5 matches found
CVE-2014-5081
sphider prior to 1.3.6, sphider-pro prior to 3.2, and sphider-plus prior to 3.2 allow authentication bypass...
CVE-2014-5081
CVE-2014-5081 affects Sphider before 1.3.6, Sphider Pro before 3.2, and Sphider Plus before 3.2. The authenticated bypass arises from an insecure login flow in auth.php where credentials could be accepted without proper validation; the fix implemented was to exit() after successful/failed login t...
Sphider Search Engine - Multiple Vulnerabilities
No description provided by source. Exploit Title: Sphider Search Engine - Multiple Vulnerabilities Google Dork: ext:php intext:sphider inurl:search.php Date: 6/20/2014 Exploit Author: Shayan Sadigh twitter.com/r1pplex | [email protected] Vendor Homepage: http://www.sphider.eu/ Version:...
Sphider Search Engine Command Execution / SQL Injection
Exploit Title: Sphider Search Engine - Multiple Vulnerabilities Google Dork: ext:php intext:sphider inurl:search.php Date: 6/20/2014 Exploit Author: Shayan Sadigh twitter.com/r1pplex | Vendor Homepage: http://www.sphider.eu/ Version: Sphider 1.3.6 | Sphider Pro/Plus as well Tested on: Linux &...
Sphider Search Engine - Multiple Vulnerabilities
Sphider Search Engine - Multiple Vulnerabilities Exploit Title: Sphider Search Engine - Multiple Vulnerabilities Google Dork: ext:php intext:sphider inurl:search.php Date: 6/20/2014 Exploit Author: Shayan Sadigh twitter.com/r1pplex | Vendor Homepage: http://www.sphider.eu/ Version: Sphider 1.3.6 ...