Creative Software UK Community Portal 1.1 - DiscView.php?forum_id SQL Injection

Creative Software UK Community Portal 1.1 - DiscView.php?forumid SQL Injection source: https://www.securityfocus.com/bid/17890/info Creative Community Portal is prone to multiple SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied...

Cute Guestbook Remote XSS Exploit

------------------------------------------------------------------ - Cute Guestbook Remote XSS Exploit - -= http://colander.altervista.org/advisory/CuteGuestbook.txt =- ------------------------------------------------------------------ -= Cute Guestbook =- Omnipresent May 04, 2006 Vunerabilitys:...

Pacheckbook 1.1 - index.php Multiple SQL Injections

Pacheckbook 1.1 - index.php Multiple SQL Injections source: https://www.securityfocus.com/bid/17821/info Pacheckbook is prone to multiple SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. A...

CyberBuild - browse0.htm?ProductIndex SQL Injection

CyberBuild - browse0.htm?ProductIndex SQL Injection source: https://www.securityfocus.com/bid/17829/info CyberBuild is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure in the applicatio...

CyberBuild - login.asp?sessionid Cross-Site Scripting

CyberBuild - login.asp?sessionid Cross-Site Scripting source: https://www.securityfocus.com/bid/17829/info CyberBuild is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure in the...

sBlog SQL Injection and Path Disclosure Vulnerability

Summary: Software: sBlog 0.7.2 Site: http://servous.se/ Description: sBlog is a simple and new PHP Blog. Issue: Conducting a security benchmark on this open source software we have found that most of the versions of this software is prone to SQL Injection attack through which an attacker can...

CyberBuild - 'browse0.htm?ProductIndex' SQL Injection

source: https://www.securityfocus.com/bid/17829/info CyberBuild is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. A...

CyberBuild - 'login.asp?sessionid' SQL Injection

source: https://www.securityfocus.com/bid/17829/info CyberBuild is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. A...

CyberBuild - 'browse0.htm?ProductIndex' Cross-Site Scripting

source: https://www.securityfocus.com/bid/17829/info CyberBuild is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. A...

CyberBuild - 'result.asp' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/17829/info CyberBuild is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. A...

Invision Power Board 2.1.5 - from_contact SQL Injection

Invision Power Board 2.1.5 - fromcontact SQL Injection !/usr/bin/perl IPB =2.1.4 exploit possibly 2.1.5 too Brought to you by the Ykstortion security team. The bug is in the pm system so you must have a registered user. The exploit will extract a password hash from the forum's data base of the...

Invision Power Board 2.1.5 - 'from_contact' SQL Injection

!/usr/bin/perl IPB =2.1.4 exploit possibly 2.1.5 too Brought to you by the Ykstortion security team. The bug is in the pm system so you must have a registered user. The exploit will extract a password hash from the forum's data base of the target user. You need to know the target user's member ID...

MaxTrade 1.0.1 - Multiple SQL Injections

source: https://www.securityfocus.com/bid/17765/info MaxTrade is prone to multiple SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. A successful exploit could allow an attacker to compromis...

Oracle 10g Release 2 - 'DBMS_EXPORT_EXTENSION' SQL

/ 0day, description is wrong. /str0ke / / Fucking NON-0 day$ exploit for Oracle 10g 10.2.0.2.0 Patch your database now! by N1V1Hd $3c41r3 / CREATE OR REPLACE PACKAGE MYBADPACKAGE AUTHID CURRENTUSER IS FUNCTION ODCIIndexGetMetadata oindexinfo SYS.odciindexinfo,P3 VARCHAR2,p4 VARCHAR2,env SYS.odcie...

PhotoKorn 1.531.54 - id SQL Injection

PhotoKorn 1.531.54 - id SQL Injection source: https://www.securityfocus.com/bid/17683/info Photokorn is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an...

PhotoKorn 1.531.54 - index.php Multiple SQL Injections

PhotoKorn 1.531.54 - index.php Multiple SQL Injections source: https://www.securityfocus.com/bid/17683/info Photokorn is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit cou...

Cartweaver 2.16.11 - Results.cfm SQL Injection

Cartweaver 2.16.11 - Results.cfm SQL Injection source: https://www.securityfocus.com/bid/17941/info Cartweaver ColdFusion is prone to SQL-injection vulnerabilities. These issues are due to the application's failure to properly sanitize user-supplied input before using it in SQL queries. Successfu...

PhotoKorn 1.531.54 - print.php?cat SQL Injection

PhotoKorn 1.531.54 - print.php?cat SQL Injection source: https://www.securityfocus.com/bid/17683/info Photokorn is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could all...

PhotoKorn 1.53/1.54 - 'id' SQL Injection

source: https://www.securityfocus.com/bid/17683/info Photokorn is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to compromise the application,...

Design/Logic Flaw

Unspecified vulnerability in Oracle Database Server 9.0.1.5 and 9.2.0.7 has unknown impact and attack vectors in the Oracle Enterprise Manager Intelligent Agent component, aka Vuln DB07...