Lucene search
K

5 matches found

seebug.org
seebug.org
added 2017/10/25 12:0 a.m.35 views

Anonymous SQL Execution in Oracle Advanced Support

A little over a year ago I was performing a penetration test on a client's external environment. One crucial step in any external penetration test is mapping out accessible web servers. The combination of nmap with EyeWitness make this step rather quick as we can perform port scanning for web...

8.1AI score
Exploits0
Packet Storm
Packet Storm
added 2016/06/28 12:0 a.m.30 views

BigTree CMS 4.2.11 SQL Injection

ADVISORY INFORMATION ======================================== Title: BigTree CMS substr$page,1; else // It's an existing page $type = "EDIT"; $pending = false; $existingpage = BigTreeCMS::getPage$page; $existingpendingchange = sqlfetchsqlquery"SELECT id FROM bigtreependingchanges WHERE table =...

0.1AI score
Exploits0
Exploit DB
Exploit DB
added 2016/06/27 12:0 a.m.23 views

BigTree CMS 4.2.11 - SQL Injection

ADVISORY INFORMATION ======================================== Title: BigTree CMS substr$page,1; else // It's an existing page $type = "EDIT"; $pending = false; $existingpage = BigTreeCMS::getPage$page; $existingpendingchange = sqlfetchsqlquery"SELECT id FROM bigtreependingchanges WHERE table =...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2016/06/15 12:0 a.m.35 views

BookingWizz Booking System < 5.5 - Multiple Vulnerabilities

ADVISORY INFORMATION ======================================== Title: BookingWizz Default username/password: admin/pass"; PR2 - Cross Site Scripting ======================================== File : eventList.php // Improper user input validation on Line 24: $serviceID =...

7.4AI score
Exploits0
0day.today
0day.today
added 2016/06/15 12:0 a.m.42 views

BookingWizz Booking System < 5.5 - Multiple Vulnerabilities

Exploit for php platform in category web applications 1. ADVISORY INFORMATION ======================================== Title: BookingWizz Default username/password: admin/pass"; PR2 - Cross Site Scripting ======================================== File : eventList.php // Improper user input...

7.1AI score
Exploits0
Rows per page
Query Builder