1084 matches found
CVE-2009-3499
SQL injection vulnerability in employee.aspx in BPowerHouse BPLawyerCaseDocuments 1.0 allows remote attackers to execute arbitrary SQL commands via the cat parameter...
CVE-2009-3349
SQL injection vulnerability in Datavore Gyro 5.0 allows remote attackers to execute arbitrary SQL commands via the cid parameter in a cat action to the home component...
Cross site scripting
Cross-site scripting XSS vulnerability in Datavore Gyro 5.0 allows remote attackers to inject arbitrary web script or HTML via the cid parameter in a cat action to the home component...
CVE-2009-3190
Multiple SQL injection vulnerabilities in PAD Site Scripts 3.6 allow remote attackers to execute arbitrary SQL commands via the 1 search parameter to list.php and 2 cat parameter to rss.php...
CVE-2009-3187
Cross-site scripting XSS vulnerability in gamelist.php in Stand Alone Arcade 1.1 allows remote attackers to inject arbitrary web script or HTML via the cat parameter...
Cross site scripting
Cross-site scripting XSS vulnerability in gamelist.php in Stand Alone Arcade 1.1 allows remote attackers to inject arbitrary web script or HTML via the cat parameter...
Sql injection
Multiple SQL injection vulnerabilities in PAD Site Scripts 3.6 allow remote attackers to execute arbitrary SQL commands via the 1 search parameter to list.php and 2 cat parameter to rss.php...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in PAD Site Scripts 3.6 allow remote attackers to inject arbitrary web script or HTML via the cat parameter to 1 rss.php and 2 opml.php...
CVE-2009-3190
Multiple SQL injection vulnerabilities in PAD Site Scripts 3.6 allow remote attackers to execute arbitrary SQL commands via the 1 search parameter to list.php and 2 cat parameter to rss.php...
Sql injection
SQL injection vulnerability in rss.php in Ultimate Regnow Affiliate URA 3.0 allows remote attackers to execute arbitrary SQL commands via the cat parameter...
CVE-2009-2780
Multiple cross-site scripting XSS vulnerabilities in 68 Classifieds 4.1 allow remote attackers to inject arbitrary web script or HTML via the 1 cat parameter to category.php, view parameter to 2 login.php and 3 viewlisting.php, page parameter to 4 searchresults.php and 5 toplistings.php, and 6...
CVE-2009-2790
SQL injection vulnerability in catproducts.php in SoftBiz Dating Script allows remote attackers to execute arbitrary SQL commands via the cid parameter. NOTE: this might overlap CVE-2006-3271.4...
Ordinary users by udev vulnerability to elevate to root permissions demo-vulnerability warning-the black bar safety net
Recently exposed by the udev permissions hint of vulnerability, as long as with normal user permissions, you can elevate to root privileges, the experiment a handful, really easy to upgrade. Put the following code saved as test. sh file !/ bin/sh Linux 2.6 bug found by Sebastian Krahmer lame splo...
GLinks 2.1 Blind SQL Injection
0000000000000000000000000000000000 000000000000000000000 00000000000000000000000000000000000 0000000000000000 00000000000000000000000000000000 + GLinks v2.1 Remote Blind SQL injection + Author : 599eme Man + Contact : [email protected] + Thanks : Moudi, Str0ke, Neocoderz, Sheiry, Shimik Root aka...
Escon SupportPortal Pro 3.0 (tid) Blind SQL Injection Vulnerability
Exploit for unknown platform in category web applications =================================================================== Escon SupportPortal Pro 3.0 tid Blind SQL Injection Vulnerability =================================================================== Autor : OzX Sitio :...
Sql injection
SQL injection vulnerability in directory.php in Scripts For Sites SFS EZ Pub Site allows remote attackers to execute arbitrary SQL commands via the cat parameter...
Sql injection
SQL injection vulnerability in viewfaqs.php in Scripts for Sites SFS EZ Auction allows remote attackers to execute arbitrary SQL commands via the cat parameter...
Sql injection
SQL injection vulnerability in detail.php in MountainGrafix easyLink 1.1.0 allows remote attackers to execute arbitrary SQL commands via the cat parameter in a show action...
FreeBSD/x86 - execve(/bin/cat & /etc/master.passwd) - 65 bytes
No description provided by source. ; sm4x 2008 ; /bin/cat /etc/master.passwd ; 65 bytes ; FreeBSD 7.0-RELEASE global start start: xor eax, eax ; --- setuid0 push eax push eax mov al, 0x17 int 0x80 ; --- setup /etc/master.passwd jmp short loadfile ok: pop esi ; setup /bin/cat push eax push...
Sql injection
Multiple SQL injection vulnerabilities in DomPHP 0.81 allow remote attackers to execute arbitrary SQL commands via the cat parameter to agenda/index.php, and unspecified other vectors...