Lucene search
K

16 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2008-2666

Malware in sbrugna...

7.5CVSS6.4AI score0.01169EPSS
Exploits1References7
0day.today
0day.today
added 2016/11/18 12:0 a.m.31 views

DCFM Blog 0.9.7 Cross Site Scripting Vulnerability

DCFM Blog version 0.9.7 suffers from a cross site scripting vulnerability. DCFM Blog 0.9.7 XSS Attack =========================== Description ============ Open-source blog project. Free blog system for any website. Uses MySQL and PHP 5. Very easily customizable and incredibly flexible...

6.7AI score
Exploits0
Packet Storm
Packet Storm
added 2016/11/17 12:0 a.m.55 views

DCFM Blog 0.9.7 Blind SQL Injection

DCFM Blog Version 0.9.7 Blind SQL Injection Vulnerability time based-attack ================================================================================ Discovered by NA , NAattutanota.com ======================================== Description ============ Open-source blog project. Free blog...

0.4AI score
Exploits0
Packet Storm
Packet Storm
added 2016/11/17 12:0 a.m.50 views

DCFM Blog 0.9.7 Cross Site Scripting

DCFM Blog 0.9.7 XSS Attack =========================== Discovered by NA , NAattutanota.com ======================================== Description ============ Open-source blog project. Free blog system for any website. Uses MySQL and PHP 5. Very easily customizable and incredibly flexible...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2008/06/14 12:0 a.m.16 views

DCFM Blog 'comments.php' SQL注入漏洞

BUGTRAQ ID: 29627 DCFM Blog是一款基于PHP的WEB应用程序。 DCFM Blog不正确处理用户提交的输入,远程攻击者可以利用漏洞进行SQL注入攻击,可能获得敏感信息或操作数据库。 问题是'comments.php'脚本对用户提交给WEB参数缺少过滤,构建恶意SQL查询作为参数数据,可更改原来的SQL逻辑,获得敏感信息或操作数据库 DCFM Blog 0.9.4 目前没有解决方案提供: http://sourceforge.net/projects/dcfm-blog/ form...

6.9AI score
Exploits0
Prion
Prion
added 2008/06/12 2:32 a.m.11 views

Sql injection

SQL injection vulnerability in comments.php in DCFM Blog 0.9.4 allows remote attackers to execute arbitrary SQL commands via the id parameter...

7.5CVSS9.1AI score0.01169EPSS
Exploits1References6Affected Software1
NVD
NVD
added 2008/06/12 2:32 a.m.14 views

CVE-2008-2671

SQL injection vulnerability in comments.php in DCFM Blog 0.9.4 allows remote attackers to execute arbitrary SQL commands via the id parameter...

7.5CVSS8.4AI score0.01169EPSS
Exploits1References6
Cvelist
Cvelist
added 2008/06/12 1:30 a.m.18 views

CVE-2008-2671

SQL injection vulnerability in comments.php in DCFM Blog 0.9.4 allows remote attackers to execute arbitrary SQL commands via the id parameter...

8.4AI score0.01169EPSS
Exploits1References6
CVE
CVE
added 2008/06/12 1:30 a.m.36 views

CVE-2008-2671

The CVE-2008-2671 entry describes a SQL injection in DCFM Blog 0.9.4, affecting comments.php where an attacker can modify the id parameter to execute arbitrary SQL commands remotely. Affected software: DCFM Blog 0.9.4 (comments.php). Root cause: unsanitized/unchecked id parameter leading to SQL c...

7.5CVSS8.4AI score0.01169EPSS
Exploits1References6Affected Software1
Packet Storm
Packet Storm
added 2008/06/11 12:0 a.m.17 views

dcfm-sql.txt

/ | || | | | | | | | | /| | | | | || ||| ||||| || C. H. R. O. O. T. SECURITY GROUP - -- ----- --- -- -- ---- --- -- - http://www.chroot.org Hacks In Taiwan | || | | | | | | | Conference 2008 | | | | | | | | | || ||| || |||| http://www.hitcon.org Title =======:: DCFM Blog 0.9.4 comments Remote...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2008/06/11 12:0 a.m.16 views

DCFM Blog 0.9.4 (comments) Remote SQL Injection Vulnerability

No description provided by source. / | || | | | | | | | | /| | | | | || ||| ||||| || C. H. R. O. O. T. SECURITY GROUP - -- ----- --- -- -- ---- --- -- - http://www.chroot.org Hacks In Taiwan | || | | | | | | | Conference 2008 | |&nbsp...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2008/06/10 12:0 a.m.13 views

DCFM Blog 0.9.4 - SQL Injection

DCFM Blog 0.9.4 - SQL Injection / | || | | | | | | | | /| | | | | || ||| ||||| || C. H. R. O. O. T. SECURITY GROUP - -- ----- --- -- -- ---- --- -- - http://www.chroot.org Hacks In Taiwan | || | | | | | | | Conference 2008 | | | | | | | | | || ||| || |||| http://www.hitcon.org Title =======::...

0.2AI score
Exploits0
securityvulns
securityvulns
added 2008/06/10 12:0 a.m.46 views

[web-app] DCFM Blog 0.9.4 (comments) Remote SQL Injection Vulnerability

/ | || | | | | | | | | /| | | | | || ||| ||||| || C. H. R. O. O. T. SECURITY GROUP - -- ----- --- -- -- ---- --- -- - http://www.chroot.org Hacks In Taiwan | || | | | | | | | Conference 2008 | | | | | | | | | || ||| || |||| http://www.hitcon.org Title =======:: DCFM Blog 0.9.4 comments Remote SQL...

8.6AI score
Exploits0
0day.today
0day.today
added 2008/06/10 12:0 a.m.20 views

DCFM Blog 0.9.4 (comments) Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications ============================================================= DCFM Blog 0.9.4 comments Remote SQL Injection Vulnerability ============================================================= Title =======:: DCFM Blog 0.9.4 comments Remote SQL...

7.1AI score
Exploits0
securityvulns
securityvulns
added 2008/06/10 12:0 a.m.38 views

[web-app] DCFM Blog 0.9.4 (comments) Remote SQL Injection Vulnerability

/ | || | | | | | | | | /| | | | | || ||| ||||| || C. H. R. O. O. T. SECURITY GROUP - -- ----- --- -- -- ---- --- -- - http://www.chroot.org Hacks In Taiwan | || | | | | | | | Conference 2008 | | | | | | | | | || ||| || |||| http://www.hitcon.org Title =======:: DCFM Blog 0.9.4 comments Remote SQL...

8.6AI score
Exploits0
Exploit DB
Exploit DB
added 2008/06/10 12:0 a.m.27 views

DCFM Blog 0.9.4 - SQL Injection

/ | || | | | | | | | | /| | | | | || ||| ||||| || C. H. R. O. O. T. SECURITY GROUP - -- ----- --- -- -- ---- --- -- - http://www.chroot.org Hacks In Taiwan | || | | | | | | | Conference 2008 | | | | | | | | | || ||| || |||| http://www.hitcon.org Title =======:: DCFM Blog 0.9.4 comments Remote...

7.4AI score
Exploits0
Rows per page
Query Builder