GreenPants 0.1.7 SQL Injection

Exploit Title: GreenPants 0.1.7 Multiple Vulnerabilities Date : 19 March 2011 Author : Ptrace Security Gianni Gnesa gnix Contact : researchatptrace-securitydotcom Software Link: http://sourceforge.net/projects/greenpants/ Version : 0.1.7 Tested on : CentOS 5.2 with magicquotesgpc off Thanks to :...

MyBloggie 2.1.2/2.1.3 - 'editcat.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/17048/info MyBloggie is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code executed in...

CVE-2005-4225

Multiple "potential" SQL injection vulnerabilities in myBloggie 2.1.3 beta might allow remote attackers to execute arbitrary SQL commands via 1 the category parameter in add.php, 2 the catdesc parameter in addcat.php, 3 the level and user parameters in adduser.php, 4 the postid parameter in...