23 matches found
EUVD-2006-3956
Malware in sbrugna...
EUVD-2006-3958
Malware in sbrugna...
EUVD-2006-3957
Malware in sbrugna...
Click&BaneX Multiple Remote SQL Injection Vulnerabilities
No description provided by source. -------------------------------AlpHaNiX---------------------------------- Found By : AlpHaNiX website : www.offensivetrack.org contact : AlpHaATHACKERDOTBZ script : Click&BaneX download : null Demo : http://icash.ch/ClickAndBanexDemo/user/ %00...
Click&BaneX Details.ASP SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/26493/info Click&BaneX is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise t...
Click&BaneX v1.01 - Multiple SQL Injection Vulnerabilities
Document Title: =============== Click&BaneX v1.01 - Multiple SQL Injection Vulnerabilities Release Date: ============= 2011-07-02 Vulnerability Laboratory ID VL-ID: ==================================== 218 Product & Service Introduction: =============================== Click&BaneX is a full...
Click&BaneX - Multiple SQL Injections
-------------------------------AlpHaNiX---------------------------------- Found By : AlpHaNiX website : www.offensivetrack.org contact : AlpHaATHACKERDOTBZ script : Click&BaneX download : null Demo : http://icash.ch/ClickAndBanexDemo/user/ %00 http://icash.ch/ClickAndBanexDemo/admin/ Exploits :...
ClickBaneX - Multiple SQL Injections
ClickBaneX - Multiple SQL Injections -------------------------------AlpHaNiX---------------------------------- Found By : AlpHaNiX website : www.offensivetrack.org contact : AlpHaATHACKERDOTBZ script : Click&BaneX download : null Demo : http://icash.ch/ClickAndBanexDemo/user/ %00...
Click&BaneX Multiple Remote SQL Injection Vulnerabilities
No description provided by source. -------------------------------AlpHaNiX---------------------------------- Found By : AlpHaNiX website : www.offensivetrack.org contact : AlpHaATHACKERDOTBZ script : Click&BaneX download : null Demo : http://icash.ch/ClickAndBanexDemo/user/ %00...
Click&BaneX Multiple Remote SQL Injection Vulnerabilities
Exploit for unknown platform in category web applications ========================================================= Click&BaneX Multiple Remote SQL Injection Vulnerabilities =========================================================...
Click&BaneX - 'Details.asp' SQL Injection
source: https://www.securityfocus.com/bid/26493/info Click&BaneX is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify...
Banex PHP MySQL Banner Exchange多个SQL注入漏洞
Banex PHP MySQL Banner Exchange是一款基于PHP的BANNER交换程序。 Banex PHP MySQL Banner Exchange不正确处理用户提交的WEB数据,远程攻击者可以利用漏洞进行SQL注入获得敏感信息。 问题存在于多个脚本,由于对用户提交的URI参数缺少过滤,提交恶意SQL查询作为参数数据,可更改原来的SQL逻辑,获得敏感信息。 Banex PHP MySQL Banner Exchange 2.21 http://sourceforge.net/projects/banex...
banex.txt
Discovered by Sirdarckcat from elhacker.net Banex 2.21 http://sourceforge.net/projects/banex ============================================== Banex is a simple script for sharing Banners through multiple webs. Anyway it has multiple vulnerabilities. ============================================== 1....
[Full-disclosure] Banex Multiple Vulnerabilities
Discovered by Sirdarckcat from elhacker.net Banex 2.21 http://sourceforge.net/projects/banex ============================================== Banex is a simple script for sharing Banners through multiple webs. Anyway it has multiple vulnerabilities. ============================================== 1....
CVE-2006-3965
Banex PHP MySQL Banner Exchange 2.21 stores lib.inc under the web document root with insufficient access control, which allows remote attackers to obtain sensitive information such as database usernames and passwords...
CVE-2006-3964
PHP remote file inclusion vulnerability in members.php in Banex PHP MySQL Banner Exchange 2.21 allows remote attackers to execute arbitrary PHP code via a URL in the cfgroot parameter...
CVE-2006-3963
Multiple SQL injection vulnerabilities in Banex PHP MySQL Banner Exchange 2.21 allow remote attackers to execute arbitrary SQL commands via the 1 sitename parameter to a signup.php, and the 2 id, 3 deleteuserbanner, 4 viewmem, 5 viewmemunb, 6 viewunmem,or 7 deleteuser parameters to b admin.php...
CVE-2006-3963
Banex PHP MySQL Banner Exchange 2.21 contains multiple SQL injection vulnerabilities that allow remote attackers to execute arbitrary SQL via user-controlled parameters. Specifically, the site_name parameter to signup.php and the id, deleteuserbanner, viewmem, viewmemunb, viewunmem, and deleteuse...
CVE-2006-3964
The CVE-2006-3964 issue affects Banex PHP MySQL Banner Exchange 2.21, where a PHP remote file inclusion vulnerability in members.php allows an attacker to execute arbitrary PHP code via a URL supplied to the cfg_root parameter. The underlying flaw is improper handling of remote file input, enabli...
CVE-2006-3963
Multiple SQL injection vulnerabilities in Banex PHP MySQL Banner Exchange 2.21 allow remote attackers to execute arbitrary SQL commands via the 1 sitename parameter to a signup.php, and the 2 id, 3 deleteuserbanner, 4 viewmem, 5 viewmemunb, 6 viewunmem,or 7 deleteuser parameters to b admin.php...