Lucene search
K

48 matches found

CVE
CVE
added 2007/05/24 7:0 p.m.45 views

CVE-2007-2854

CVE-2007-2854 describes multiple SQL injection vulnerabilities in the PHP script account_change.php of BtiTracker 1.4.1 and earlier . The vulnerability is exploitable via the parameters style or langue , allowing remote attackers to execute arbitrary SQL commands. The vulnerability description in...

7.5CVSS8.5AI score0.01195EPSS
Exploits1References6Affected Software1
Cvelist
Cvelist
added 2007/05/24 7:0 p.m.15 views

CVE-2007-2854

Multiple SQL injection vulnerabilities in accountchange.php in BtiTracker 1.4.1 and earlier allow remote attackers to execute arbitrary SQL commands via the 1 style or 2 langue parameter...

8.5AI score0.01195EPSS
Exploits1References6
Packet Storm
Packet Storm
added 2007/05/23 12:0 a.m.22 views

btitracker-sql.txt

BtiTracker =v1.4.1 Remote SQL Injection Exploit Discovered by: m@ge|ozz - [email protected] Vulnerabitity: Remote Sql Injection / Problem: Any user can be Administrator Website Vendor: http://www.btiteam.org Vulnerable Code accountchange.php: if isset$GET"style" @mysqlquery"UPDATE users SET...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2007/05/23 12:0 a.m.149 views

BtiTracker <= 1.4.1 (become admin) Remote SQL Injection Vulnerability

No description provided by source. BtiTracker =v1.4.1 Remote SQL Injection Exploit Discovered by: m@ge|ozz - [email protected] Vulnerabitity: Remote Sql Injection / Problem: Any user can be Administrator Website Vendor: http://www.btiteam.org Vulnerable Code accountchange.php: if isset$GET"style"...

7.1AI score
Exploits0
0day.today
0day.today
added 2007/05/22 12:0 a.m.64 views

BtiTracker <= 1.4.1 (become admin) Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications ===================================================================== BtiTracker = 1.4.1 become admin Remote SQL Injection Vulnerability ===================================================================== BtiTracker =v1.4.1 Remote SQL...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2007/05/22 12:0 a.m.12 views

BtiTracker 1.4.1 - Become Admin SQL Injection

BtiTracker 1.4.1 - Become Admin SQL Injection BtiTracker =v1.4.1 Remote SQL Injection Exploit Discovered by: m@ge|ozz - [email protected] Vulnerabitity: Remote Sql Injection / Problem: Any user can be Administrator Website Vendor: http://www.btiteam.org Vulnerable Code accountchange.php: if...

0.8AI score
Exploits0
Exploit DB
Exploit DB
added 2007/05/22 12:0 a.m.25 views

BtiTracker 1.4.1 - Become Admin SQL Injection

BtiTracker =v1.4.1 Remote SQL Injection Exploit Discovered by: m@ge|ozz - [email protected] Vulnerabitity: Remote Sql Injection / Problem: Any user can be Administrator Website Vendor: http://www.btiteam.org Vulnerable Code accountchange.php: if isset$GET"style" @mysqlquery"UPDATE users SET...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2006/10/07 12:0 a.m.31 views

Vulnerability in Btitracker

Hello, I found a vulnerability in btitracker a tool for create a bittorrent tracker written in php…. This vulnerability can remove physically uploaded files .torrent video : http://aeroxteam.free.fr/btitracker.html exploitnot to diffuse : form...

0.2AI score
Exploits0
Rows per page
Query Builder