6 matches found
burncms-rfi.txt
burnCMS = 0.2rootRemote File Include Vulnerablities D.Script: http://www.burnstone.ch/downloads/burnCMS-0.2.zip Discovered by: GolDM = Mahmoodali Homepage: http://www.Tryag.cc Exploit:PathburnCMS/lib/authuser.php?root=Shell Exploit:PathburnCMS/lib/misc.php?root=Shell...
burnCMS 0.2 - 'root' Remote File Inclusion
burnCMS = 0.2rootRemote File Include Vulnerablities D.Script: http://www.burnstone.ch/downloads/burnCMS-0.2.zip Discovered by: GolDM = Mahmoodali Homepage: http://www.Tryag.cc Exploit:PathburnCMS/lib/authuser.php?root=Shell Exploit:PathburnCMS/lib/misc.php?root=Shell...
burnCMS <= 0.2 (root) Remote File Inclusion Vulnerabilities
Exploit for unknown platform in category web applications =========================================================== burnCMS = 0.2 root Remote File Inclusion Vulnerabilities =========================================================== burnCMS = 0.2rootRemote File Include Vulnerablities D.Script:...
CVE-2006-1289
Multiple SQL injection vulnerabilities in Milkeyway Captive Portal 0.1 and 0.1.1 allow remote attackers to execute arbitrary SQL commands via the 1 username, 2 password, 3 team, 4 level, 5 status, 6 teamname, and 7 teamlead parameters in a auth.php; the 8 username, 9 action, and 10 filter...
Sql injection
Multiple SQL injection vulnerabilities in Milkeyway Captive Portal 0.1 and 0.1.1 allow remote attackers to execute arbitrary SQL commands via the 1 username, 2 password, 3 team, 4 level, 5 status, 6 teamname, and 7 teamlead parameters in a auth.php; the 8 username, 9 action, and 10 filter...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Milkeyway Captive Portal 0.1 and 0.1.1 allow remote attackers to inject arbitrary web script or HTML via the 1 ipAddress, 2 act, 3 username, and 4 unspecified other parameters in a authuser.php; and the 5 username and 6 unspecified other...