313 matches found
Time and Expense Management System Multiple Vulnerabilities
Exploit for php platform in category web applications ------------------------------------------------------------------------ Software................Time and Expense Management System Vulnerability...........Command Injection Threat Level............Very Critical 5/5...
PHP SQL Injection Vulnerability / overwrite injection
Exploit for php platform in category web applications ===================================================== PHP SQL Injection Vulnerability / overwrite injection ===================================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=1 0 0 1 /'...
CVE-2010-1997
Cross-site scripting XSS vulnerability in admin/edit.php in Saurus CMS 4.7.0 allows remote authenticated users, with "Article list" edit privileges, to inject arbitrary web script or HTML via the pealkiri parameter...
bitweaver 2.7 persistant Xss Vulnerability
Exploit for unknown platform in category web applications ========================================== bitweaver 2.7 persistant Xss Vulnerability ========================================== prog ------------- bitweaver 2.7 vuln ------------- Persistant XSS in articles/edit.php logged only source...
PHP-Addressbook 3.1.5 SQL Injection
@ php-addressbook v3.1.5edit.php SQL Injection Vulnerability @ Author: Hussin X @ Home : www.iq-ty.com, @ email: darkangelg85atYahoodotcom @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ @ script : http://sourceforge.net/project/showfiles.php?groupid=157964 @ DorK : php-addressbook v3.1...
PHP-AddressBook 3.1.5 - 'edit.php' SQL Injection
@ php-addressbook v3.1.5edit.php SQL Injection Vulnerability @ Author: Hussin X @ Home : www.iq-ty.com, @ email: darkangelg85atYahoodotcom @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ @ script : http://sourceforge.net/project/showfiles.php?groupid=157964 @ DorK : php-addressbook v3.1...
PHP-AddressBook 3.1.5 - edit.php SQL Injection
PHP-AddressBook 3.1.5 - edit.php SQL Injection @ php-addressbook v3.1.5edit.php SQL Injection Vulnerability @ Author: Hussin X @ Home : www.iq-ty.com, @ email: darkangelg85atYahoodotcom @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ @ script :...
php-addressbook v3.1.5(edit.php) SQL Injection Vulnerability
Exploit for unknown platform in category web applications ============================================================ php-addressbook v3.1.5edit.php SQL Injection Vulnerability ============================================================ @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ ...
php-addressbook v3.1.5(edit.php) SQL Injection Vulnerability
No description provided by source. @ php-addressbook v3.1.5edit.php SQL Injection Vulnerability @ Author: Hussin X @ Home : www.iq-ty.comhttp://www.iq-ty.com, @ email: darkangelg85atYahoodotcom @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ @ script :...
CVE-2009-3313
Multiple SQL injection vulnerabilities in FMyClone 2.3 allow remote attackers to execute arbitrary SQL commands via the comp parameter to 1 index.php and 2 editComments.php, and 3 allow remote authenticated administrators to execute arbitrary SQL commands via the id parameter in a comment action ...
Code injection
Static code injection vulnerability in user/internettoolbar/edit.php in YourPlace 1.0.2 and earlier allows remote authenticated users to execute arbitrary PHP code into user/internettoolbar/index.php via the 1 fav1url, 2 fav1name, 3 fav2url, 4 fav2name, 5 fav3url, 6 fav3name, 7 fav4url, 8 fav4nam...
CVE-2008-6774
internettoolbar/edit.php in YourPlace 1.0.2 and earlier does not end execution when an invalid username is detected, which allows remote attackers to bypass intended restrictions and edit toolbar settings via an invalid username. NOTE: the provenance of this information is unknown; the details ar...
Sql injection
SQL injection vulnerability in edit.php in Z1Exchange 1.0 allows remote attackers to execute arbitrary SQL commands via the site parameter...
CVE-2008-6284
CVE-2008-6284 describes a SQL injection vulnerability in the J1Exchange/ Z1Exchange 1.0 product, specifically in the file edit.php where the site parameter can be exploited to execute arbitrary SQL commands. The issue enables remote attackers to interact with the database and potentially compromi...
Sql injection
Multiple SQL injection vulnerabilities in AV Book Library before 1.1 allow remote attackers to execute arbitrary SQL commands via unspecified parameters to 1 admin/edit.php, 2 admin/add.php, 3 lib/booksearch.php, and possibly other components...
YourPlace <= 1.0.2 Multiple Remote Vulnerabilities + RCE Exploit
No description provided by source. START 0x01 Informations: Script : YourPlace 0.5 beta 1 Download : http://www.hotscripts.com/jump.php?listingid=80545&jumptype=1 Vulnerability : DB Disclosure / Arbitrary Data Saving RCE EXPLOIT / Arbitrary File Upload / PHPInfo Disclosure / User Change Account...
Sql injection
SQL injection vulnerability in edit.php in SlimCMS 1.0.0 and earlier allows remote attackers to execute arbitrary SQL commands via the pageID parameter...
CVE-2008-5491
SQL injection vulnerability in edit.php in SlimCMS 1.0.0 and earlier allows remote attackers to execute arbitrary SQL commands via the pageID parameter...
CVE-2008-5491
SQL injection vulnerability in edit.php in SlimCMS 1.0.0 and earlier allows remote attackers to execute arbitrary SQL commands via the pageID parameter...
z1exchange 1.0 (edit.php site) Remote SQL Injection Vulnerability
Exploit for unknown platform in category web applications ================================================================= z1exchange 1.0 edit.php site Remote SQL Injection Vulnerability =================================================================...