10 matches found
SpringBlade Secure Mode Bypass Vulnerability
SpringBlade is a microservices architecture upgraded and optimized from a commercial-grade project. SpringBlade suffers from a security model bypass vulnerability that stems from exposing a signing key, which can be exploited by an attacker to conduct a SQL injection attack by forging a JWT,...
CVE-2021-36206 CEVAS
All versions of CEVAS prior to 1.01.46 do not sufficiently validate user-controllable input and could allow a user to bypass authentication and retrieve data with specially crafted SQL queries...
Add a link 4 - Security Bypass and SQL Injection Vulnerabilities
No description provided by source...
RTTucson Quotations Database Script - Authentication Bypass
RTTucson Quotations Database Script Auth Bypass SQL Injection Vulnerability By cr4wl3r http://bastardlabs.info Script: http://www.rttucson.com/files.html Bugs found /quotations/admin/include/login.php --------------------------- 36 if $POST'submit' 37 38 $Username = $POST'Username'; 39 $Password ...
EUVD-2017-0327
The JSON gem before 1.5.5, 1.6.x before 1.6.8, and 1.7.x before 1.7.7 for Ruby allows remote attackers to cause a denial of service resource consumption or bypass the mass assignment protection mechanism via a crafted JSON document that triggers the creation of arbitrary Ruby symbols or certain...
VietNext cms multiple defects and repair-vulnerability warning-the black bar safety net
Exploit Title:Multiple Vulnerabilities + Date: 2 0 1 1 + script:VietNext cms + Software: http://vietnextco.com & amp; http://vietnext.vn + Author : pentesters. ir + Website : WwW.PenTesters.IR + dorks :"Developed & Design By VietNext" and "Design by VietNext"...
EgyPlus 7ml 1.0.1 - Authentication Bypass
EgyPlus 7ml 1.0.1 - Authentication Bypass || || | || o,7 || . o7 || q||| o\, : / / . =By: Qabandi =Email: iqaahotmail.fr From Kuwait, PEACE... =Vuln: EgyPlus 7ml query"select name,pass from admin where name = '$username' and pass = '$password' "; $AdminInfo=$hazemali-numrows$sql; if$AdminInfo==1...
Rae Media Contact MS (Auth Bypass) SQL Injection Vulnerability
No description provided by source. +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ + + + Web Based Contact Management Auth Bypass SQL Injection Vulnerability + + + + Discovered by b3hz4d + + + + WwW.DeltaHacking.Net + + + + + + +...
Openfire Server <= 3.6.0a (Auth Bypass/SQL/XSS) Multiple Vulnerabil
Exploit for unknown platform in category remote exploits ======================================================================== Openfire Server = 3.6.0a Auth Bypass/SQL/XSS Multiple Vulnerabilities ======================================================================== Advisory: Openfire Serve...
phsBlog 0.2 - Bypass SQL Injection Filtering
phsBlog 0.2 - Bypass SQL Injection Filtering !/usr/bin/perl ---------------------------------------------------------------- Script : PhsBlog v0.2 Type : Bypass Sql injection Filtering Exploit Method : GET Risk : High ---------------------------------------------------------------- Discovered by ...