Trend Micro Control Manager 5.56.0 AdHocQuery - (Authenticated) Blind SQL Injection

Trend Micro Control Manager 5.56.0 AdHocQuery - Authenticated Blind SQL Injection !/usr/bin/env python Exploit Title: Trend Micro Control Manager 5.5/6.0 AdHocQuery BlindSQL Injection post-auth Disclosure Date: 09/27/2012 Author: otoy @otoyrood & modpr0be @modpr0be Contact: researchatspentera.com...

Ipswitch WhatsUp Gold Multiple Vulnerabilities

The remote host has a version of Ipswitch WhatsUp Gold prior to 15.0.3 and, as such, may be affected by the following vulnerabilities : - There is a blind SQL injection vulnerability in the 'sGroupList' parameter of the 'WrVMwareHostList.asp' script. CVE-2012-2601 - An unspecified cross-site...

Joomla Component com_rokmodule Blind SQL Injection Vulnerability

Exploit for php platform in category web applications Titulo: Joomla Component RokModule Blind SQLi module Vulnerability Nombre del Componente: Comrokmodule Empresa: http://www.rockettheme.com/ Testeado: Linux Backtrack Autor: Yarolinux Para WebSecurityDev Twitter: @Yarolinux Fecha: 09/09/2012...

VICIDIAL Call Center Suite 2.2.1-237 - Multiple Vulnerabilities

VICIDIAL Call Center Suite 2.2.1-237 - Multiple Vulnerabilities ...:::::VICIDIAL call center suite Blind SQL Injection Vulnerability::::.... Sepahan TelCom IT Group septelcom ------------------------------------------------------- Date: 2012-09-07 Exploit Author: Sepahan TelCom IT Group septelcom...

Joomla! Component RokModule 1.1 - module Blind SQL Injection

Joomla! Component RokModule 1.1 - module Blind SQL Injection Titulo: Joomla Component RokModule Blind SQLi module Vulnerability Nombre del Componente: Comrokmodule Empresa: http://www.rockettheme.com/ Testeado: Linux Backtrack Autor: Yarolinux Para WebSecurityDev Twitter: @Yarolinux Fecha:...

VICIDIAL Call Center Suite <= 2.2.1-237 Multiple Vulnerabilities

Exploit for php platform in category web applications ...:::::VICIDIAL call center suite Blind SQL Injection Vulnerability::::.... Sepahan TelCom IT Group septelcom ------------------------------------------------------- Date: 2012-09-07 Exploit Author: Sepahan TelCom IT Group septelcom Vendor...

Joomla RokModule Blind SQL Injection

Titulo: Joomla Component RokModule Blind SQLi module Vulnerability Nombre del Componente: Comrokmodule Empresa: http://www.rockettheme.com/ Testeado: Linux Backtrack Autor: Yarolinux Para WebSecurityDev Twitter: @Yarolinux Fecha: 09/09/2012 Bueno la Injeccion Va de la siguiente manera:...

Fluger Edit 2 Blind SQL Injection / Cross Site Scripting Vulnerability

Exploit for php platform in category web applications ===================================================== Vulnerable Software: Fluger Edit v.2 || administration software Vendor: http://www.fluger.com/ Software License: Commercial Vulnerabilities: Blind SQL Injection And XSS Tested: In Wild...

Sciretech 3.0.0 SQL Injection / CSRF Vulnerability

Exploit for php platform in category web applications ========================================================= Vulnerable Software: Sciretech ® Multimedia Manager Version 3.0.0 Aka: Sciretech ® File Manager Version 3.0.0 Official site: www.sciretech.com Vulnerabilities: Blind SQL Injection And...

Flexap Control Panel 5.1 Blind SQL Injection Vulnerability

Exploit for php platform in category web applications ===================================================== Vulnerable software: Control Panel version 5.1 Vendor: http://www.flexap.am/ Vuln type: Blind SQL Injection Software License: Commercial Software: Control Panel version 5.1 Discovered and...

Magy cms v 2.0.1121 BETA Blind Sql injection

Hello Dear ЗАРАЗА, Please see attach. Attached file is commented and complete exploit which is written in AUTOIT. It exploits targetted cms using time based way and obtains default 5 usernames + corresponding MD5 passwords from target site. If anything unclear please let us know. TIA as always...

NGS00241 Patch Notification: SysAid Helpdesk blind SQL injection

High risk vulnerability in SysAid Helpdesk 20 August 2012 Daniel Compton of NCC Group has discovered a High risk vulnerability in SysAid Helpdesk Impact: Blind SQL injection Versions affected: SysAid Helpdesk Pro v8.5.04 An updated version of the software has been released to address these...

Studio-One CMS 1.11b / 1.7.1 Blind SQL Injection

======================================================== Vulnerable SoftwareS: CMS | 1.11b/CMS | 1.7.1 From Studio-one.am Vulnerabilities: This Content management systems suffers from Remote Blind SQl injection and Backdoor account. Software License: Commercial Vendor: studio-one.am Discovered an...

Flexap.am Control Panel 5.1 Blind SQL Injection

===================================================== Vulnerable software: Control Panel version 5.1 Vendor: http://www.flexap.am/ Vuln type: Blind SQL Injection Software License: Commercial Software: Control Panel version 5.1 Discovered and Exploited in Wild...

Fluger Edit 2 Blind SQL Injection / Cross Site Scripting

===================================================== Vulnerable Software: Fluger Edit v.2 || administration software Vendor: http://www.fluger.com/ Software License: Commercial Vulnerabilities: Blind SQL Injection And XSS Tested: In Wild ===================================================== Dork...

net2ftp Blind Sql Injection Vulnerability

Exploit for php platform in category web applications ============================================ NET2FTP BLIND SQL INJECTION Vulnerability ============================================ Exploit Title: NET2FTP BLIND SQL INJECTION Vulnerability Author: B3RM0D4 WALID.K" Date: 09/02/2012 Vendor or...

AV Arcade Free Edition - add_rating.php?id Blind SQL Injection

AV Arcade Free Edition - addrating.php?id Blind SQL Injection Exploit Title: AV Arcade Free Edition Blind SQL Injection Date: 31/08/2012 Author: DaOne @LibyanCA Software Link: http://www.avscripts.net/avarcade/freearcadescript/ Google Dork: intext:Powered by AV Arcade Free Edition" Exploit-DB Not...

AV Arcade Free Edition - &#039;add_rating.php?id&#039; Blind SQL Injection

Exploit Title: AV Arcade Free Edition Blind SQL Injection Date: 31/08/2012 Author: DaOne @LibyanCA Software Link: http://www.avscripts.net/avarcade/freearcadescript/ Google Dork: intext:Powered by AV Arcade Free Edition" Exploit-DB Note: Must be logged in. Exploit...

AV Arcade Free Edition Blind SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: AV Arcade Free Edition Blind SQL Injection Date: 31/08/2012 Author: DaOne @LibyanCA Software Link: http://www.avscripts.net/avarcade/freearcadescript/ Google Dork: intext:"Powered by AV Arcade Free Edition" Exploit...

Joomla Component com_icagenda Blind SQLi/Path Disclosure

Exploit for php platform in category web applications 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 x...