759 matches found
Badoo Services Limited & XSS Vulnerabilities
Exploit for php platform in category web applications ============================================ Badoo Services Limited & XSS Vulnerabilities ============================================ Product: Badoo Services online community Web: http://eu1.badoo.com/ http://badoo.com/ Versions: All version...
Mereo <= 1.9.1 Directory Traversal Vulnerability - Active Check
Mereo is prone to a directory traversal vulnerability because it fails to sufficiently sanitize user-supplied input. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
OneHTTPD 0.6 - Directory Traversal
source: https://www.securityfocus.com/bid/39757/info OneHTTPD is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input data. Exploiting the issue may allow an attacker to obtain sensitive information that could aid in further attacks. OneHTTPD...
Template Seller Pro 3.25 (tempid) Remote SQL Injection Vulnerability
No description provided by source. !/usr/bin/perl -w Template Seller Pro 3.25 tempid Remote SQL Injection Vulnerability Author : v3n0m Contact : v3n0m666atlivedotcom Site : http://yogyacarderlink.web.id/ Group : YOGYACARDERLINK Date : April, 23-2010 GMT +7:00 Jakarta, Indonesia Software :...
Nucleus CMS v.3.51 (DIR_LIBS) Multiple Vulnerability
Vulnerability: Nucleus v3.51 other or lower version may also be affected Vendor: http://nucleuscms.org/ Category: Input Validation Error Impact: rfi/lfi Multiple Vulnerability Details: Multiple Vulnerability has been found in Nucleus v3.51 because it fails to sufficiently sanitize user-supplied...
HTTP File Server Security Bypass and Denial of Service Vulnerabilities
HTTP File Server is prone to multiple vulnerabilities including a security- bypass issue and a denial-of-service issue. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
Easy-Clanpage 2.1 - SQL Injection
Easy-Clanpage 2.1 - SQL Injection /----------------------------Information------------------------------------------------ +Name : Easy-Clanpage 2.1 http://www.easy-clanpage.de /?section=downloads&action=viewdl&id=16 +Price : for free +Language : PHP +Discovered by Easy Laster +Security Group...
uHTTP Server GET Request Directory Traversal Vulnerability
uHTTP Server is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this issue will allow an attacker to view arbitrary local files and directories within the context of the webserver. Information harvested may aid in launching...
Joomla Alert SQL Injection
Title: Joomla Component comalert&qitem SQL Injection Vulnerability Author: N2n-Hacker Date: 2010-03-17 Script: Joomla Joomla comalert&qitem Sql Injection Vulnerability N2n-Hacker ----- [email protected] Searching = "?option=comalert" ==...
Joomla As SQL Injection
Title:Joomla comas Sql Injection Vulnerability Author: N2n-Hacker Date:2010-03-11 Script: --Joomla-- Joomla comas Sql Injection Vulnerability N2n-Hacker m9awda 3lya from Algeria mizirya o tahya ljazayer Searching:index.php?option=comas&as=100 exploiting:...
Joomla! Component com_bidding - SQL Injection
Joomla combidding Sql Injection Vulnerability N2n-Hacker ----- [email protected] Searching = "option=combidding" == http://www.site.com/index.php?option=combidding&id=200' Exploiting = http://www.site.com/index.php?option=combidding&id=-200 UNION ALL SELECT 1,2,...
Natychmiast CMS - Multiple Cross-Site Scripting / SQL Injections
source: https://www.securityfocus.com/bid/38561/info Natychmiast CMS is prone to multiple cross-site scripting and SQL-injection vulnerabilities. Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, control how the site is rendered to the user,...
DokuWiki < 2009-12-25b Multiple Vulnerabilities
DokuWiki is prone to an information disclosure vulnerability and to multiple security bypass vulnerabilities. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier...
Snitz Forums 2000 'X-Forwarded-For' SQL Injection Vulnerability
Snitz Forums 2000 is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...
XOOPS 'include/notification_update.php' SQL Injection Vulnerability
XOOPS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right...
Wbb3 - Blind SQL Injection
Wbb3 - Blind SQL Injection !/usr/bin/perl -w use strict; use LWP::Simple; $| = 1; print q ----------------------------------------------- Wbb3 Blind Sql Injection Injection in Announce Plugin Kleinanzeigen Markt Coded By Molli use: ano.pl url user id Announce Catid Google:...
Wbb3 - Blind SQL Injection
!/usr/bin/perl -w use strict; use LWP::Simple; $| = 1; print q ----------------------------------------------- Wbb3 Blind Sql Injection Injection in Announce Plugin Kleinanzeigen Markt Coded By Molli use: ano.pl url user id Announce Catid Google: "inurl:index.php?page=Announceshow" Special greetz...
webMathematica XSS Vulnerability
No description provided by source. In some installations, the MSP script of webMathematica is vulnerable to reflected XSS. Just insert a backslash after the script name MSP, which is normally located under the "webMathematica" folder: http://www.example.com/webMathematica/MSP\scriptalert'a'/scrip...
iWeb Server Directory Traversal Vulnerability (Dec 2009) - Active Check
iWeb Server is prone to a directory traversal vulnerability because the application fails to sufficiently sanitize user-supplied input. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holder...
Torrent Swarm Poisoning
=== Credits === Written by Burningmace. Thanks to Blindkilla for helping me out. === Introduction === The BitTorrent protocol identifies peers using a tracker. Each peer announces itself to the tracker via HTTP. Certain parameters in the announce request itself can be altered in order to fake the...