10 matches found
CVE-2007-3643
admin/index.php in AV Arcade 2.1b grants administrative privileges when the avauserid cookie value is 1, which allows remote attackers to perform certain administrative actions...
Code injection
admin/index.php in AV Arcade 2.1b grants administrative privileges when the avauserid cookie value is 1, which allows remote attackers to perform certain administrative actions...
CVE-2007-3643
admin/index.php in AV Arcade 2.1b grants administrative privileges when the avauserid cookie value is 1, which allows remote attackers to perform certain administrative actions...
Sql injection
SQL injection vulnerability in includes/viewpage.php in AV Arcade 2.1b allows remote attackers to execute arbitrary SQL commands via the id parameter in a viewpage action to index.php...
CVE-2007-3563
SQL injection vulnerability in includes/viewpage.php in AV Arcade 2.1b allows remote attackers to execute arbitrary SQL commands via the id parameter in a viewpage action to index.php...
AV Arcade 2.1b (COOKIE[ava_userid]) Get Admin Rights
AV Arcade 2.1b COOKIEavauserid Get Admin Rights Web: AV Arcade 2.1b Site : www.avscripts.net Dork : "Powered By AV Arcade" Author: Kw3rLn tehlostbyteatYaHoOd0tCom Romanian Security Team Ethical Hacking - hTTp://RSTZONE.nET Vurnerable code: admin/index.php: $sql = mysqlquery"SELECT FROM avausers...
avarcade-admin.txt
AV Arcade 2.1b COOKIEavauserid Get Admin Rights Web: AV Arcade 2.1b Site : www.avscripts.net Dork : "Powered By AV Arcade" Author: Kw3rLn tehlostbyteatYaHoOd0tCom Romanian Security Team Ethical Hacking - hTTp://RSTZONE.nET Vurnerable code: admin/index.php: $sql = mysqlquery"SELECT FROM avausers...
AV Arcade 2.1b - index.php?id SQL Injection
AV Arcade 2.1b - index.php?id SQL Injection Web: AV Arcade 2.1b Site : www.avscripts.net Dork : "Powered By AV Arcade" Author: Kw3rLn tehlostbyteatYaHoOd0tCom Romanian Security Team Ethical Hacking - hTTp://RSTZONE.nET Description: SQL injection in $id of includes/viewpage.php Exploit:...
AV Arcade 2.1b (index.php id) Remote SQL Injection Vulnerability
Exploit for unknown platform in category web applications ================================================================ AV Arcade 2.1b index.php id Remote SQL Injection Vulnerability ================================================================ Web: AV Arcade 2.1b Site : www.avscripts.net...
AV Arcade 2.1b - 'index.php?id' SQL Injection
Web: AV Arcade 2.1b Site : www.avscripts.net Dork : "Powered By AV Arcade" Author: Kw3rLn tehlostbyteatYaHoOd0tCom Romanian Security Team Ethical Hacking - hTTp://RSTZONE.nET Description: SQL injection in $id of includes/viewpage.php Exploit:...