314 matches found
dotclear_124_php5_xpl.txt
!/usr/bin/php -q -d shortopentag=on ? echo "DotClear = 1.2.4 prepend.php/'blogdcpath' arbitrary remote inclusion\r\n"; echo "by rgod [email protected]\r\n"; echo "site: http://retrogod.altervista.org\r\n\r\n"; echo "dork: "propulsé par DotClear" "fil atom" "fil rss" +commentaires\r\n\r\n"; /...
DotClear <= 1.2.4 (prepend.php) Arbitrary Remote Inclusion Exploit
Exploit for unknown platform in category web applications ================================================================== DotClear = 1.2.4 prepend.php Arbitrary Remote Inclusion Exploit ================================================================== !/usr/bin/php -q -d shortopentag=on ? ech...
DotClear <= 1.2.4 (prepend.php) Arbitrary Remote Inclusion Exploit
No description provided by source. !/usr/bin/php -q -d shortopentag=on ? echo "DotClear = 1.2.4 prepend.php/'blogdcpath' arbitrary remote inclusion\r\n"; echo "by rgod [email protected]\r\n"; echo "site: http://retrogod.altervista.org\r\n\r\n"; echo "dork: "propulsé par DotClear" "fil atom"...
DotClear 1.2.4 - prepend.php Remote File Inclusion
DotClear 1.2.4 - prepend.php Remote File Inclusion !/usr/bin/php -q -d shortopentag=on ? echo "DotClear = 1.2.4 prepend.php/'blogdcpath' arbitrary remote inclusion\r\n"; echo "by rgod [email protected]\r\n"; echo "site: http://retrogod.altervista.org\r\n\r\n"; echo "dork: "propulsé par DotClear"...
DotClear 1.2.4 - 'prepend.php' Remote File Inclusion
!/usr/bin/php -q -d shortopentag=on ? echo "DotClear = 1.2.4 prepend.php/'blogdcpath' arbitrary remote inclusion\r\n"; echo "by rgod [email protected]\r\n"; echo "site: http://retrogod.altervista.org\r\n\r\n"; echo "dork: "propulsé par DotClear" "fil atom" "fil rss" +commentaires\r\n\r\n"; /...
CVE-2005-3963
SQL injection vulnerability in session.php in DotClear before 1.2.3 allows remote attackers to execute arbitrary SQL commands via the dcxd parameter in a cookie...
CVE-2005-3963
DotClear contains an SQL injection vulnerability in session.php (pre-1.2.3) exploitable via the dc_xd cookie, allowing remote attackers to execute arbitrary SQL. Impact is information disclosure/modification and potential server compromise as described in the CVE records. The connected documents ...
CVE-2005-3963
SQL injection vulnerability in session.php in DotClear before 1.2.3 allows remote attackers to execute arbitrary SQL commands via the dcxd parameter in a cookie...
CVE-2005-3957
Unspecified vulnerability in the Trackback functionality in DotClear 1.2.1 has unknown impact and attack vectors...
CVE-2005-3957
Technical details for CVE-2005-3957 are not publicly available in the provided documents. No concrete affected products, versions, or impact are specified here. Monitor for updates.
CVE-2005-3957
Unspecified vulnerability in the Trackback functionality in DotClear 1.2.1 has unknown impact and attack vectors...
DotClear 1.2.11.2.2 - Session.php SQL Injection
DotClear 1.2.11.2.2 - Session.php SQL Injection source: https://www.securityfocus.com/bid/15667/info DotClear is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful...
DotClear 1.2.1/1.2.2 - 'Session.php' SQL Injection
source: https://www.securityfocus.com/bid/15667/info DotClear is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could result in a compromise of the...
[Full-disclosure] ZRCSA-200504 - dotclear SQL Injection
Zone-H Research Center Security Advisory 200504 http://www.zone-h.fr Date of release: 30/11/2005 Software: dotclear http://www.dotclear.net Affected versions: = 1.2.2 Risk: Medium Discovered by: Kevin Fernandez "Siegfried" from the Zone-H Research Team Background ---------- dotclear is a weblog...