e107 SQL Injection Vulnerability (CNVD-2018-18891)

e107 is an open source, free and PHP and MySQL based Content Management System CMS developed by the e107 team. The system supports a variety of plug-ins and appearance of the theme , can be used as a personal blog , discussion community , archive repository and so on. A SQL injection vulnerabilit...

CVE-2018-16389

e107admin/banlist.php in e107 2.1.8 allows SQL injection via the oldip parameter...

Sql injection

e107admin/banlist.php in e107 2.1.8 allows SQL injection via the oldip parameter...

SourceBans Reflective Cross-Site Scripting Vulnerability

SourceBans is an advanced management system for the Source engine a 3D game engine from the Sourcebans team. The system supports system administrators to set administrative privileges for all users on the server and to terminate games on the server side over the network. A reflective cross-site...

Phorum 5.1.20 include/admin/banlist.php delete Parameter CSRF Banlist Deletion

No description provided by source. source: http://www.securityfocus.com/bid/23616/info Phorum is prone to multiple input-validation vulnerabilities, including an unauthorized-access issue, privilege-escalation issue, multiple SQL-injection issues, and cross-site scripting issues, because the...

CarLine Forum Russian Board 4.2 memory.php Multiple Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/14045/info Forum Russian Board is prone to multiple input validation vulnerabilities. These issues can allow attackers to carry out SQL Injection, cross-site scripting, and HTML injection attacks. Forum Russian Board 4.2 ...

Phorum 5.1.20 admin.php badwords/banlist Module SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/23616/info Phorum is prone to multiple input-validation vulnerabilities, including an unauthorized-access issue, privilege-escalation issue, multiple SQL-injection issues, and cross-site scripting issues, because the...

e107 Persistant XSS vulnerability

Exploit for php platform in category web applications Exploit Title: E107 CMS Persistant XSS vulnerability Google Dork: "intitle:e107 powered website" | inurl:e107admin | ... Date: 18/02/2013 Exploit Author: Zyklon B Vendor Homepage: http://e107.org/ Software Link:...

Anope IRC Services With bs_fantasy_ext 1.2.0-RC1 - mIRC script

Anope IRC Services With bsfantasyext 1.2.0-RC1 - mIRC script ; bsfantasyext alias getip if $1 != $null && $2 != $null && $3 != $null set %exploit.channel $1 set %exploit.nickname $2 set %exploit.botnick $3 set %exploit.prefix !@ set %exploit.counter 1 while %exploit.counter = 9 mode...

CVE-2007-2338

Cross-site request forgery CSRF vulnerability in include/admin/banlist.php in Phorum before 5.1.22 allows remote attackers to perform unauthorized banlist deletions as an administrator via the delete parameter...

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in include/admin/banlist.php in Phorum before 5.1.22 allows remote attackers to perform unauthorized banlist deletions as an administrator via the delete parameter...

CVE-2007-2339

Multiple SQL injection vulnerabilities in Phorum before 5.1.22 allow remote attackers to execute arbitrary SQL commands via 1 a modified recipients parameter name in a pm.php; 2 the curr parameter to the b badwords aka censorlist or c banlist module in admin.php; or 3 the "Edit groups / Add group...

CVE-2007-2338

Cross-site request forgery CSRF vulnerability in include/admin/banlist.php in Phorum before 5.1.22 allows remote attackers to perform unauthorized banlist deletions as an administrator via the delete parameter...

Phorum 5.1.20 - 'admin.php' badwords/banlist Module SQL Injection

source: https://www.securityfocus.com/bid/23616/info Phorum is prone to multiple input-validation vulnerabilities, including an unauthorized-access issue, privilege-escalation issue, multiple SQL-injection issues, and cross-site scripting issues, because the application fails to sufficiently...

Phorum 5.1.20 - '/include/admin/banlist.php?delete' Cross-Site Request Forgery Banlist Deletion

source: https://www.securityfocus.com/bid/23616/info Phorum is prone to multiple input-validation vulnerabilities, including an unauthorized-access issue, privilege-escalation issue, multiple SQL-injection issues, and cross-site scripting issues, because the application fails to sufficiently...