149 matches found
CVE-2008-3787
SQL injection vulnerability in listingview.php in Web Directory Script 2.0 and earlier allows remote attackers to execute arbitrary SQL commands via the name parameter...
CVE-2008-3787
Summary: CVE-2008-3787 affects Web Directory Script ≤ 2.0. It exposes a vulnerability in listing_view.php where the name parameter can be used for SQL injection, allowing remote attackers to execute arbitrary SQL commands. The CVSS v2 base score is 7.5 (HIGH) with network access, low attack compl...
wds-sql.txt
Web Directory Script = 2.0 SQL Injection Vulnerability Author: !DoktOR! Contact: coder5attopmail.kz Home Page: www.antichat.ru Date found: 23.08.08 Product: Web Directory Script Version: 2.0 Download script: http://rapidshare.com/files/121448809/W3bDirScr2-nullscript.net.rar Password:...
Web Directory Script <= 2.0 (name) SQL Injection Vulnerability
No description provided by source. Web Directory Script = 2.0 SQL Injection Vulnerability Author: !DoktOR! Contact: coder5attopmail.kz Home Page: www.antichat.ru Date found: 23.08.08 Product: Web Directory Script Version: 2.0 Download script:...
Web Directory Script 2.0 - name SQL Injection
Web Directory Script 2.0 - name SQL Injection Web Directory Script = 2.0 SQL Injection Vulnerability Author: !DoktOR! Contact: coder5attopmail.kz Home Page: www.antichat.ru Date found: 23.08.08 Product: Web Directory Script Version: 2.0 Download script:...
Web Directory Script <= 2.0 (name) SQL Injection Vulnerability
Exploit for unknown platform in category web applications ============================================================== Web Directory Script Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 0 -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-1...
Web Directory Script 2.0 - 'name' SQL Injection
Web Directory Script = 2.0 SQL Injection Vulnerability Author: !DoktOR! Contact: coder5attopmail.kz Home Page: www.antichat.ru Date found: 23.08.08 Product: Web Directory Script Version: 2.0 Download script: http://rapidshare.com/files/121448809/W3bDirScr2-nullscript.net.rar Password:...
LiveCart 目录脚本id参数SQL注入漏洞
BUGTRAQ ID: 28723 CVECAN ID: CVE-2008-1750 LiveCart是用于创建在线商店的电子商务解决方案。 LiveCart的目录脚本中没有正确地验证对id参数的输入便将其用在了SQL查询中,这允许远程攻击者通过控制SQL查询请求执行SQL注入攻击。 UAB Integry Systems LiveCart 1.1.1 UAB Integry Systems ------------------- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://livecart.com/...
CVE-2008-2087
SQL injection vulnerability in searchresult.php in Softbiz Web Host Directory Script, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the hostid parameter, a different vector than CVE-2005-3817...
CVE-2008-2087
SQL injection vulnerability in searchresult.php in Softbiz Web Host Directory Script, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the hostid parameter, a different vector than CVE-2005-3817...
CVE-2008-2087
The CVE-2008-2087 vulnerability affects Softbiz Web Host Directory Script, specifically in search_result.php. When magic_quotes_gpc is disabled, the host_id parameter can be exploited to inject SQL commands, enabling remote execution of arbitrary SQL. The description does not provide details on a...
CVE-2007-5996
CVE-2007-5996 describes an SQL injection vulnerability in the Softbiz Link Directory Script. The vulnerable component is the searchresult.php script, where user-provided sbcat_id can be exploited to execute arbitrary SQL commands. This CVE is related to CVE-2007-5449 (Softbiz Recipes Portal Scrip...
softbiz4-sql.txt
Links Directory Script SQL INJECTION BY IRCRASH AUTHOR : IRCRASH Dr.Crash Script Download : http://www.softbizscripts.com/ DORK: "Powered by SoftbizScripts" "OUR SPONSORS" Injection Adress : http://server.com/searchresult.php?sbcatid= SQL C0de For Find admin Username :...
Sql injection
Multiple SQL injection vulnerabilities in Prozilla Directory Script allow remote attackers to execute arbitrary SQL commands via the catid parameter in a list action to directory.php, and other unspecified vectors...
CVE-2007-3809
Multiple SQL injection vulnerabilities in Prozilla Directory Script allow remote attackers to execute arbitrary SQL commands via the catid parameter in a list action to directory.php, and other unspecified vectors...
prozilla-sql.txt
--==+================================================================================+==-- --==+ Prozilla Directory Script SQL Injection Vulnerbility +==-- --==+================================================================================+==-- AUTHOR: t0pP8uZz & xprog SITE:...
CVE-2007-3809
CVE-2007-3809 concerns multiple SQL injection vulnerabilities in Prozilla Directory Script. The affected component is the Prozilla Directory Script, with vulnerable input in the cat_id parameter of a list action to directory.php and other vectors, enabling remote attackers to execute arbitrary SQ...
Prozilla Directory Script (directory.php cat_id) SQL Injection Vulnerbility
No description provided by source. --==+================================================================================+==-- --==+ Prozilla Directory Script SQL Injection Vulnerbility +==-- --==+================================================================================+==-- AUTHOR: t0pP8uZ...
Prozilla Directory Script - Directory.php?cat_id SQL Injection
Prozilla Directory Script - Directory.php?catid SQL Injection --==+================================================================================+==-- --==+ Prozilla Directory Script SQL Injection Vulnerbility +==--...
Prozilla Directory Script (directory.php cat_id) SQL Injection Vulnerbility
Exploit for unknown platform in category web applications =========================================================================== Prozilla Directory Script directory.php catid SQL Injection Vulnerbility ===========================================================================...