MyTickets 1.x < 2.0.8 - Blind SQL Injection

count'languages',"id='".$cookies'language'."'" == 0 48. $language = $setting'defaultlanguage'; 49. 50. $language = $cookies'language'; 52. 52. 53. $languagearray = $db-fetch$db-query"SELECT FROM languages WHERE id='".$language."'"; / print...

Simple Document Management System 1.1.5 / 2.0 SQL Injection

Simple Document Management System 1.1.5 / 2.0 Multiple Vulnerabilities bug found by Jose Luis Gongora Fernandez a.k.a JosS twitter: @JossGongora contact: sys-projectathotmaildotcom website: http://www.hack0wn.com/ download: http://mirror.us.cc.com.au/pub/cafuego/sdms ----------- version 2.0...

XAMPP Windows 1.7.7 multiple XSS/Blind SQL Injection Vulnerabilities

No description provided by source. $------------------------------------------------------------------------------------------------------------ $ XAMPP Windows 1.7.7 multiple XSS/Blind SQL Injection Vulnerabilities $ Author : Sangteamtham $ Home : Hcegroup.net $ Download...

Blind SQL Injection in Webmatic

High-Tech Bridge SA Security Research Lab has discovered vulnerability in Webmatic, which can be exploited to perform Blind SQL Injection attacks. 1 Blind SQL Injection in Webmatic: CVE-2012-3350 1.1 Input passed via the "Referer:" field of the HTTP header to index.php is not properly sanitised...

Joomla! Component Joomsport - SQL Injection Arbitrary File Upload

Joomla! Component Joomsport - SQL Injection Arbitrary File Upload source: https://www.securityfocus.com/bid/53944/info The Joomsport component for Joomla! is prone to an SQL-injection vulnerability and an arbitrary file-upload vulnerability because it fails to sanitize user-supplied data...

Joomla Joomsport SQL Injection / Shell Upload

1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : 1337day.com 0 1 + Support e-mail :...

Joomla! Component Joomsport - SQL Injection / Arbitrary File Upload

source: https://www.securityfocus.com/bid/53944/info The Joomsport component for Joomla! is prone to an SQL-injection vulnerability and an arbitrary file-upload vulnerability because it fails to sanitize user-supplied data. Exploiting these issues could allow an attacker to compromise the...

Webspell FIRSTBORN Movie-Addon - Blind SQL Injection

Webspell FIRSTBORN Movie-Addon - Blind SQL Injection ======================================================================================== | Title : Webspell FIRSTBORN Movie-Addon Blind SQL Injection Vulnerability | Author : Easy Laster | Script : Webspell FIRSTBORN Movie-Addon | Site :...

Webspell FIRSTBORN Movie-Addon Blind SQL Injection Vulnerability

Exploit for php platform in category web applications ======================================================================================== | Title : Webspell FIRSTBORN Movie-Addon Blind SQL Injection Vulnerability | Author : Easy Laster | Script : Webspell FIRSTBORN Movie-Addon | Site :...

Webspell FIRSTBORN Movie-Addon Blind SQL Injection

======================================================================================== | Title : Webspell FIRSTBORN Movie-Addon Blind SQL Injection Vulnerability | Author : Easy Laster | Script : Webspell FIRSTBORN Movie-Addon | Site : www.firstborn.de | Price : free | Exploitation : Remote Bli...

Webspell FIRSTBORN Movie-Addon - Blind SQL Injection

======================================================================================== | Title : Webspell FIRSTBORN Movie-Addon Blind SQL Injection Vulnerability | Author : Easy Laster | Script : Webspell FIRSTBORN Movie-Addon | Site : www.firstborn.de | Price : free | Exploitation : Remote Bli...

WordPress Google Maps via Store Locator Plugin 2.7.1 - 3.0.1 - Multiple Vulnerabilities

WordPress Google Maps via Store Locator plugin is prone to an information disclosure and blind SQL injection vulnerabilities. Solution Update the plugin...

WordPress Plugin Google Maps via Store Locator 2.7.1 3.0.1 - Multiple Vulnerabilities

WordPress Plugin Google Maps via Store Locator 2.7.1 3.0.1 - Multiple Vulnerabilities Description : Wordpress Plugins - Google Maps via Store Locator Plus Multiple Vulnerability Version : 2.7.1 - 3.0.1 Link : http://wordpress.org/extend/plugins/store-locator-le/ Plugins :...

WordPress Plugin Google Maps via Store Locator 2.7.1 < 3.0.1 - Multiple Vulnerabilities

Description : Wordpress Plugins - Google Maps via Store Locator Plus Multiple Vulnerability Version : 2.7.1 - 3.0.1 Link : http://wordpress.org/extend/plugins/store-locator-le/ Plugins : http://downloads.wordpress.org/plugin/store-locator-le.3.0.1.zip Date : 26-05-2012 Google Dork :...

Zoph 0.9pre2 CSRF / File Disclosure / SQL Injection

1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : 1337day.com 0 1 + Support e-mail :...

DDIVRT-2012-44 Epicor Returns Management SOAP-Based Blind SQL Injection

Title ----- DDIVRT-2012-44 Epicor Returns Management SOAP-Based Blind SQL Injection Severity -------- High Date Discovered --------------- April 12, 2012 Discovered By ------------- Digital Defense, Inc. Vulnerability Research Team Credit: Chris Graham and r@b13$ Vulnerability Description...

Topics Viewer 2.3 Local File Inclusion / SQL Injection

Exploit Title: Topics viewer v 2.3 Multiple Vulnerabilities Software Link: http://nilehoster.com/default/topicsviewer Author: n4ss1m Date: 19-05-2012 Tested on: win/linux Home : www.Sec4ever.com Local File Inclusion footer.php "; @include "themes/$sitetheme/templates/footerhead.html"; "; ...etc...

Jaow <= 2.4.5 blind and fix-vulnerability warning-the black bar safety net

Title: Jaow = 2.4.5 Blind Sql Injection Download address: http://www.jaow.net/telechargements/JaowV2.4.5.zip Affected version: 2.4.5 Test platform: Debian GNU/Linux Author: kallimero Description Jaow is a CMS that can manage sites of small sizes, thanks to its simple, commented code you can easil...

Jaow 2.4.5 Blind SQL Injection

Exploit Title: Jaow = 2.4.5 Blind Sql Injection Google Dork: intext:"propuls� par jaow 2.4.5" Date: 23/05/2012 Software Link: http://www.jaow.net/telechargements/JaowV2.4.5.zip Version: 2.4.5 Tested on: Debian GNU/Linux Author: kallimero = Introduction = Jaow is a CMS that can manage sites of sma...

Jaow 2.4.5 - Blind SQL Injection

Jaow 2.4.5 - Blind SQL Injection Exploit Title: Jaow = 2.4.5 Blind Sql Injection Google Dork: intext:"propuls� par jaow 2.4.5" Date: 23/05/2012 Software Link: http://www.jaow.net/telechargements/JaowV2.4.5.zip Version: 2.4.5 Tested on: Debian GNU/Linux Author: kallimero = Introduction = Jaow is a...