Pligg evb/check_url.php url Parameter SQL Injection

The remote host is running Pligg, an open source content management system. The installed version of Pligg fails to sanitize user-supplied input to the 'url' parameter of the 'evb/checkurl.php' script before using it to construct database queries. Provided PHP's 'magicquotesgpc' setting is...

Pligg 9.9.5b - Arbitrary File Upload / SQL Injection

!/usr/bin/perl =about Pligg 9.9.5 Beta Perl exploit AUTHOR discovered & written by Ams ax330d doggy gmail dot com VULN. DESCRIPTION: Vulnerability hides in 'evb/checkurl.php' unfiltered $GET'url' parameter. Actually, it has filtration. Filtration strips tags and converts html special chars , but ...

Pligg 9.9.5b (check_url.php url) Upload Shell/SQL Injection Exploit

Exploit for unknown platform in category web applications =================================================================== Pligg 9.9.5b checkurl.php url Upload Shell/SQL Injection Exploit =================================================================== !/usr/bin/perl =about Pligg 9.9.5 Beta...

Pligg 9.9.5b (check_url.php url) Upload Shell/SQL Injection Exploit

No description provided by source. !/usr/bin/perl =about Pligg 9.9.5 Beta Perl exploit AUTHOR discovered & written by Ams ax330d doggy gmail dot com VULN. DESCRIPTION: Vulnerability hides in 'evb/checkurl.php' unfiltered $GET'url' parameter. Actually, it has filtration. Filtration strips tags and...