21 matches found
EUVD-2009-1345
Malware in sbrugna...
chCounter <= 3.1.3 - SQL Injection Vulnerability
No description provided by source. !/usr/bin/python Exploit Title: chCounter = 3.1.3 SQLInjection Date: 2010/11/18 Author: Matias [email protected]. Software Link: http://chcounter.org/chCounter3/getfile.php?id=5 Version: 3.1.3 Tested on: Ubuntu Server 10.04 with apache...
chCounter 3.1.3 SQL Injection
!/usr/bin/python Exploit Title: chCounter = 3.1.3 SQLInjection Date: 2010/11/18 Author: Matias [email protected]. Software Link: http://chcounter.org/chCounter3/getfile.php?id=5 Version: 3.1.3 Tested on: Ubuntu Server 10.04 with apache Requirements: - Downloads must be...
chCounter 3.1.3 - SQL Injection
!/usr/bin/python Exploit Title: chCounter = 3.1.3 SQLInjection Date: 2010/11/18 Author: Matias [email protected]. Software Link: http://chcounter.org/chCounter3/getfile.php?id=5 Version: 3.1.3 Tested on: Ubuntu Server 10.04 with apache Requirements: - Downloads must be...
chCounter 3.1.3 - SQL Injection
chCounter 3.1.3 - SQL Injection !/usr/bin/python Exploit Title: chCounter = 3.1.3 SQLInjection Date: 2010/11/18 Author: Matias [email protected]. Software Link: http://chcounter.org/chCounter3/getfile.php?id=5 Version: 3.1.3 Tested on: Ubuntu Server 10.04 with apache...
Sql injection
SQL injection vulnerability in administration/index.php in chCounter 3.1.3 allows remote attackers to execute arbitrary SQL commands via the loginname parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
CVE-2009-1362
SQL injection vulnerability in administration/index.php in chCounter 3.1.3 allows remote attackers to execute arbitrary SQL commands via the loginname parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
CVE-2009-1362
CVE-2009-1362 affects chCounter 3.1.3 with an SQL injection in administration/index.php via the login_name parameter. The vulnerability allows remote attackers to execute arbitrary SQL commands. Severity from NVD is CVSS v2 base score 6.8 (Medium), vector AV:N/AC:M/Au:N/C:P/I:P/A:P, with network ...
Sql injection
Multiple SQL injection vulnerabilities in stats/index.php in chCounter 3.1.3 allow remote attackers to execute arbitrary SQL commands via 1 the loginname parameter aka the username field or 2 the loginpw parameter aka the password field...
CVE-2009-1347
Multiple SQL injection vulnerabilities in stats/index.php in chCounter 3.1.3 allow remote attackers to execute arbitrary SQL commands via 1 the loginname parameter aka the username field or 2 the loginpw parameter aka the password field...
CVE-2009-1347
Multiple SQL injection vulnerabilities in stats/index.php in chCounter 3.1.3 allow remote attackers to execute arbitrary SQL commands via 1 the loginname parameter aka the username field or 2 the loginpw parameter aka the password field...
CVE-2009-1347
The CVE-2009-1347 entry describes multiple SQL injection vulnerabilities in stats/index.php of chCounter 3.1.3, allowing remote attackers to execute arbitrary SQL commands through the login_name (username) or login_pw (password) parameters. This affects the application’s authentication/input hand...
chCounter 3.1.3 (Login Bypass) SQL Injection Vulnerability
No description provided by source. chCounter 3.1.3 Login Bypass ======================================================================================================================= Critical Level : Dangerous Vendor site : http://chcounter.org/ Download :...
chCounter 3.1.3 (Login Bypass) SQL Injection Vulnerability
Exploit for unknown platform in category web applications ========================================================== chCounter 3.1.3 Login Bypass SQL Injection Vulnerability ========================================================== chCounter 3.1.3 Login Bypass...
chCounter 3.1.3 SQL Injection
chCounter 3.1.3 Login Bypass ======================================================================================================================= Critical Level : Dangerous Vendor site : http://chcounter.org/ Download : http://chcounter.org/chCounter3/getfile.php?id=5 dorks: "chCounter 3.1.3"...
chCounter 3.1.3 - Authentication Bypass
chCounter 3.1.3 - Authentication Bypass chCounter 3.1.3 Login Bypass ======================================================================================================================= Critical Level : Dangerous Vendor site : http://chcounter.org/ Download :...
chCounter 3.1.3 - Authentication Bypass
chCounter 3.1.3 Login Bypass ======================================================================================================================= Critical Level : Dangerous Vendor site : http://chcounter.org/ Download : http://chcounter.org/chCounter3/getfile.php?id=5 dorks: "chCounter 3.1.3"...
Cross site scripting
Cross-site scripting XSS vulnerability in chcounter 3.1.3 allows remote attackers to inject arbitrary web script or HTML via the loginname parameter to /stats/...
CVE-2007-1871
CVE-2007-1871 affects chcounter 3.1.3. The vulnerability is a Cross-site Scripting (XSS) flaw in the login_name parameter to /stats/, allowing injection of arbitrary web script/HTML. Root cause: input not properly sanitized before rendering in the page. Impact: remote attackers could execute scri...
CVE-2007-1871.txt
Cross site scripting in chcounter 3.1.3 security advisory References: http://chcounter.org/ http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1871 Description: Cross site scripting describes attacks that allow to insert malicious html or javascript code via get or post forms. This can be use...