20 matches found
EUVD-2008-5104
Malware in sbrugna...
EUVD-2008-5102
Malware in sbrugna...
CCLeague Pro <= 1.2 Insecure Cookie Authentication Vulnerability
No description provided by source. -+================================================================================+- -+ CCLeague Pro = 1.2 Insecure Cookie Authentication Vulnerability +- -+================================================================================+- Discovered By: t0pP8uZ...
CVE-2008-5125
admin.php in CCleague Pro 1.2 allows remote attackers to bypass authentication by setting the type cookie value to admin...
Sql injection
SQL injection vulnerability in admin.php in CCleague Pro 1.2 allows remote attackers to execute arbitrary SQL commands via the u parameter...
Authentication flaw
admin.php in CCleague Pro 1.2 allows remote attackers to bypass authentication by setting the type cookie value to admin...
CVE-2008-5123
SQL injection vulnerability in admin.php in CCleague Pro 1.2 allows remote attackers to execute arbitrary SQL commands via the u parameter...
CVE-2008-5125
admin.php in CCleague Pro 1.2 allows remote attackers to bypass authentication by setting the type cookie value to admin...
CVE-2008-5123
SQL injection vulnerability in admin.php in CCleague Pro 1.2 allows remote attackers to execute arbitrary SQL commands via the u parameter...
CVE-2008-5125
CCleague Pro 1.2 is affected; admin.php allows remote authentication bypass by setting the type cookie value to admin. Root cause: insufficient validation of the type cookie enabling access to privileged state. Impact per sources is partial confidentiality, integrity, and availability concerns du...
CVE-2008-5123
CVE-2008-5123 affects CCleague Pro 1.2. The vulnerability is a SQL injection in admin.php where the u parameter allows remote attackers to execute arbitrary SQL commands. Documented impact indicates partial confidentiality, integrity, and availability. No explicit patch/version remediation is pro...
ccleaguepro-auth.txt
-+================================================================================+- -+ CCLeague Pro = 1.2 Insecure Cookie Authentication Vulnerability +- -+================================================================================+- Discovered By: t0pP8uZz Discovered On: 19 JUNE 2008 Scrip...
CCLeague Pro <= 1.2 Insecure Cookie Authentication Vulnerability
No description provided by source. -+================================================================================+- -+ CCLeague Pro = 1.2 Insecure Cookie Authentication Vulnerability +- -+================================================================================+- Discovered By: t0pP8uZ...
CCLeague Pro 1.2 - Insecure Cookie Authentication
CCLeague Pro 1.2 - Insecure Cookie Authentication -+================================================================================+- -+ CCLeague Pro = 1.2 Insecure Cookie Authentication Vulnerability +- -+================================================================================+-...
CCLeague Pro 1.2 - Insecure Cookie Authentication
-+================================================================================+- -+ CCLeague Pro = 1.2 Insecure Cookie Authentication Vulnerability +- -+================================================================================+- Discovered By: t0pP8uZz Discovered On: 19 JUNE 2008 Scrip...
CVE-2006-4721
Directory traversal vulnerability in admin.php in CCleague Pro Sports CMS 1.0.1 RC1 allows remote attackers to read and execute arbitrary local files via a .. dot dot sequence and trailing null %00 byte in the language Cookie parameter, as demonstrated by executing PHP code via a log file...
CVE-2006-4721
CVE-2006-4721 is a directory traversal vulnerability in CCleague Pro Sports CMS 1.0.1 RC1. The issue occurs in admin.php where an attacker can use a .. sequence and a trailing null byte (%00) in the language Cookie parameter to read and execute arbitrary local files, demonstrated by executing PHP...
EUVD-2006-4708
Directory traversal vulnerability in admin.php in CCleague Pro Sports CMS 1.0.1 RC1 allows remote attackers to read and execute arbitrary local files via a .. dot dot sequence and trailing null %00 byte in the language Cookie parameter, as demonstrated by executing PHP code via a log file...
CCleague Pro 1.0.1RC1 - 'cookie' Remote Code Execution
!/usr/bin/php -q -d shortopentag=on ? $devilteam = " ::::::::: :::::::::: ::: ::: ::::::::::: ::: :+: :+: :+: :+: :+: :+: :+: +:+ +:+ +:+ +:+ +:+ +:+ +:+ ++ +:+ +++:++ ++ +:+ ++ ++ ++ ++ ++ ++ ++ ++ ++ + + + +++ + + ::::::::::: :::::::::: ::: :::: :::: :+: :+: :+: :+: +:+:+: :+:+:+ +:+ +:+ +:+ +:...
CCleague Pro <= 1.0.1RC1 (Cookie) Remote Code Execution Exploit
Exploit for unknown platform in category web applications =============================================================== CCleague Pro = 1.0.1RC1 Cookie Remote Code Execution Exploit =============================================================== !/usr/bin/php -q -d shortopentag=on ? $devilteam =...