovered by Ea...

Bs Auction Script - SQL Injection

1 1 0 I'm Sid3^effects member from Inj3ct0r Team 1 1 0 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1 Name : Bs Auction Script Sqli Vulnerability Date : july 5,2010 Critical Level : HIGH vendor URL :http://www.brotherscripts.com/ Price:$24.95 Author : Sid3^effects aKa Ha...

Remote file inclusion

Multiple PHP remote file inclusion vulnerabilities in Kaqoo Auction Software Free Edition allow remote attackers to execute arbitrary PHP code via a URL in the installroot parameter to 1 support.inc.php, 2 function.inc.php, 3 rdalobject.inc.php, 4 rdaleditor.inc.php. 5 login.inc.php, 6...

CVE-2007-1790

Multiple PHP remote file inclusion vulnerabilities in Kaqoo Auction Software Free Edition allow remote attackers to execute arbitrary PHP code via a URL in the installroot parameter to 1 support.inc.php, 2 function.inc.php, 3 rdalobject.inc.php, 4 rdaleditor.inc.php. 5 login.inc.php, 6...

CVE-2007-1790

Multiple PHP remote file inclusion vulnerabilities in Kaqoo Auction Software Free Edition allow remote attackers to execute arbitrary PHP code via a URL in the installroot parameter to 1 support.inc.php, 2 function.inc.php, 3 rdalobject.inc.php, 4 rdaleditor.inc.php. 5 login.inc.php, 6...

CVE-2007-1790

CVE-2007-1790 describes multiple PHP remote file inclusion vulnerabilities in Kaqoo Auction Software Free Edition. An attacker can exploit the install_root parameter to load arbitrary files via URLs in a long list of include paths (including core, display, and root include directories), potential...

MySQL Auction XSS vuln.

MySQL Auction XSS vuln. Vuln. dicovered by : r0t Date: 14 dec. 2005 orginal advisory:http://pridels.blogspot.com/2005/12/mysql-auction-xss-vuln.html vendor:mysqlauction.com affected version: 3.0 and prior Product Description: Full featured, MySQL database driven online auction software. Features...