Lucene search
K

54 matches found

seebug.org
seebug.org
added 2014/07/01 12:0 a.m.27 views

PostNuke Module pnEncyclopedia <= 0.2.0 - SQL Injection Vulnerability

No description provided by source. \ /\ \ / | \ \ | / \ // / | \ | \ \ Y / | \ / / \ /| /\ / / / / / .OR.ID ECHOADV90$2008 ----------------------------------------------------------------------------------------- ECHOADV90$2008 PostNuke Module pnEncyclopedia = 0.2.0 id Blind Sql Injection...

7.1AI score
Exploits0
xssed
xssed
added 2008/10/28 12:0 a.m.9 views

Unfixed XSS vulnerability at www.georgiaencyclopedia.org

Security researcher xylitol, has submitted on 28/10/2008 a cross-site-scripting XSS vulnerability affecting www.georgiaencyclopedia.org, which at the time of submission ranked 344719 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 24/06/2010. I...

Exploits0References1
NVD
NVD
added 2006/10/26 4:7 p.m.15 views

CVE-2006-5525

Incomplete blacklist vulnerability in mainfile.php in PHP-Nuke 7.9 and earlier allows remote attackers to conduct SQL injection attacks via 1 "//UNION " or 2 " UNION//" sequences, which are not rejected by the protection mechanism, as demonstrated by a SQL injection via the eid parameter in a...

5.1CVSS7.5AI score0.01113EPSS
Exploits1References6
Cvelist
Cvelist
added 2006/10/26 4:0 p.m.26 views

CVE-2006-5525

Incomplete blacklist vulnerability in mainfile.php in PHP-Nuke 7.9 and earlier allows remote attackers to conduct SQL injection attacks via 1 "//UNION " or 2 " UNION//" sequences, which are not rejected by the protection mechanism, as demonstrated by a SQL injection via the eid parameter in a...

7.5AI score0.01113EPSS
Exploits1References6
seebug.org
seebug.org
added 2006/10/25 12:0 a.m.45 views

PHP-Nuke SQL注入及绕过SQL注入防护漏洞

PHP-Nuke是一个广为流行的网站创建和管理工具,它可以使用很多数据库软件作为后端,比如MySQL、PostgreSQL、mSQL、Interbase、Sybase等。 PHP-Nuke用于过滤POST输入的代码中存在SQL注入漏洞: == mainfile.php 143-146 ========================== ... if striposclone$postString,'%20union%20' OR \ striposclone$postString,'/union/' OR striposclone$postString,' union ' OR ...

7.1AI score
Exploits0
securityvulns
securityvulns
added 2006/10/23 12:0 a.m.31 views

PHP-Nuke &lt;= 7.9 &#40;Encyclopedia&#41; Remote SQL Injection Exploit

? / Neo Security Team - Exploit made by Paisterist on 2006-10-22 http://www.neosecurityteam.net / $host="localhost"; $path="/phpnuke/"; $prefix="nuke"; $port="80"; $fp = fsockopen$host, $port, $errno, $errstr, 30; $data="query=fooaa&eid=foo'//UNION SELECT pwd as title FROM $prefixauthors WHERE...

0.1AI score
Exploits0
0day.today
0day.today
added 2006/10/22 12:0 a.m.30 views

PHP-Nuke <= 7.9 (Encyclopedia) Remote SQL Injection Exploit

Exploit for unknown platform in category web applications =========================================================== PHP-Nuke = 7.9 Encyclopedia Remote SQL Injection Exploit =========================================================== ? / Neo Security Team - Exploit made by Paisterist on 2006-10-...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2006/10/22 12:0 a.m.30 views

PHP-Nuke 7.9 - Encyclopedia SQL Injection

PHP-Nuke 7.9 - Encyclopedia SQL Injection ? / Neo Security Team - Exploit made by Paisterist on 2006-10-22 http://www.neosecurityteam.net / $host="localhost"; $path="/phpnuke/"; $prefix="nuke"; $port="80"; $fp = fsockopen$host, $port, $errno, $errstr, 30; $data="query=fooaa&eid=foo'//UNION SELECT...

0.6AI score
Exploits0
Exploit DB
Exploit DB
added 2006/10/22 12:0 a.m.63 views

PHP-Nuke 7.9 - &#039;Encyclopedia&#039; SQL Injection

? / Neo Security Team - Exploit made by Paisterist on 2006-10-22 http://www.neosecurityteam.net / $host="localhost"; $path="/phpnuke/"; $prefix="nuke"; $port="80"; $fp = fsockopen$host, $port, $errno, $errstr, 30; $data="query=fooaa&eid=foo'//UNION SELECT pwd as title FROM $prefixauthors WHERE...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2006/04/15 12:0 a.m.27 views

Encyclopedia &lt;= 3.0 &#40;login.php&#41; CrossSite Scripting - XSS

Encyclopedia = 3.0 login.php CrossSite Scripting - XSS by n0m3rcy Copyright c 2006 n0m3rcy [email protected] Exploit: www.site.com/login.php?action=form&username=username&password=223E3Cscript3Ealertdocument.cookies;3C/script3E Shoutz: cijfer , my baby , Dag & myself :PpP Have phun!...

1.5AI score
Exploits0
OpenVAS
OpenVAS
added 2005/11/03 12:0 a.m.23 views

ScanMail file check

This script attempts to read sensitive files used by Trend ScanMail, an anti-virus protection program for Domino formerly Lotus Notes. SPDX-FileCopyrightText: 2004 by DokFLeed Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

7.1AI score
Exploits0References1
CVE
CVE
added 2005/08/04 4:0 a.m.45 views

CVE-2004-2293

PHP-Nuke 6.0–7.3 is affected by multiple XSS flaws in the Encyclopedia module (via the eid parameter or the module query), in Reviews module via the preview_review function (parameters: url, cover, rlanguage, hits), and in Reviews via savecomment (uname parameter). Root cause: improper handling o...

4.3CVSS6.1AI score0.01973EPSS
Exploits1References7Affected Software1
securityvulns
securityvulns
added 2004/06/11 12:0 a.m.44 views

[Full-Disclosure] [waraxe-2004-SA#032 - Multiple security flaws in PhpNuke 6.x - 7.3]

================================================================================ waraxe-2004-SA032 ================================================================================ Multiple security flaws in PhpNuke 6.x - 7.3...

0.1AI score
Exploits0
Exploit DB
Exploit DB
added 2004/06/11 12:0 a.m.24 views

PHP-Nuke 6.x/7.x Encyclopedia Module - Multiple Function Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/10524/info PHP-Nuke is prone to multiple vulnerabilities. The issues result from insufficient sanitization of user-supplied data. The following specific issues can affect the application: PHP-Nuke is prone to multiple cross-site scripting vulnerabilities...

7.4AI score
Exploits0
Rows per page
Query Builder