Lucene search
K

6 matches found

Cvelist
Cvelist
added 2009/02/10 6:0 p.m.22 views

CVE-2008-6100

Multiple SQL injection vulnerabilities in Discussion Forums 2k 3.3, when magicquotesgpc is disabled, allow remote attackers to execute arbitrary SQL commands via the 1 CatID parameter to a RSS1.php and b RSS2.php in misc/; and the 2 SubID parameter to c misc/RSS5.php...

8.5AI score0.00909EPSS
Exploits1References3
CVE
CVE
added 2009/02/10 6:0 p.m.40 views

CVE-2008-6100

CVE-2008-6100 documents multiple SQL injection vulnerabilities in the older system Discussion Forums 2k 3.3 when magic_quotes_gpc is disabled. The faults allow remote attackers to craft input via (1) CatID parameters to RSS1.php and RSS2.php (in misc/) and (2) SubID to RSS5.php (in misc/) to exec...

6.8CVSS8.8AI score0.00909EPSS
Exploits1References3Affected Software1
exploitpack
exploitpack
added 2008/10/01 12:0 a.m.11 views

Discussion Forums 2k 3.3 - Multiple SQL Injections

Discussion Forums 2k 3.3 - Multiple SQL Injections Author: !DoktOR! Date found: 30.09.08 Product: Discussion Forums 2k Version: 3.3 URL: http://developer.berlios.de/projects/df2k/ Vulnerability Class: SQL Injection Condition: magicquotesgpc = Off Exploit 1:...

0.7AI score
Exploits0
Packet Storm
Packet Storm
added 2008/10/01 12:0 a.m.16 views

discforums-sql.txt

Author: !DoktOR! Date found: 30.09.08 Product: Discussion Forums 2k Version: 3.3 URL: http://developer.berlios.de/projects/df2k/ Vulnerability Class: SQL Injection Condition: magicquotesgpc = Off Exploit 1:...

7.4AI score
Exploits0
0day.today
0day.today
added 2008/10/01 12:0 a.m.16 views

Discussion Forums 2k v3.3 Multiple SQL Injection Vulnerabilities

Exploit for unknown platform in category web applications ================================================================ Discussion Forums 2k v3.3 Multiple SQL Injection Vulnerabilities ================================================================...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2008/10/01 12:0 a.m.40 views

Discussion Forums 2k 3.3 - Multiple SQL Injections

Author: !DoktOR! Date found: 30.09.08 Product: Discussion Forums 2k Version: 3.3 URL: http://developer.berlios.de/projects/df2k/ Vulnerability Class: SQL Injection Condition: magicquotesgpc = Off Exploit 1:...

7.4AI score
Exploits0
Rows per page
Query Builder