CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4 matches found

seebug.org•added 2014/07/01 12:0 a.m.•9 views

Tribisur <= 2.0 - Remote SQL Injection Exploit

No description provided by source. !/usr/bin/php -q ?php echo Tribisur = 2.0 Remote SQL Injection Exploit\r\n; echo Coded by x0kster -x0ksterATgmailDOTcom - \r\n; / Script Download : http://www.comscripts.com/scripts/php.tribisur-20.1211.html Bug 1 in modules/forum/liste.php : First, this bugged...

7.1AI score

Exploits0

seebug.org•added 2008/01/09 12:0 a.m.•14 views

Tribisur 'forum.php'/'cat_main.php' SQL注入漏洞

BUGTRAQ ID: 27149 CNCAN ID:CNCAN-2008010812 Tribisur是一款基于PHP的WEB应用程序。 Tribisur不正确过滤用户提交的URI数据，远程攻击者可以利用漏洞进行SQL注入攻击，可获得敏感信息或操作数据库。问题是由于'forum.php'和'catmain.php'脚本对用户提交的WEB参数处理缺少充分过滤，提交恶意SQL查询作为参数数据，可更改原来的SQL逻辑，获得敏感信息或操作数据库。 Thomas PEREZ Tribisur 2.0 厂商解决方案 --------- 目前没有解决方案提供：...

6.9AI score

Exploits0

Prion•added 2008/01/08 7:46 p.m.•11 views

Sql injection

Multiple SQL injection vulnerabilities in Tribisur 2.1 and earlier allow remote attackers to execute arbitrary SQL commands via the 1 id parameter to catmain.php and the 2 cat parameter to forum.php in a liste action...

7.5CVSS9.2AI score0.00462EPSS

Exploits0References4Affected Software1