CVE-2008-1909

SQL injection vulnerability in comment.php in PHP Knowledge Base PHPKB 1.5 and 2.0 allows remote attackers to execute arbitrary SQL commands via the ID parameter...

PHPKB 1.5 Knowledge Base (ID) SQL Injection Vulnerability

No description provided by source. PHPKB Knowledge Base Software comment.php Sql Injection Vulnerability ------------------------------------------------------------------------------------------------- Author : parad0x Home : www.inso.host.sk Script : PHPKB Knowledge Base Software Script Homepag...

PHPKB Knowledge Base Software 1.5 - ID SQL Injection

PHPKB Knowledge Base Software 1.5 - ID SQL Injection PHPKB Knowledge Base Software comment.php Sql Injection Vulnerability ------------------------------------------------------------------------------------------------- Author : parad0x Home : www.inso.host.sk Script : PHPKB Knowledge Base...

PHPKB 1.5 Knowledge Base (ID) SQL Injection Vulnerability

Exploit for unknown platform in category web applications ========================================================= PHPKB 1.5 Knowledge Base ID SQL Injection Vulnerability ========================================================= PHPKB Knowledge Base Software comment.php Sql Injection Vulnerabili...

phpkb-sql.txt

PHPKB Knowledge Base Software comment.php Sql Injection Vulnerability ------------------------------------------------------------------------------------------------- Author : parad0x Home : www.inso.host.sk Script : PHPKB Knowledge Base Software Script Homepage :...

PHPKB Knowledge Base Software 1.5 - 'ID' SQL Injection

PHPKB Knowledge Base Software comment.php Sql Injection Vulnerability ------------------------------------------------------------------------------------------------- Author : parad0x Home : www.inso.host.sk Script : PHPKB Knowledge Base Software Script Homepage :...

CVE-2002-2249

PHP remote file inclusion vulnerability in News Evolution 2.0 allows remote attackers to execute arbitrary PHP commands via the neurl parameter to 1 backend.php, 2 screen.php, or 3 admin/modules/comment.php...

Post REvolution 0.7.0 RC 2 - 'dir' Remote File Inclusion

Post Revolution Remote File Inclusion Affected Software .: Post Revolution 6.6 / 7.0 Release Candidate 2 Download..: http://www.fabio.com.ar/postrev/ Risk ..............: high Date .........: 25/3/2007 Found by ..........: InyeXion Contact ...........: InyeXionatgmail.com Web .............:...

aWebNews v 1.1=>RFI

To ConTacT mE @ www.Asb-May.net/bb ScRiPt:-http://scripts.ringsworld.com/news-publishing/awebnews.zip GrEaTz To:-ToOofa-HaCk.eGy All AsB-MaY DisCoverY ExPloIts GrOup Discovered By:- ThE dE@Th AsB-MaY DiScOvEr ExPlIoTs Gr0uP comment.php:- sendmsg:- include...

PHPKit Comment.PHP SQL注入漏洞

PHPKit是一款基于PHP的WEB应用程序。 PHPKit不正确过滤用户提交的输入，远程攻击者可以利用漏洞进行SQL注入攻击，获得敏感信息。 问题是'Comment.PHP'脚本对用户提交的'subid'参数缺少过滤，提交恶意脚本代码作为参数数据，可导致获得敏感信息。 PHPKIT 1.6.1 R2 目前没有解决方案提供： http://phpkit.de/include.php?path=start.php...

CVE-2007-0179

SQL injection vulnerability in comment.php in PHPKIT 1.6.1 R2 allows remote attackers to execute arbitrary SQL commands via the subid parameter...

Sql injection

SQL injection vulnerability in comment.php in PHPKIT 1.6.1 R2 allows remote attackers to execute arbitrary SQL commands via the subid parameter...

CVE-2007-0179

CVE-2007-0179 affects PHPKIT 1.6.1 R2 via an SQL injection in comment.php, exploitable through the subid parameter to execute arbitrary SQL commands remotely. The connected documents confirm the affected component and vulnerability type but do not provide explicit exploit steps, affected versions...

CVE-2007-0179

SQL injection vulnerability in comment.php in PHPKIT 1.6.1 R2 allows remote attackers to execute arbitrary SQL commands via the subid parameter...

PHPKit 1.6.1 - comment.php SQL Injection

PHPKit 1.6.1 - comment.php SQL Injection source: https://www.securityfocus.com/bid/21962/info PHPKIT is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to...

Serendipity <= 1.0.3 (comment.php) Local File Include Exploit

No description provided by source. ? print ' ::::::::: :::::::::: ::: ::: ::::::::::: ::: :+: :+: :+: :+: :+: :+: :+: +:+ +:+ +:+ +:+ +:+ +:+ +:+ ++ +:+ +++:++ ++ +:+ ++ ++ ++ ++ ++ ++ ++ ++ ++ + + + +++ + + ::::::::::: :::::::::: ::: :::: :::: :+: :+: :+: :+: +:+:+: :+:+:+ +:+ +:+ +:+ +:+ +:+...

[ECHO_ADV_49$2006]OpenDock Easy Doc <=1.4 (doc_directory) Multiple Remote File Inclusion Vulnerability

ECHOADV49$2006 ----------------------------------------------------------------------------------------------- ECHOADV49$2006OpenDock Easy Doc =1.4 docdirectory Multiple Remote File Inclusion Vulnerability...

CVE-2006-5064

Multiple cross-site scripting XSS vulnerabilities in BirdBlog 1.4 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 entryid parameter in comment.php, 2 page parameter in index.php, or the 3 uid parameter in user.php. NOTE: the provenance of this information is...

SmartSiteCMS 1.0 (root) Multiple Remote File Inclusion Vulnerabilities

Exploit for unknown platform in category web applications ====================================================================== SmartSiteCMS 1.0 root Multiple Remote File Inclusion Vulnerabilities ====================================================================== smartsite cms v1.0 Multiple...

SmartSiteCMS 1.0 (root) Multiple Remote File Inclusion Vulnerabilities

No description provided by source. smartsite cms v1.0 Multiple Remote File include ------------------------------------------------- Discovered By CrAshoVeRrIdE Arabian Security Team ------------------------------------------------- site of script:www.smartsitecms.net...