4673 matches found
CVE-2017-1002019
Vulnerability in wordpress plugin eventr v1.02.2, The edit.php form and eventform.php code do not sanitize input, this allows for blind SQL injection via the event parameter...
Sql injection
Vulnerability in wordpress plugin eventr v1.02.2, The edit.php form and eventform.php code do not sanitize input, this allows for blind SQL injection via the event parameter...
CVE-2017-1002018
Vulnerability in wordpress plugin eventr v1.02.2, The edit.php form and attendees.php code do not sanitize input, this allows for blind SQL injection via the event parameter...
CVE-2017-1002014
Vulnerability in wordpress plugin image-gallery-with-slideshow v1.5.2, Blind SQL Injection in image-gallery-with-slideshow/adminsetting.php via galleryname parameter...
Sql injection
Vulnerability in wordpress plugin eventr v1.02.2, The edit.php form and attendees.php code do not sanitize input, this allows for blind SQL injection via the event parameter...
CVE-2017-1002019
Vulnerability in wordpress plugin eventr v1.02.2, The edit.php form and eventform.php code do not sanitize input, this allows for blind SQL injection via the event parameter...
CVE-2017-1002013
Vulnerability in wordpress plugin image-gallery-with-slideshow v1.5.2, Blind SQL Injection via imgid parameter in image-gallery-with-slideshow/adminsetting.php...
CVE-2017-1002013
CVE-2017-1002013 affects WordPress plugin Image Gallery with Slideshow (v1.5.2) and is due to a Blind SQL Injection via the imgid parameter in image-gallery-with-slideshow/admin_setting.php. The vulnerability allows a remote attacker (no authentication) to send crafted requests over the network a...
CVE-2017-1002013
Vulnerability in wordpress plugin image-gallery-with-slideshow v1.5.2, Blind SQL Injection via imgid parameter in image-gallery-with-slideshow/adminsetting.php...
CVE-2017-1002015
The CVE-2017-1002015 entry covers a vulnerability in the WordPress plugin Image Gallery with Slideshow, version 1.5.2, where a Blind SQL Injection exists in image-gallery-with-slideshow/admin_setting.php through the selectMulGallery parameter. This is evidenced by multiple connected records (NVD,...
CVE-2017-1002019
The CVE tracks a vulnerability in the WordPress plugin EventR (v1.02.2): the edit.php and event_form.php code do not sanitize input, enabling blind SQL injection via the event parameter. Root cause is inadequate input sanitization; this can allow an attacker to execute arbitrary SQL commands rela...
CVE-2017-1002014
Vulnerability in wordpress plugin image-gallery-with-slideshow v1.5.2, Blind SQL Injection in image-gallery-with-slideshow/adminsetting.php via galleryname parameter...
AirStar Airbnb Clone Script 1.0 SQL Injection
Exploit Title: AirStar Airbnb Clone Script v1.0 - SQL Injection Date: 2017-09-11 Exploit Author: 8bitsec Vendor Homepage: https://www.abservetech.com/ Software Link: https://www.abservetech.com/airstar-airbnb-clone/ Version: 1.0 Tested on: Kali Linux 2.0 | Mac OS 10.12.6 Email: [email protected]...
iTech StockPhoto Script 2.02 - SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: iTech StockPhoto Script v2.02 - SQL Injection Date: 2017-09-11 Exploit Author: 8bitsec Vendor Homepage: http://itechscripts.com/ Software Link: http://itechscripts.com/stockphoto-script Version: 2.02 Tested on: Kali Linux 2.0 |...
EduStar Udemy Clone Script 1.0 - SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: EduStar Udemy Clone Script v1.0 - SQL Injection Exploit Author: 8bitsec Vendor Homepage: https://www.abservetech.com/ Software Link: https://www.abservetech.com/edustar-udemy-clone/ Version: 1.0 Tested on: Kali Linux 2.0 | Mac O...
JobStar Monster Clone Script 1.0 - SQL Injection
JobStar Monster Clone Script 1.0 - SQL Injection Exploit Title: JobStar Monster Clone Script v1.0 - SQL Injection Date: 2017-09-11 Exploit Author: 8bitsec Vendor Homepage: https://www.abservetech.com/ Software Link: https://www.abservetech.com/jobstar-monster-clone/ Version: 1.0 Tested on: Kali...
iTech StockPhoto Script 2.02 - SQL Injection
Exploit Title: iTech StockPhoto Script v2.02 - SQL Injection Date: 2017-09-11 Exploit Author: 8bitsec Vendor Homepage: http://itechscripts.com/ Software Link: http://itechscripts.com/stockphoto-script Version: 2.02 Tested on: Kali Linux 2.0 | Mac OS 10.12.6 Email: [email protected] Contact:...
EduStar Udemy Clone Script 1.0 - SQL Injection
Exploit Title: EduStar Udemy Clone Script v1.0 - SQL Injection Date: 2017-09-11 Exploit Author: 8bitsec Vendor Homepage: https://www.abservetech.com/ Software Link: https://www.abservetech.com/edustar-udemy-clone/ Version: 1.0 Tested on: Kali Linux 2.0 | Mac OS 10.12.6 Email: [email protected]...
AirStar Airbnb Clone Script 1.0 - SQL Injection
AirStar Airbnb Clone Script 1.0 - SQL Injection Exploit Title: AirStar Airbnb Clone Script v1.0 - SQL Injection Date: 2017-09-11 Exploit Author: 8bitsec Vendor Homepage: https://www.abservetech.com/ Software Link: https://www.abservetech.com/airstar-airbnb-clone/ Version: 1.0 Tested on: Kali Linu...
CVE-2017-12227
A vulnerability in the SQL database interface for Cisco Emergency Responder could allow an authenticated, remote attacker to conduct a blind SQL injection attack. The vulnerability is due to a failure to validate user-supplied input used in SQL queries that bypass protection filters. An attacker...