SMF Mod Member Awards 1.0.2 - Blind SQL Injection Exploit

No description provided by source. ------------------------------------------------------------------------- SMF Component Member Awards Blind SQL-injection Vulnerability ------------------------------------------------------------------------- author: eLwaux thanks: mailbrush, antichat.ru,...

elgg 1.5 Local File Inclusion

Product: elgg.org Version: dbname,$mysqldblink 48: if $simplecacheenabled || $override 49: $filename = $dataroot . 'viewssimplecache/' . md5$viewtype . $view; 51: $contents = filegetcontents$filename; 56: else 59: $contents = elggview$view; /lib/elgglib.php: 237: function elggview$view, .. 317:...

elgg <= 1.5 (/_css/js.php) Local File Inclusion Vulnerability

No description provided by source. Product: elgg.org Version: = 1.5 Dork: "Powered by Elgg, the leading open source social networking platform" eLwauxc2009 UASC.org.UA POC: /css/js.php?js=../../../../tmp/sessiondir%00&viewtype=xD need: in table datalists must be record simplecacheenabled = 0...

elgg 1.5 - _cssjs.php Local File Inclusion

elgg 1.5 - cssjs.php Local File Inclusion Product: elgg.org Version: dbname,$mysqldblink 48: if $simplecacheenabled || $override 49: $filename = $dataroot . 'viewssimplecache/' . md5$viewtype . $view; 51: $contents = filegetcontents$filename; 56: else 59: $contents = elggview$view;...

gencms 2006 - Multiple Vulnerabilities

gencms 2006 - Multiple Vulnerabilities GenCMS http://gencms.berlios.de/ eLwauxc2009 LFI /show.php ---------------------------------------------------------------------------------------------------- 18: $param = $GET'p'; 19: ifempty$param $param = 'news'; 20: //get right page 21: //$page =...

phpbms 0.96 - Multiple Vulnerabilities

phpbms 0.96 - Multiple Vulnerabilities phpBMS v0.96 phpbms.org eLwauxc2009, uasc.org.ua http://phpbms.org/trial/ SQL Inj -------------------------------------------------------------------------------------------------------------------------------------------------------------------------...

GenCMS 2006 Multiple Remote Vulnerabilities

Exploit for unknown platform in category web applications =========================================== GenCMS 2006 Multiple Remote Vulnerabilities =========================================== GenCMS http://gencms.berlios.de/ eLwauxc2009 LFI /show.php...

GenCMS 2006 Multiple Remote Vulnerabilities

No description provided by source. GenCMS http://gencms.berlios.de/ eLwauxc2009 LFI /show.php ---------------------------------------------------------------------------------------------------- 18: $param = $GET'p'; 19: ifempty$param $param = 'news'; 20: //get right page 21: //$page =...

phpbms 0.96 - Multiple Vulnerabilities

phpBMS v0.96 phpbms.org eLwauxc2009, uasc.org.ua http://phpbms.org/trial/ SQL Inj ------------------------------------------------------------------------------------------------------------------------------------------------------------------------- $querystatement="SELECT...

WordPress Plugin Related Sites 2.1 Blind SQL Injection Vulnerability

No description provided by source. WordPress Plugin Related Sites 2.1 BlindSQLinj Vuln http://wordpress.org/extend/plugins/related-sites/ /wp-content/plugins/related-sites/BTERWwebajax.php eLwauxc 30.05.2009, uasc.org.ua SQL-Inj 27: $guid = $POST'guid'; 28: $click = $POST'click'; 31: $ref =...

SMF Member Awards 1.0.2 SQL Injection

------------------------------------------------------------------------- SMF Component Member Awards Blind SQL-injection Vulnerability ------------------------------------------------------------------------- author: eLwaux thanks: mailbrush, antichat.ru, uasc.org.ua...

SMF Mod Member Awards 1.0.2 Blind SQL Injection Exploit

Exploit for unknown platform in category web applications ======================================================= SMF Mod Member Awards 1.0.2 Blind SQL Injection Exploit ======================================================= -----------------------------------------------------------------------...

SMF Mod Member Awards 1.0.2 Blind SQL Injection Exploit

No description provided by source. ------------------------------------------------------------------------- SMF Component Member Awards Blind SQL-injection Vulnerability ------------------------------------------------------------------------- author: eLwaux thanks: mailbrush, antichat.ru,...

WordPress Plugin Related Sites 2.1 - Blind SQL Injection

WordPress Plugin Related Sites 2.1 BlindSQLinj Vuln http://wordpress.org/extend/plugins/related-sites/ /wp-content/plugins/related-sites/BTERWwebajax.php eLwauxc 30.05.2009, uasc.org.ua SQL-Inj 27: $guid = $POST'guid'; 28: $click = $POST'click'; 31: $ref = $SERVER"HTTPREFERER"; 40: if $guid!="" &...

SMF Mod Member Awards 1.0.2 - Blind SQL Injection

------------------------------------------------------------------------- SMF Component Member Awards Blind SQL-injection Vulnerability ------------------------------------------------------------------------- author: eLwaux thanks: mailbrush, antichat.ru, uasc.org.ua...

WordPress Plugin Related Sites 2.1 - Blind SQL Injection

WordPress Plugin Related Sites 2.1 - Blind SQL Injection WordPress Plugin Related Sites 2.1 BlindSQLinj Vuln http://wordpress.org/extend/plugins/related-sites/ /wp-content/plugins/related-sites/BTERWwebajax.php eLwauxc 30.05.2009, uasc.org.ua SQL-Inj 27: $guid = $POST'guid'; 28: $click =...

SMF Mod Member Awards 1.0.2 - Blind SQL Injection

SMF Mod Member Awards 1.0.2 - Blind SQL Injection ------------------------------------------------------------------------- SMF Component Member Awards Blind SQL-injection Vulnerability ------------------------------------------------------------------------- author: eLwaux thanks: mailbrush,...