10 matches found
CVE-2022-23173
this vulnerability affect user that even not allowed to access via the web interface. First of all, the attacker needs to access the "Login menu - demo site" then he can see in this menu all the functionality of the application. If the attacker will try to click on one of the links, he will get a...
CVE-2022-23173
this vulnerability affect user that even not allowed to access via the web interface. First of all, the attacker needs to access the "Login menu - demo site" then he can see in this menu all the functionality of the application. If the attacker will try to click on one of the links, he will get a...
通达oa2013又一奇葩注入DBA
简要描述: 无语了。。。 详细说明: 官网demo登录试用: http://www.day900.com/ 发现这个: http://www.day900.com/general/crm/apps/crm/include/search.php?ENTITY=crmmarketing&PAGESIZE=10&CURPAGE=&ORDERFIELD=&ORDERTYPE=&USERVIEW=1706 payload:ENTITY=crmmarketing' 返回这个: 请联系管理员 错误1064: You have an error in your SQL syntax; check the...
Textpattern 4.3.0 Cross Site Request Forgery
Exploit Title: Textpattern 4.3.0 CMS XSRF Vulnerability Change Admin's Password + Author : ^Xecuti0n3r + E-mail : xecuti0n3ryahoo.com + Category : Web Apps XSRF + Demo Link : http://www.cmsagora.com/demo.php?id=94&type=2 + Demo...
Active Test 2.1 (Auth Bypass) Remote SQL Injection Vulnerability
No description provided by source. ----------------------------بسم الله الرحمن الرحيم------------------------------ Tybe:Auth Bypass Remote SQL Injection Vulnerability Vendor: www.activewebsoftwares.com Software: Active Test v 2.1 author: я3d D3v!L Date: 28.11.2008 Home: www.ahacker.biz contact:...
Bankoi Webhost Panel 1.20 - Authentication Bypass
Bankoi Webhost Panel 1.20 Auth Bypass ---------------------------------------------------------- author: R3d-D3v!L Date: 15.11.2008 Home: www.ahacker.net contact: N/A ----------------------------------------------------------- Exploit: username: r0' or ' 1=1-- password: r0' or ' 1=1-- admin login...
DELTAScripts PHP Shop 1.0 - Authentication Bypass
deltascripts phpShop Remote Auth Bypass Vulnerability ---------------------------------------------------------- Discovered By: ZoRLu Date: 06.11.2008 Home: www.z0rlu.blogspot.com contact: [email protected] N0T: YALNIZLIK, YiTiRDi ANLAMINI YALNIZLIGIMDA : dork: "Powered by PHP Shop from...
Joovili 3.1.4 Insecure Cookie Handling Vulnerability
No description provided by source. Joovili Script Insecure Cookie Handling Vulnerability version: 3.1.4 ---------------------------------------------------------- Discovered By: ZoRLu Date: 02.11.2008 Home: www.z0rlu.blogspot.com contact: [email protected] N0T: YALNIZLIK, YiTiRDi ANLAMINI...
Article Publisher PRO 1.5 Insecure Cookie Handling Vulnerability
No description provided by source. Article Publisher PRO Insecure Cookie Handling Vulnerability version: 1.5 ---------------------------------------------------------- Discovered By: ZoRLu Date: 01.11.2008 Home: www.z0rlu.blogspot.com contact: [email protected] N0T: YALNIZLIK, YiTiRDi ANLAMINI...
Joovili 3.1.4 - Insecure Cookie Handling
Joovili 3.1.4 - Insecure Cookie Handling Joovili Script Insecure Cookie Handling Vulnerability version: 3.1.4 ---------------------------------------------------------- Discovered By: ZoRLu Date: 02.11.2008 Home: www.z0rlu.blogspot.com contact: [email protected] N0T: YALNIZLIK, YiTiRDi ANLAMIN...