PHPFusion < 9.03.60 RCE Vulnerability - Active Check

PHPFusion is prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

PHP-Fusion downloads.php Privilege Escalation (CVE-2020-24949)

A privilege escalation vulnerability exists in PHP-Fusion. The vulnerability is due to insufficient validation of HTTP request parameters in downloads.php...

Cross site scripting

Multiple cross-site scripting vulnerabilities in PHP-Fusion 9.03.50 allow remote attackers to inject arbitrary web script or HTML via the catid parameter to downloads/downloads.php or article.php. NOTE: this might overlap CVE-2012-6043...

CVE-2020-12708

PHP-Fusion 9.03.50 is affected by multiple cross-site scripting (XSS) vulnerabilities that allow remote attackers to inject arbitrary script or HTML via the cat_id parameter to downloads/downloads.php or article.php. The issue is a result of insufficient input validation in these endpoints and is...

XlentCMS 1.0.4 - (downloads.php?cat) SQL Injection Vulnerability

No description provided by source. Script : XlentCMS V1.0.4 downloads.php?cat SQL Injection Vulnerability Script site : http://sphere.xlentprojects.se/portal.php AUTHOR : Gamoscu HOME : http://www.1923turk.biz Blog : http://gamoscu.wordpress.com/ Greetz : Manas58 Baybora Delibey Tiamo Psiko Turco...

phpBB SpamOborona Mod <= 1.0b Remote File Include Exploit

No description provided by source. !/usr/bin/perl SpamOborona PHPBB Plugin Class: Remote File Include Vulnerability Patch: unavailable Date: 2006/10/12 Remote: Yes Type: high...

WHMCompleteSolution 3.x/4.x Multiple Vulnerabilities

No description provided by source. $b0x WHMCS WHMCompleteSolution 3.x / 4.x Multiple Vulnerability ! $b0x ZxH-Labs $b0x 1st-NOV-11 $b0x Www.Sec4ever.coM $b0x WH-03 On Windows IIS 6.0 ======================================================== b0x@1337b0x:/b0x/Exploits/WebAPP whoami ZxH-Labs |...

phpBB <= 2.0.13 'downloads.php' mod Remote Exploit

No description provided by source. !/usr/bin/perl -w use IO::Socket; Example: C:\phpbb.pl www.site.com /phpBB2/ 2 downloads.php mod in phpBB = 2.0.13 Connecting... + Connected! Sending Data... Data Sent, Waiting for response... + MD5 Hash for user with id=2 is: 81dc9bdb52d04dc20036dbd8313ed055 if...

PHP-Fusion <= 6.01.15.4 (downloads.php) SQL Injection Vulnerability

No description provided by source. =================================================================== PHP-Fusion = 6.01.15.4 downloads.php SQL Injection Vulnerability =================================================================== + Discovered By : Inj3ct0r + Site : Inj3ct0r.com + support...

CVE-2011-4810

Multiple directory traversal vulnerabilities in WHMCompleteSolution WHMCS 3.x and 4.x allow remote attackers to read arbitrary files via the templatefile parameter to 1 submitticket.php and 2 downloads.php, and 3 the report parameter to admin/reports.php...

Directory traversal

Multiple directory traversal vulnerabilities in WHMCompleteSolution WHMCS 3.x and 4.x allow remote attackers to read arbitrary files via the templatefile parameter to 1 submitticket.php and 2 downloads.php, and 3 the report parameter to admin/reports.php...

WHMCompleteSolution 3.x/4.x - Multiple Vulnerabilities

$b0x WHMCS WHMCompleteSolution 3.x / 4.x Multiple Vulnerability ! $b0x ZxH-Labs $b0x 1st-NOV-11 $b0x Www.Sec4ever.coM $b0x WH-03 On Windows IIS 6.0 ======================================================== b0x@1337b0x:/b0x/Exploits/WebAPP whoami ZxH-Labs | Www.Sec4ever.coM...

PHP-Fusion &lt;= 6.01.15.4 &#40;downloads.php&#41; SQL Injection Vulnerability

=================================================================== PHP-Fusion = 6.01.15.4 downloads.php SQL Injection Vulnerability =================================================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' /' / /' 0 0 /,...

PHP-Fusion <= 6.01.15.4 (downloads.php) SQL Injection Vulnerability

Exploit for unknown platform in category web applications =================================================================== PHP-Fusion Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 0 -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-1 +...

PHP-Fusion 6.01.15.4 - downloads.php SQL Injection

PHP-Fusion 6.01.15.4 - downloads.php SQL Injection =================================================================== PHP-Fusion = 6.01.15.4 downloads.php SQL Injection Vulnerability =================================================================== + Discovered By : Inj3ct0r + Site :...

XlentCMS 1.0.4 - downloads.php?cat SQL Injection

XlentCMS 1.0.4 - downloads.php?cat SQL Injection Script : XlentCMS V1.0.4 downloads.php?cat SQL Injection Vulnerability Script site : http://sphere.xlentprojects.se/portal.php AUTHOR : Gamoscu HOME : http://www.1923turk.biz Blog : http://gamoscu.wordpress.com/ Greetz : Manas58 Baybora Delibey Tia...

XlentCMS V1.0.4 (downloads.php?cat) SQL Injection Vulnerability

Exploit for unknown platform in category web applications =============================================================== XlentCMS V1.0.4 downloads.php?cat SQL Injection Vulnerability =============================================================== Script : XlentCMS V1.0.4 downloads.php?cat SQL...

PHP-Fusion 6.01.15.4 SQL Injection

=================================================================== PHP-Fusion Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 0 -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-1 + Discovered By : Inj3ct0r + Site : Inj3ct0r.com + support e-mai...

SePortal 2.4 - poll_id SQL Injection

SePortal 2.4 - pollid SQL Injection Viva IslaM Viva IslaM Remote SQL Injection Vulnerability SePortal V2.4 poll.php pollid staticpages.php spid AuTh0r : Mr.SQL H0ME : WwW.PaL-HaCkEr.CoM & WwW.ATsDp.CoM Email : [email protected] !! SYRIAN HaCkErS !! Script : SePortal V2.4 site : www.seportal.org...

phpBB SpamOborona Mod 1.0b - Remote File Inclusion

phpBB SpamOborona Mod 1.0b - Remote File Inclusion !/usr/bin/perl SpamOborona PHPBB Plugin Class: Remote File Include Vulnerability Patch: unavailable Date: 2006/10/12 Remote: Yes Type: high...