SFS EZ Gaming Directory - directory.php SQL Injection

SFS EZ Gaming Directory - directory.php SQL Injection ================================================================================== SFS EZ Gaming Directory directory.php id Remote SQL Injection Vulnerability ================================================================================== /...

CVE-2008-3719

SQL injection vulnerability in directory.php in SFS Affiliate Directory allows remote attackers to execute arbitrary SQL commands via the id parameter in a deadlink action...

CVE-2008-3719

The CVE-2008-3719 entry describes an SQL injection in the SFS Affiliate Directory component, specifically in the file directory.php. The vulnerability is triggered by manipulating the id parameter in a deadlink action, allowing remote attackers to execute arbitrary SQL commands . The source docum...

Sql injection

SQL injection vulnerability in directory.php in SmartPPC and SmartPPC Pro allows remote attackers to execute arbitrary SQL commands via the idDirectory parameter...

CVE-2008-3152

SQL injection vulnerability in directory.php in SmartPPC and SmartPPC Pro allows remote attackers to execute arbitrary SQL commands via the idDirectory parameter...

smartppc-blindsql.txt

!/usr/bin/perl -W SmartPPC Pay Per Click Script Blind SQL Injection Exploit File affected: directory.php $idDirectory Vulnerability: Hamtaro Exploit: ka0x ka0x@domlabs:$ ./smartppc.pl -u "http://localhost/directory.php?username=&idDirectory=2" -p Top i Getting default: -T 30 i Getting default: -l...

SmartPPC Pay Per Click Script (idDirectory) Blind SQL Injection Exploit

No description provided by source. !/usr/bin/perl -W SmartPPC Pay Per Click Script Blind SQL Injection Exploit File affected: directory.php $idDirectory Vulnerability: Hamtaro Exploit: ka0x ka0x01atgmail.com ka0x@domlabs:$ ./smartppc.pl -u "http://localhost/directory.php?username=&idDirectory=2" ...

SmartPPC Pay Per Click Script - 'idDirectory' Blind SQL Injection (2)

!/usr/bin/perl -W SmartPPC Pay Per Click Script Blind SQL Injection Exploit File affected: directory.php $idDirectory Vulnerability: Hamtaro Exploit: ka0x ka0x@domlabs:$ ./smartppc.pl -u "http://localhost/directory.php?username=&idDirectory=2" -p Top i Getting default: -T 30 i Getting default: -l...

SmartPPC Pay Per Click Script - idDirectory Blind SQL Injection (2)

SmartPPC Pay Per Click Script - idDirectory Blind SQL Injection 2 !/usr/bin/perl -W SmartPPC Pay Per Click Script Blind SQL Injection Exploit File affected: directory.php $idDirectory Vulnerability: Hamtaro Exploit: ka0x ka0x@domlabs:$ ./smartppc.pl -u...

Sql injection

SQL injection vulnerability in directory.php in Prozilla Hosting Index, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the catid parameter in a list action...

CVE-2008-2083

SQL injection in Prozilla Hosting Index directory.php when magic_quotes_gpc is disabled, allowing remote attackers to execute arbitrary SQL via the cat_id parameter in a list action. Affected component: directory.php of Prozilla Hosting Index. Root cause: input unsanitization/SQL construction exp...

CVE-2008-2083

SQL injection vulnerability in directory.php in Prozilla Hosting Index, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the catid parameter in a list action...

Prozilla Hosting Index (directory.php cat_id) SQL Injection Vulnerability

No description provided by source. \ /\ \ / | \ \ | / \ // / | \ | \ \ Y / | \ / / \ /| /\ / / / / / .OR.ID ECHOADV88$2008 ----------------------------------------------------------------------------------------- ECHOADV88$2008 Prozilla Hosting Index directory.php catid Blind Sql...

Prozilla Hosting Index - 'cat_id' SQL Injection

\ /\ \ / | \ \ | / \ // / | \ | \ \ Y / | \ / / \ /| /\ / / / / / .OR.ID ECHOADV88$2008 ----------------------------------------------------------------------------------------- ECHOADV88$2008 Prozilla Hosting Index directory.php catid Blind Sql Injection Vulnerability...

Prozilla Hosting Index - cat_id SQL Injection

Prozilla Hosting Index - catid SQL Injection \ /\ \ / | \ \ | / \ // / | \ | \ \ Y / | \ / / \ /| /\ / / / / / .OR.ID ECHOADV88$2008 ----------------------------------------------------------------------------------------- ECHOADV88$2008 Prozilla Hosting Index directory.php catid Blind...

Prozilla Hosting Index (directory.php cat_id) SQL Injection Vulnerability

Exploit for unknown platform in category web applications ========================================================================= Prozilla Hosting Index directory.php catid SQL Injection Vulnerability ========================================================================= \ /\ \ / | \ \ | / ...

adv88-K-159-2008.txt

\ /\ \ / | \ \ | / \ // / | \ | \ \ Y / | \ / / \ /| /\ / / / / / .OR.ID ECHOADV88$2008 ----------------------------------------------------------------------------------------- ECHOADV88$2008 Prozilla Hosting Index directory.php catid Blind Sql Injection Vulnerability...

Sql injection

SQL injection vulnerability in directory.php in Prozilla Entertainers 1.1 and earlier allows remote attackers to execute arbitrary SQL commands via the cat parameter. NOTE: some of these details are obtained from third party information...

CVE-2008-1788

CVE-2008-1788 describes an SQL injection in the file directory.php of Prozilla Entertainers 1.1 and earlier. The vulnerability arises when processing the cat parameter, allowing remote attackers to execute arbitrary SQL commands. Affected component: directory.php in Prozilla Entertainers; root ca...

Ajchat 'directory.php' SQL注入漏洞

Ajchat是一款基于PHP的WEB应用程序。 Ajchat不正确过滤用户提交的输入，远程攻击者可以利用漏洞进行SQL注入攻击，获得敏感信息或操作数据库。 问题是'directory.php'脚本对用户提交的WEB参数缺少过滤，提交恶意SQL查询作为参数数据，可更改原来的SQL逻辑，获得敏感信息或操作数据库。 Ajchat 0.10 目前没有解决方案提供： http://ajchat.sourceforge.net/ http://www.example.com/directory.php?s='and 1 = 2 union select...