48 matches found
EUVD-2008-3770
Malware in sbrugna...
EUVD-2007-5956
Malware in sbrugna...
EUVD-2007-5957
Malware in sbrugna...
EUVD-2007-5958
Malware in sbrugna...
EUVD-2007-5955
Malware in sbrugna...
EUVD-2007-2846
Malware in sbrugna...
BtiTracker <= 1.4.1 (become admin) Remote SQL Injection Vulnerability
No description provided by source. BtiTracker =v1.4.1 Remote SQL Injection Exploit Discovered by: m@ge|ozz - [email protected] Vulnerabitity: Remote Sql Injection / Problem: Any user can be Administrator Website Vendor: http://www.btiteam.org Vulnerable Code accountchange.php: if isset$GETstyle...
BtiTracker 1.3.x - 1.4.x - Exploit
No description provided by source. !/usr/bin/env python xpl0it /\ \ /\ \ /\ \ //\ / \ ,\L\ /\ \ ,\ \ \ \ /' /\ \ /'\ /'/\ /\ /'/\ \ \ / /\ /\ \ \ /\ /\ /\ \L\ /\ //\ /\ \ \ \ \ / \ \ \ \ \ \ \ \ /\ \ \ \ \ \\ /\ \ \ \ \/ \ //////////// // // //// // \ //...
BtiTracker <= 1.4.7, xbtit <= 2.0.542 SQL Injection Vulnerability
No description provided by source. BtiTracker/xBtiTracker Remote SQL Injection Vulnerability Author: InATeam http://inattack.ru/ Affected versions: BtiTracker = 1.4.7, xBtiTracker = 2.0.542 Software site: http://www.btiteam.org/...
BtiTracker 1.3.x / 1.4.x SQL Injection
!/usr/bin/env python xpl0it /\ \ /\ \ /\ \ //\ / \ ,\L\ /\ \ ,\ \ \ \ /' /\ \ /'\ /'/\ /\ /'/\ \ \ / /\ /\ \ \ /\ /\ /\ \L\ /\ //\ /\ \ \ \ \ / \ \ \ \ \ \ \ \ /\ \ \ \ \ \\ /\ \ \ \ \/ \ //////////// // // //// // \ // www.insecurity.ro // BtiTracker...
BtiTracker 1.3.x 1.4.x - SQL Injection
BtiTracker 1.3.x 1.4.x - SQL Injection !/usr/bin/env python xpl0it /\ \ /\ \ /\ \ //\ / \ ,\L\ /\ \ ,\ \ \ \ /' /\ \ /'\ /'/\ /\ /'/\ \ \ / /\ /\ \ \ /\ /\ /\ \L\ /\ //\ /\ \ \ \ \ / \ \ \ \ \ \ \ \ /\ \ \ \ \ \\ /\ \ \ \ \/ \ //////////// // // //// // ...
BtiTracker 1.3.x < 1.4.x - SQL Injection
!/usr/bin/env python xpl0it /\ \ /\ \ /\ \ //\ / \ ,\L\ /\ \ ,\ \ \ \ /' /\ \ /'\ /'/\ /\ /'/\ \ \ / /\ /\ \ \ /\ /\ /\ \L\ /\ //\ /\ \ \ \ \ / \ \ \ \ \ \ \ \ /\ \ \ \ \ \\ /\ \ \ \ \/ \ //////////// // // //// // \ // www.insecurity.ro // BtiTracker...
CVE-2008-3784
SQL injection vulnerability in scrape.php in BtiTracker 1.4.7 and earlier and xBtiTracker 2.0.542 and earlier allows remote attackers to execute arbitrary SQL commands via the infohash parameter...
Sql injection
SQL injection vulnerability in scrape.php in BtiTracker 1.4.7 and earlier and xBtiTracker 2.0.542 and earlier allows remote attackers to execute arbitrary SQL commands via the infohash parameter...
CVE-2008-3784
SQL injection vulnerability in scrape.php in BtiTracker 1.4.7 and earlier and xBtiTracker 2.0.542 and earlier allows remote attackers to execute arbitrary SQL commands via the infohash parameter...
CVE-2008-3784
CVE-2008-3784 describes an SQL injection in scrape.php of BtiTracker 1.4.7 and earlier and xBtiTracker 2.0.542 and earlier. The vulnerability allows remote attackers to inject arbitrary SQL commands via the info_hash parameter, with potential impact on database integrity and confidentiality. Affe...
btitrackerxbtit-sql.txt
SQL Injection Vulnerability in BtiTracker and xbtit Vulnerable products BtiTracker =1.4.7 https://sourceforge.net/projects/btit-tracker/ xbtit =2.0.542 http://www.btiteam.org Description A vulnerability is caused due to the application does not perform sanitation checks for input passed to the...
BtiTracker <= 1.4.7, xbtit <= 2.0.542 SQL Injection Vulnerability
No description provided by source. BtiTracker/xBtiTracker Remote SQL Injection Vulnerability Author: InATeam http://inattack.ru/ Affected versions: BtiTracker = 1.4.7, xBtiTracker = 2.0.542 Software site: http://www.btiteam.org/...
BtiTracker/xbtit 'scrape.php' SQL注入漏洞
BUGTRAQ ID: 30811 CNCAN ID:CNCAN-2008082601 BtiTracker/xbtit是一款基于PHP的WEB应用程序。 BtiTracker/xbtit不正确处理用户提交的输入,远程攻击者可以利用漏洞进行SQL注入攻击,可能获得敏感信息或操作数据库。 问题由于'scrape.php'脚本对用户提交给'infohash'变量缺少过滤,构建恶意SQL查询作为参数数据,可更改原来的SQL逻辑,获得敏感信息或操作数据库。 BtiTeam xbtit 2.0.542 BtiTeam xbtit 2.0 BtiTeam BtiTracker 1.4.7 BtiTe...
BtiTracker 1.4.7 xbtit 2.0.542 - SQL Injection
BtiTracker 1.4.7 xbtit 2.0.542 - SQL Injection BtiTracker/xBtiTracker Remote SQL Injection Vulnerability Author: InATeam http://inattack.ru/ Affected versions: BtiTracker = 1.4.7, xBtiTracker = 2.0.542 Software site: http://www.btiteam.org/...