19 matches found
EUVD-2008-6342
Malware in sbrugna...
EUVD-2008-7022
Malware in sbrugna...
CVE-2008-7063
Ocean12 FAQ Manager Pro stores sensitive data under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for admin/o12faq.mdb...
CVE-2008-7063
The CVE refers to Ocean12 FAQ Manager Pro, where sensitive data is stored under the web root with insufficient access control. This allows remote attackers to access and download the database via a direct request to admin/o12faq.mdb, exposing data (confidentiality impact noted as partial). The ro...
CVE-2008-6372
SQL injection vulnerability in default.asp in Ocean12 FAQ Manager Pro 1.0 allows remote attackers to execute arbitrary SQL commands via the ID parameter in a Cat action. NOTE: some of these details are obtained from third party information...
Sql injection
SQL injection vulnerability in default.asp in Ocean12 FAQ Manager Pro 1.0 allows remote attackers to execute arbitrary SQL commands via the ID parameter in a Cat action. NOTE: some of these details are obtained from third party information...
CVE-2008-6372
The CVE-2008-6372 entry describes a SQL injection in Ocean12 FAQ Manager Pro 1.0. The vulnerability affects default.asp in the Cat action, where the ID parameter can be manipulated to execute arbitrary SQL commands remotely. The root cause is improper input handling leading to SQL injection. Impa...
Ocean12 FAQ Manager Pro (ID) Blind SQL Injection Vulnerabillity
No description provided by source. --------------------------------------------------------- Portal Name: Ocean12 FAQ Manager Pro Author : Mountassif Moad Evil Finger / v4 Team Vulnerability : Blind Sql Injection --------------------------------------------------------- Exploit :...
ocean12faq-sqlxss.txt
Application: Ocean12 FAQ Manager Pro Vendor Name: Ocean12 Vendors Url: http://ocean12tech.com/ Bug Type: Ocean12 FAQ Manager Pro SQL,XSS Multiple Vulnerabilities Exploitation: Remote Google Dork: "Maintained with the Ocean12 FAQ Manager Pro" SQL POC...
ocean12faq-blindsql.txt
--------------------------------------------------------- Portal Name: Ocean12 FAQ Manager Pro Author : Mountassif Moad Evil Finger / v4 Team Vulnerability : Blind Sql Injection --------------------------------------------------------- Exploit : site.com/?Action=Cat&ID=40%20and%201=1 true...
Ocean12 FAQ Manager Pro - 'Keyword' Cross-Site Scripting
source: https://www.securityfocus.com/bid/32526/info Ocean12 FAQ Manager Pro is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user i...
Ocean12 (Multiple Products) - 'Admin_ID' SQL Injection
source: https://www.securityfocus.com/bid/32527/info Multiple Ocean12 products are prone to an SQL-injection vulnerability because they fail to sufficiently sanitize user-supplied data. A successful exploit may allow an attacker to compromise the application, access or modify data, or exploit...
Ocean12 (Multiple Products) - Admin_ID SQL Injection
Ocean12 Multiple Products - AdminID SQL Injection source: https://www.securityfocus.com/bid/32527/info Multiple Ocean12 products are prone to an SQL-injection vulnerability because they fail to sufficiently sanitize user-supplied data. A successful exploit may allow an attacker to compromise the...
Ocean12 FAQ Manager Pro (ID) Blind SQL Injection Vulnerabillity
Exploit for unknown platform in category web applications =============================================================== Ocean12 FAQ Manager Pro ID Blind SQL Injection Vulnerabillity ===============================================================...
Ocean12 FAQ Manager Pro - ID Blind SQL Injection
Ocean12 FAQ Manager Pro - ID Blind SQL Injection --------------------------------------------------------- Portal Name: Ocean12 FAQ Manager Pro Author : Mountassif Moad Evil Finger / v4 Team Vulnerability : Blind Sql Injection --------------------------------------------------------- Exploit :...
Ocean12 FAQ Manager Pro Database Disclosure Vulnerability
No description provided by source. --------------------------------------------------------- Portal Name: Ocean12 FAQ Manager Pro Author : Mountassif Moad Evil Finger / v4 Team Vulnerability : Database Disclosure Vulnerability --------------------------------------------------------- XPL :...
Ocean12 FAQ Manager Pro Database Disclosure Vulnerability
Exploit for unknown platform in category web applications ========================================================= Ocean12 FAQ Manager Pro Database Disclosure Vulnerability ========================================================= --------------------------------------------------------- Portal...
Ocean12 FAQ Manager Pro - Database Disclosure
Ocean12 FAQ Manager Pro - Database Disclosure --------------------------------------------------------- Portal Name: Ocean12 FAQ Manager Pro Author : Mountassif Moad Evil Finger / v4 Team Vulnerability : Database Disclosure Vulnerability --------------------------------------------------------- X...
Ocean12 FAQ Manager Pro - Database Disclosure
--------------------------------------------------------- Portal Name: Ocean12 FAQ Manager Pro Author : Mountassif Moad Evil Finger / v4 Team Vulnerability : Database Disclosure Vulnerability --------------------------------------------------------- XPL : http://site.com/path//admin/o12faq.mdb De...