210 matches found
EncapsGallery 1.0 - 'gallery.php' SQL Injection
source: https://www.securityfocus.com/bid/15836/info EncapsGallery is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could result in a compromise of the...
PHPYellowTM 5.33 - search_result.php?haystack SQL Injection
PHPYellowTM 5.33 - searchresult.php?haystack SQL Injection source: https://www.securityfocus.com/bid/15700/info phpYellowTM is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL...
Unalz 0.x - Archive Filename Buffer Overflow
Unalz 0.x - Archive Filename Buffer Overflow source: https://www.securityfocus.com/bid/15577/info The 'unalz' utility is prone to a buffer-overflow vulnerability. This issue is exposed when the application extracts an ALZ archive that contains a file with a long name. An attacker could exploit th...
eQuickSQLXSS.txt
------------------------------------------------------ Nightmare TeAmZ Advisory 016 ------------------------------------------------------ Date - 11/2005 e-Quick Cart Sql & Xss AFFECTED PRODUCTS ================= e-Quick Cart http://www.cdmweb.com Xss Poof: ========...
kaiseki.txt
PNGƒJƒEƒ“ƒ^+—pƒƒO‰ð̓XƒNƒŠƒvƒg remote commands execution vulnerability Vendor URL : http://www.aurora.dti.ne.jp/zom/Counter/ Vulnerability : Remote Command Execution Risk : High ================================================================== An attacker may exploit this vulnerability to...
XOOPS 2.0.11 - xmlrpc.php SQL Injection
XOOPS 2.0.11 - xmlrpc.php SQL Injection !/usr/bin/perl Xoops 0 print qq\b\b DONE --------------------------------------------------------------- USER NAME : $name USER HASH : $allchar --------------------------------------------------------------- ; else print "\b\b FAILED "; exit; else...
ASPNuke 0.80 - forgot_password.asp?email Cross-Site Scripting
ASPNuke 0.80 - forgotpassword.asp?email Cross-Site Scripting source: https://www.securityfocus.com/bid/14062/info ASPNuke is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may...
Sql Injection in CJ Ultra Plus v1.0.3-1.0.4
ADVISORY Sql Injection in CJ Ultra Plus v1.0.3-1.0.4? "My God, it's full of stars" - c MwNN Vulnerable code is in out.php ---code begin-- ... if isset$perm $query = "select a1, a2 from trade where a1 = '$perm'"; -muhahaha $result = mysqlquery$query; if!$result errormessagesqlerror; ... ---code...
E-Cart <= 1.1 (index.cgi) Remote Command Execution Exploit
No description provided by source. !/usr/bin/perl Example added if code doesn't work for ya: http://SITE/DIRTOECART/index.cgi?action=viewart&cat=reproductoresdvd&art=reproductordvp-ns315.dat|uname%20-a| /str0ke info: [email protected] use IO::Socket; print "\n\n www.badroot.org \n\n"; print...
GoodTech Telnet Server < 5.0.7 - Remote Buffer Overflow (2)
/ cybertronicatgmxdotnet offset fixed! cybertronic @ GoodTech $ gcc -o goodtechexpl goodtechexpl.c cybertronic @ GoodTech $ ./goodtechexpl Usage ----- Bindshell ./goodtechexpl Reverseshell ./goodtechexpl cybertronic @ GoodTech $ ./goodtechexpl 192.168.2.103 / / / / / / / / / / / / / / / / / / /...
OneWorldStore - DisplayResults.asp SQL Injection
OneWorldStore - DisplayResults.asp SQL Injection source: https://www.securityfocus.com/bid/13249/info OneWorldStore is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. Successful...
formmail23.txt
-- == -- == -- == -- == -- == -- == -- == -- == -- == -- Name: Form Mail Script FS Version: Location: Poland Email: groszynskif gmail com HP: http://shell.homeunix.org -- == -- == -- == -- == -- == -- == -- == -- == -- == --...
mixedSQL.txt
Postnuke all versions + pnphpbb =1.2 sql injection - jocanor Author: Jocanor Date: 01-03-2k5 1. -----------introduction--------. Postnuke is an open source CMS content management system, originally based in php-nuke. www.postnuke.com pnphpbb is a module for postnuke based in popular forum system...
osCommerceXSS.txt
Hello All, I have discovered XSS vulnerability in: osCommerce 2.2-MS2 Authors Site: http://www.oscommerce.com/ +-Example:--------------------------------------------------+ XSS: http://www.victimsite.com/contactus.php?&name=1&email=1&enquiry=%3C/textare a%3E%3Cscript%3Ealert'w00t';%3C/script%3E...
[NOBYTES.COM: #2] CubeCart 2.0.4 - Multiple Vulnerabilities
Vulnerable Systems: ---------------- vBulletin version 3.0 up to and including version 3.0.4 Immune systems: ---------------- vBulletin version 3.0.5 vBulletin version 3.0.6 Vulnerable code in forumdisplay.php : if $vboptions'showforumusers' . . . . if $bbuserinfo'userid' . . . . $comma = ', ';...
MyPHP Forum 1.0 - SQL Injection
MyPHP Forum 1.0 - SQL Injection /==========================================/ // GHC - MyPHP Forum - ADVISORY // Product: MyPHP Forum // Version: 1.0 // URL: http://www.myphp.ws // VULNERABILITY CLASS: SQL injection /==========================================/ example of exploit...
MyPHP Forum 1.0 SQL Injection Exploit
No description provided by source. /==========================================/ // GHC - MyPHP Forum - ADVISORY // Product: MyPHP Forum // Version: 1.0 // URL: http://www.myphp.ws // VULNERABILITY CLASS: SQL injection /==========================================/ example of exploit...
AWStats 6.0 6.2 - configdir Remote Command Execution (C)
AWStats 6.0 6.2 - configdir Remote Command Execution C / AwStats exploit by Thunder, [email protected] This exploit makes use of the remote command execution bug discovered in AwStats ver 6.2 and below. The bug resides in the awstats.pl perl script. The script does not sanitise correctly the us...
Portcullis Security Advisory 05-004
Portcullis Security Advisory Vulnerable System: MediaPartner 5.0 Vulnerability Title: In Place Password Update Process Flawed Vulnerability discovery and development: Portcullis Security Testing Service Affected systems: Emotion MediaPartner Web Server Version 5.0 5.1 not confirmed Details: The...
[EXPL] iWebNegar Configuration Nullification (DoS)
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...