auracms-blindsql.txt

!/usr/bin/perl -w Indonesian Newhack Security Advisory ------------------------------------ AuraCMS 2.x online.php - Remote Blind SQL Injection Exploit Waktu : Feb 15 2008 01:00PM Software : AuraCMS Versi : 2.0 2.1 2.2.1 Vendor : http://www.auracms.org/ ------------------------------------ Audit...

AuraCMS 2.2.1 - X-Forwarded-For HTTP Header Blind SQL Injection

AuraCMS 2.2.1 - X-Forwarded-For HTTP Header Blind SQL Injection !/usr/bin/perl -w Indonesian Newhack Security Advisory ------------------------------------ AuraCMS 2.x online.php - Remote Blind SQL Injection Exploit Waktu : Feb 15 2008 01:00PM Software : AuraCMS Versi : 2.0 2.1 2.2.1 Vendor :...

easycalendar-multi.txt

--==+=================== Spanish Hackers Team www.spanish-hackers.com =================+==-- --==+ EasyCalendar 'alert"JosS"%3B --==+=================== Spanish Hackers Team www.spanish-hackers.com =================+==-- --==+ JosS +==-- --==+=====================================...

danneo-sql.txt

use specific prefix\n"; echo "-id= - use specific user id default 1\n"; echo "-c= - benchmark's loop count default 300000\n"; echo "-v - verbose mode\n\n"; echo "tip:\n"; echo "use bigger number of if server is slow\n\n"; echo "php $argv0 http://site.com/ -p=cms\n"; echo "php $argv0...

quicktalk-blindsql.txt

QuickTalk Forum / ----------------------------------------------------------------------------------------------- - QuickTalk Forum Blind SQL Injection Exploit qtfindsearchov.php - - Info --------------------------------------------------------------------------------------- - Author: t0pP8uZz &...

QuickTalk Forum 1.6 - Blind SQL Injection

QuickTalk Forum / ----------------------------------------------------------------------------------------------- - QuickTalk Forum Blind SQL Injection Exploit qtfindsearchov.php - - Info --------------------------------------------------------------------------------------- - Author: t0pP8uZz &...

QuickTalk Forum <= 1.6 Remote Blind SQL Injection Exploit

No description provided by source. html head titleQuickTalk Forum = 1.6 Blind SQL Injection Exploit/title script language="Javascript" type="text/javascript" / ----------------------------------------------------------------------------------------------- - QuickTalk Forum Blind SQL Injection...

QuickTalk Forum 1.6 - Blind SQL Injection

QuickTalk Forum 1.6 - Blind SQL Injection QuickTalk Forum / ----------------------------------------------------------------------------------------------- - QuickTalk Forum Blind SQL Injection Exploit qtfindsearchov.php - - Info...

QuickTalk Forum <= 1.6 Remote Blind SQL Injection Exploit

Exploit for unknown platform in category web applications ========================================================= QuickTalk Forum QuickTalk Forum / ----------------------------------------------------------------------------------------------- - QuickTalk Forum Blind SQL Injection Exploit...

Danneo CMS 0.5.1 - Blind SQL Injection

use specific prefix\n"; echo "-id= - use specific user id default 1\n"; echo "-c= - benchmark's loop count default 300000\n"; echo "-v - verbose mode\n\n"; echo "tip:\n"; echo "use bigger number of if server is slow\n\n"; echo "php $argv0 http://site.com/ -p=cms\n"; echo "php $argv0...

Urulu 2.1 Blind SQL Injection Vulnerability &#40;CVE-2008-0385&#41;

COMPASS SECURITY ADVISORY http://www.csnc.ch/ Product: Urulu Vendor: USystems Subject: Blind SQL Injection Vulnerability Risk: High Author: Daniel Roethlisberger Date: 2008-02-25 CVE Name: CVE-2008-0385 Introduction ------------ An AJAX based Blind SQL Injection vulnerability exists in the Web 2....

Woltlab Burning Board 3.0.x Remote Blind SQL Injection Exploit

No description provided by source. ?php iniset"maxexecutiontime",0; echo "WoltLab Burning Board 3.0.X Remote SQL-Injection Exploit by NBBN\n"; start1, 48; / You have to edit this script. / / Works succesfully at 3.0.1. If you enter in 3.0.3 PL1:...

[DSECRG-08-015] Multiple Security Vulnerabilities in Dokeos 1.8.4

Digital Security Research Group DSecRG Advisory DSECRG-08-015 Application: Dokeos E-Learning System Versions Affected: 1.8.4 Vendor URL: http://dokeos.com Bugs: Multiple SQL Injections,Multiple Blind SQL Injections,Multiple XSS, etc. Exploits: YES Reported: 25.01.2008 Vendor response: 28.01.2008...

Joomla! Component mediaslide - &#039;albumnum&#039; Blind SQL Injection

!/usr/bin/perl inphex joomla commediaslide blind sql injection use LWP::UserAgent; use LWP::Simple; use Switch; use Digest::MD5 qwmd5 md5hex md5base64; print "usage: $0 -h host.com -p /\n"; use Getopt::Long; $column = "username"; $table = "josusers"; $regex = "previewf2"; %cmn = "-h" = "host","-p...

Joomla Component mediaslide (albumnum) Blind SQL Injection Exploit

Exploit for unknown platform in category web applications ================================================================== Joomla Component mediaslide albumnum Blind SQL Injection Exploit ================================================================== !/usr/bin/perl inphex joomla commediasli...

Joomla! Component mediaslide - albumnum Blind SQL Injection

Joomla! Component mediaslide - albumnum Blind SQL Injection !/usr/bin/perl inphex joomla commediaslide blind sql injection use LWP::UserAgent; use LWP::Simple; use Switch; use Digest::MD5 qwmd5 md5hex md5base64; print "usage: $0 -h host.com -p /\n"; use Getopt::Long; $column = "username"; $table ...

Limbo CMS &lt;= 1.0.4.2 Cuid cookie Blind SQL Injection Exploit

No description provided by source. !/usr/bin/python ================================================================================================= / | |\ \ / | / |/ | | |/ \ | | / \ \ | \ \ | | | \ | |/ \ | | // | || | ||| /| / /\ | |||| /| / /...

Limbo CMS 1.0.4.2 - Cuid cookie Blind SQL Injection

Limbo CMS 1.0.4.2 - Cuid cookie Blind SQL Injection !/usr/bin/python ================================================================================================= / | |\ \ / | / |/ | | |/ \ | | | |||| /| / /...

Mihalism Multi Host Download - &#039;Username&#039; Blind SQL Injection

?php / Moubik Romanian Security Team - http://rstzone.org presents Mihalism Multi Host Download - Blind SQL Injection Attack Thanks to Vladii for telling me about the CMS. Thanks to Shocker for telling Vladii about the CMS. Shoutz to Kw3rln, Bankai, Slick, Nemessis Visit http://rstzone.org Visit...

Mihalism Multi Host Download (Username) Blind SQL Injection Exploit

No description provided by source. ?php / Moubik Romanian Security Team - http://rstzone.org presents Mihalism Multi Host Download - Blind SQL Injection Attack Thanks to Vladii for telling me about the CMS. Thanks to Shocker for telling Vladii about the CMS. Shoutz to Kw3rln, Bankai, Slick,...