CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Exploit DB•added 2016/10/06 12:0 a.m.•38 views

PHP Classifieds Rental Script - Blind SQL Injection

x========================================================================================================================================x | Title : PHP Classifieds Rental Script Blind SQL Vulnerabilities | Software : PHP Classifieds Rental Script | Vendor : http://www.i-netsolution.com/ | Demo :...

Exploit DB•added 2016/10/06 12:0 a.m.•37 views

B2B Portal Script - Blind SQL Injection

x========================================================================================================================================x | Title : B2B Portal Script Blind SQL Vulnerabilities | Software : B2B Portal Script | Vendor : http://www.i-netsolution.com/ | Demo :...

exploitpack•added 2016/09/22 12:0 a.m.•32 views

Exponent CMS 2.3.9 - Blind SQL Injection

Exponent CMS 2.3.9 - Blind SQL Injection ============================================= MGC ALERT 2016-005 - Original release date: September 09, 2016 - Last revised: September 20, 2016 - Discovered by: Manuel GarcAa CA!rdenas - Severity: 7,1/10 CVSS Base Score - CVE-ID: CVE-2016-7400...

7.5CVSS0.2AI score0.04651EPSS

0day.today•added 2016/09/22 12:0 a.m.•61 views

Exponent CMS 2.3.9 - Blind SQL Injection Vulnerability

Exploit for php platform in category web applications ============================================= MGC ALERT 2016-005 - Original release date: September 09, 2016 - Last revised: September 20, 2016 - Discovered by: Manuel GarcAa CA!rdenas - Severity: 7,1/10 CVSS Base Score - CVE-ID: CVE-2016-7400...

7.5CVSS0.2AI score0.04651EPSS

Exploit DB•added 2016/09/22 12:0 a.m.•41 views

Exponent CMS 2.3.9 - Blind SQL Injection

============================================= MGC ALERT 2016-005 - Original release date: September 09, 2016 - Last revised: September 20, 2016 - Discovered by: Manuel GarcAa CA!rdenas - Severity: 7,1/10 CVSS Base Score - CVE-ID: CVE-2016-7400 ============================================= I...

9.8CVSS9.8AI score0.04651EPSS

Packet Storm•added 2016/09/20 12:0 a.m.•51 views

Exponent CMS 2.3.9 Blind SQL Injection

0.2AI score0.04651EPSS

Packet Storm•added 2016/09/19 12:0 a.m.•54 views

ShoreTel Connect ONSITE Blind SQL Injection

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ShoreTel Connect ONSITE Blind SQL Injection Vulnerability ======================================================================= vulnerability type: Unauthenticated Blind SQL Injection product: ShoreTel Connect ONSITE vulnerable version: 20.xx.xxxx...

0day.today•added 2016/09/19 12:0 a.m.•37 views

ShoreTel Connect ONSITE - Blind SQL Injection

Exploit for php platform in category web applications Exploit Title: ShoreTel Connect ONSITE Blind SQL Injection Vulnerability Date: 19-09-2016 Software Link: https://www.shoretel.com/resource-center/shoretel-connect-onsite-overview Exploit Author: Iraklis Mathiopoulos Contact:...

7.1AI score

exploitpack•added 2016/09/19 12:0 a.m.•16 views

ShoreTel Connect ONSITE - Blind SQL Injection

ShoreTel Connect ONSITE - Blind SQL Injection Exploit Title: ShoreTel Connect ONSITE Blind SQL Injection Vulnerability Date: 19-09-2016 Software Link: https://www.shoretel.com/resource-center/shoretel-connect-onsite-overview Exploit Author: Iraklis Mathiopoulos Contact: https://twitter.com/imath...

Exploit DB•added 2016/09/19 12:0 a.m.•24 views

ShoreTel Connect ONSITE - Blind SQL Injection

Exploit Title: ShoreTel Connect ONSITE Blind SQL Injection Vulnerability Date: 19-09-2016 Software Link: https://www.shoretel.com/resource-center/shoretel-connect-onsite-overview Exploit Author: Iraklis Mathiopoulos Contact: https://twitter.com/imath Website: https://medium.com/@iraklis Category:...

Patchstack•added 2016/08/24 12:0 a.m.•9 views

WordPress Zero Spam Plugin <= 2.1.1 - Blind SQL Injection

This plugin is prone to a blind SQL injection vulnerability. Solution Update the plugin...

2.6AI score

Exploits0References1Affected Software1

WPVulnDB•added 2016/08/24 12:0 a.m.•13 views

WordPress Zero Spam <= 2.1.1 - Unauthenticated Blind SQL Injection

The WordPress Zero Spam WordPress plugin was affected by an Unauthenticated Blind SQL Injection security vulnerability. PoC HTTP request header: Client-IP: '+select0fromselectsleep10v+'...

0.4AI score

Exploits0References3Affected Software1

Patchstack•added 2016/08/24 12:0 a.m.•14 views

WordPress Zero Spam Plugin <= 2.1.1 - Blind SQL Injection

This plugin is prone to a blind SQL injection vulnerability. Solution Update the plugin...

2.6AI score

Exploits0References1Affected Software1

0day.today•added 2016/08/23 12:0 a.m.•21 views

SimplePHPQuiz - Blind SQL Injection

Exploit for php platform in category web applications Exploit Title: SimplePHPQuiz - Blind SQL Injection Date: 2016-08-23 Exploit Author: HaHwul Exploit Author Blog: www.hahwul.com Vendor Homepage: https://github.com/valokafor/SimplePHPQuiz Software Link:...

7.1AI score

exploitpack•added 2016/08/23 12:0 a.m.•13 views

SimplePHPQuiz - Blind SQL Injection

SimplePHPQuiz - Blind SQL Injection Exploit Title: SimplePHPQuiz - Blind SQL Injection Date: 2016-08-23 Exploit Author: HaHwul Exploit Author Blog: www.hahwul.com Vendor Homepage: https://github.com/valokafor/SimplePHPQuiz Software Link: https://github.com/valokafor/SimplePHPQuiz/archive/master.z...

8.6AI score

Exploit DB•added 2016/08/23 12:0 a.m.•34 views

SimplePHPQuiz - Blind SQL Injection

Exploit Title: SimplePHPQuiz - Blind SQL Injection Date: 2016-08-23 Exploit Author: HaHwul Exploit Author Blog: www.hahwul.com Vendor Homepage: https://github.com/valokafor/SimplePHPQuiz Software Link: https://github.com/valokafor/SimplePHPQuiz/archive/master.zip Version: Latest commit Tested on:...

OpenVAS•added 2016/08/03 12:0 a.m.•23 views

TeamPass <= 2.1.25 Arbitrary File Download and Unauthenticated Blind SQL Injection Vulnerability

TeamPass is prone to an arbitrary file download vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:teampass:teampass"...

exploitpack•added 2016/07/29 12:0 a.m.•16 views

Exploits0References4

WordPress Plugin Ultimate Product Catalog 3.9.8 - do_shortcode via ajax Blind SQL Injection

WordPress Plugin Ultimate Product Catalog 3.9.8 - doshortcode via ajax Blind SQL Injection Exploit Title: Wordpress Ultimate-Product-Catalog getrow"SELECT FROM $cataloguestablename WHERE CatalogueID=" . $id; $CatalogueItems = $wpdb-getresults"SELECT FROM $catalogueitemstablename WHERE CatalogueID...

0.8AI score

0day.today•added 2016/07/29 12:0 a.m.•33 views

WordPress Ultimate Product Catalog 3.9.8 Plugin - (do_shortcode via ajax) Blind SQL Injection

Exploit for php platform in category web applications Exploit Title: Wordpress Ultimate-Product-Catalog getrow"SELECT FROM $cataloguestablename WHERE CatalogueID=" . $id; $CatalogueItems = $wpdb-getresults"SELECT FROM $catalogueitemstablename WHERE CatalogueID=" . $id . " ORDER BY Position";...

7.1AI score