14 matches found
EUVD-2008-4224
Malware in sbrugna...
EUVD-2005-1509
Malware in sbrugna...
CJ Ultra Plus 1.0.3/1.0.4 OUT.PHP SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/13533/info CJ Ultra Plus is prone to an SQL injection vulnerability. This issue affects the 'out.php' script and could permit remote attackers to pass malicious input to database queries, resulting in modification of quer...
CJ Ultra Plus <= 1.0.4 Cookie Remote SQL Injection Exploit
No description provided by source. !/usr/bin/perl CJ Ultra Plus = v1.0.4 Cookie SQL Injection found and coded by -SmoG- /\GermAn hAckZ0r contact: ICQ - 266836394 hints: - sometimes the parameter SID is different to the normal one... - i extract the hash from the html-code... but i was 2 lazy for...
CVE-2008-4241
SQL injection vulnerability in CJ Ultra Plus 1.0.4 and earlier allows remote attackers to execute arbitrary SQL commands via an SID cookie...
Sql injection
SQL injection vulnerability in CJ Ultra Plus 1.0.4 and earlier allows remote attackers to execute arbitrary SQL commands via an SID cookie...
CVE-2008-4241
SQL injection vulnerability in CJ Ultra Plus 1.0.4 and earlier allows remote attackers to execute arbitrary SQL commands via an SID cookie...
CVE-2008-4241
CVE-2008-4241 affects CJ Ultra Plus 1.0.4 and earlier. Affected component: the application's SID cookie handling enables SQL injection, allowing remote attackers to execute arbitrary SQL commands. Documented impact aligns with partial confidentiality, integrity, and availability exposure (CVSS v2...
CJ Ultra Plus 1.0.4 - Cookie SQL Injection
CJ Ultra Plus 1.0.4 - Cookie SQL Injection !/usr/bin/perl CJ Ultra Plus GretzZz 2: pronoobz.org - Wesker, China Sun and all other memberZz "SID='UNION SELECT b12 from settings/"; $ua = LWP::UserAgent-new; $ua-timeout10; $ua-envproxy; $ua-agent"Mozilla/5.0 Windows; U; Windows NT 5.1; nl; rv:1.8.1....
cjultraSQL.txt
ADVISORY Sql Injection in CJ Ultra Plus v1.0.3-1.0.4? "My God, it's full of stars" - c MwNN Vulnerable code is in out.php ... if isset$perm $query = "select a1, a2 from trade where a1 = '$perm'"; So... Exploit:...
CVE-2005-1506
CJ Ultra (CJUltra) Plus versions 1.0.3 and 1.0.4 are affected by a SQL injection in out.php that allows remote attackers to modify/ retrieve data via the perm parameter. The root cause is improper handling of user-supplied input in the SQL query constructed in out.php. The available sources do no...
CVE-2005-1506
SQL injection vulnerability in out.php in CJ Ultra CJUltra Plus 1.0.3 and 1.0.4 allows remote attackers to execute arbitrary SQL commands via the perm parameter...
Sql Injection in CJ Ultra Plus v1.0.3-1.0.4
ADVISORY Sql Injection in CJ Ultra Plus v1.0.3-1.0.4? "My God, it's full of stars" - c MwNN Vulnerable code is in out.php ---code begin-- ... if isset$perm $query = "select a1, a2 from trade where a1 = '$perm'"; -muhahaha $result = mysqlquery$query; if!$result errormessagesqlerror; ... ---code...
CJ Ultra Plus 1.0.3/1.0.4 - 'OUT.php' SQL Injection
source: https://www.securityfocus.com/bid/13533/info CJ Ultra Plus is prone to an SQL injection vulnerability. This issue affects the 'out.php' script and could permit remote attackers to pass malicious input to database queries, resulting in modification of query logic or other attacks...