EUVD-2009-2548

Malware in sbrugna...

EUVD-2006-4192

Malware in sbrugna...

EUVD-2009-2547

Malware in sbrugna...

PHPJabbers STIVA Blog Script 4.1 Cross Site Scripting

┌┌───────────────────────────────────────────────────────────────────────────────────────┐ ││ C r a C k E r ┌┘ ┌┘ T H E C R A C K O F E T E R N A L M I G H T ││ └───────────────────────────────────────────────────────────────────────────────────────┘┘ ┌──── From The Ashes and Dust Rises An...

Mini Blog 1.1 - Authentication Bypass Vulnerability

Exploit for php platform in category web applications Exploit Title: IC-Mini Blog Script - Authentication Bypass Google Dork: N/A Date: 20.01.2017 Vendor Homepage: http://www.icloudcenter.com/ Software Buy: http://www.icloudcenter.com/miniblog.htm Demo: http://www.icloudcenter.net/demos/miniblog/...

Mini Blog 1.1 - Authentication Bypass

Exploit Title: IC-Mini Blog Script - Authentication Bypass Google Dork: N/A Date: 20.01.2017 Vendor Homepage: http://www.icloudcenter.com/ Software Buy: http://www.icloudcenter.com/miniblog.htm Demo: http://www.icloudcenter.net/demos/miniblog/ Version: 1.1 Tested on: Win7 x64 Exploit Author: Ihsa...

Micro Blog Script - SQL Injection

Micro Blog Script - SQL Injection Vulnerability: SQL Injection + Authentication Bypass Date: 18.01.2017 Vendor Homepage: http://www.scriptgiant.com/ Tested on: http://www.microblogscript.scriptgiant.in Script Name: Micro Blog Script Author: Ihsan Sencan Author Web: http://ihsan.net Mail :...

Micro Blog Script - SQL Injection

Vulnerability: SQL Injection + Authentication Bypass Date: 18.01.2017 Vendor Homepage: http://www.scriptgiant.com/ Tested on: http://www.microblogscript.scriptgiant.in Script Name: Micro Blog Script Author: Ihsan Sencan Author Web: http://ihsan.net Mail : ihsanbeygirihsannoktanet Authentication...

Spidey Blog Script <= 1.5 (tr) Remote SQL Injection Exploit

No description provided by source. !usr/bin/perl Author : gega Google : Spidey Blog Script c v1.5 SpideyBlog 1.5 Sql Injection Exploit Author Mail : gega.tratgmaildotcom Powered by e-hack.org Vulnerability by Asianeagle. Vulnerability Link : http://milw0rm.com/exploits/2186 use LWP::Simple; print...

Super Simple Blog Script 2.5.4 - Local File Inclusion Vulnerability

No description provided by source. ----------exploit Debut Local File Inclusion Vulnerability ----------Script Info Moi : JIKO Site : No-exploit.Com Email : mm : Moghla9 Ferme Closed ----------Script Info Site:http : http://www.supersimple.org/ Download :...

JPM Article Blog Script 6 - tid Cross-Site Scripting

JPM Article Blog Script 6 - tid Cross-Site Scripting source: https://www.securityfocus.com/bid/55112/info JPM Article Blog Script 6 is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary...

JPM Article Blog Script 6 - &#039;tid&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/55112/info JPM Article Blog Script 6 is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in...

JPM Article Blog Script 6 Cross Site Scripting

Application Name : JPM Article Blog Script vulnerable Type : XSS Vuln. Bug Fix Advice : Fixable characters author : Mr.0c3aN Demo : color=0066cchttp://www.jpmalloy.com/forum/index.php?tid=4 ’alertMr.0c3aNocean Application Home Page : color=0066cchttp://www.jpmalloy.com ’"alert"Mr.0c3aN"ocean Emai...

Ignition 1.3 - Remote Code Execution

?php / Ignition 1.3 Remote Code Execution Exploit by cOndemned download: http://launchpad.net/ignition/trunk/1.3/+download/ignition-1.3.tar.gz source of i-options.php 1. ?php 2. sessionstart; 3. if $POST'submit' 4. if $FH = @fopen'data/settings.php', 'w' 5. @fwrite$FH, '?php $pass =...

Ignition 1.3 Code Execution

?php / Ignition 1.3 Remote Code Execution Exploit by cOndemned download: http://launchpad.net/ignition/trunk/1.3/+download/ignition-1.3.tar.gz source of i-options.php 1. ?php 2. sessionstart; 3. if $POST'submit' 4. if $FH = @fopen'data/settings.php', 'w' 5. @fwrite$FH, '?php $pass =...

Super Simple Blog Script entry Parameter SQL Injection

The remote Super Simple Blog Script install hosted on the remote web server is affected by a SQL injection vulnerability because its 'comments.php' script does not properly sanitize input to the 'entry' parameter before using it a database query. Regardless of PHP's 'magicquotesgpc' setting, an...

Super Simple Blog Script Detection

The remote host is running Super Simple Blog Script, a web-based blogging application written in PHP. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include"compat.inc"; if description scriptid50047; scriptversion"1.9";...

CVE-2009-2553

Multiple SQL injection vulnerabilities in comments.php in Super Simple Blog Script 2.5.4, when magicquotesgpc is disabled, allow remote attackers to execute arbitrary SQL commands via the entry parameter...

Directory traversal

Multiple directory traversal vulnerabilities in comments.php in Super Simple Blog Script 2.5.4 allow remote attackers to overwrite, include, and execute arbitrary local files via the entry parameter...

CVE-2009-2553

Summary (CVE-2009-2553) : Multiple SQL injection vulnerabilities in comments.php of Super Simple Blog Script 2.5.4. When magic_quotes_gpc is disabled, an unauthenticated remote attacker can supply input via the entry parameter to manipulate database queries. Public references (NVD) describe arbit...