Joomla! Component com_bfsurvey_pro - catid Blind SQL Injection

Joomla! Component combfsurveypro - catid Blind SQL Injection 1 $url = $argv1; $r = strlenfilegetcontents$url."+and+1=1--"; echo "\nExploiting:\n"; $w = strlenfilegetcontents$url."+and+1=0--"; $t = abs100-$w/$r100; echo "Username: "; for $i=1; $i $t-1 $count = $i; $i = 30; for $j = 1; $j $t-1...

joomlafacile-rfi.txt

Title: Joomla Component ComFacileforms ================================================================ + Author : Dr.Kacak + Special Thankz : KnocKout and all my friends + System 0VerfL0verZ ================================================================= Script : Joomla Google Dork :...

Joomla Component com_facileforms 1.4.4 RFI Vulnerability

Exploit for unknown platform in category web applications ======================================================== Joomla Component comfacileforms 1.4.4 RFI Vulnerability ======================================================== Title: Joomla Component ComFacileforms...

shibby-sql.txt

Title: sHibby sHop v2.2 = Remote SQL/Update Multiple Vulnerability ================================================================ + Author : KnocKout + Special Thankz : Dr.Kacak + System 0VerfL0verZ ================================================================= Script : sHibby sHop Verz: 2.2...

Joomla! Component FacileForms 1.4.4 - Remote File Inclusion

Title: Joomla Component ComFacileforms ================================================================ + Author : Dr.Kacak + Special Thankz : KnocKout and all my friends + System 0VerfL0verZ ================================================================= Script : Joomla Google Dork :...

Unfixed XSS vulnerability at www.universalgiving.org

Security researcher Dr.Kacak, has submitted on 22/06/2008 a cross-site-scripting XSS vulnerability affecting www.universalgiving.org, which at the time of submission ranked 507477 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 05/11/2008. It i...

sHibby sHop <= 2.2 (SQL/Update) Multiple Remote Vulnerabilities

Exploit for unknown platform in category web applications =============================================================== sHibby sHop = 2.2 SQL/Update Multiple Remote Vulnerabilities =============================================================== + Author : KnocKout + Special Thankz : Dr.Kacak +...

Unfixed XSS vulnerability at www.shaadionline.tv

Security researcher Dr.Kacak, has submitted on 18/06/2008 a cross-site-scripting XSS vulnerability affecting www.shaadionline.tv, which at the time of submission ranked 46756 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 10/06/2009. It is...

Unfixed XSS vulnerability at www.bugun.com.tr

Security researcher Dr.Kacak, has submitted on 16/06/2008 a cross-site-scripting XSS vulnerability affecting www.bugun.com.tr, which at the time of submission ranked 23317 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 05/07/2008. It is...

ipos-sql.txt

Title : I-Pos Internet Pay Online Store v1.3 Beta = Remote SQL Injection Vulnerability ========================================================================================== + Author : KnocKout + Special ThanX : Dr.Kacak & Cr@zy-King and CW ALL USERS . . . + Cyber-Warrior.Org...