EUVD-2010-1388

Malware in sbrugna...

EUVD-2007-2741

Malware in sbrugna...

FAQEngine <= 4.16.03 (question.php questionref) SQL Injection Exploit

No description provided by source. !/usr/bin/perl -w FAQEngine = v4.16.03 SQL Injection Exploit Discovered by: Silentz Payload: Admin Username & Hash Retrieval Website: http://www.w4ck1ng.com Vulnerable Code question.php: $sql = select from .$tableprefix.questions where publish=1 and...

FAQEngine 4.24.00 - Remote File Inclusion vulnerability

No description provided by source. FAQEngine 4.24.00 - Remote File Inclusion vulnerability RFI Author : kaMtiEz [email protected] Homepage : http://www.indonesiancoder.com Date : January 6, 2010 Software Information + Vendor : http://www.boesch-it.de/ + Download :...

Remote file inclusion

Multiple PHP remote file inclusion vulnerabilities in FAQEngine 4.24.00 allow remote attackers to execute arbitrary PHP code via a URL in the pathfaqe parameter to 1 attachs.php, 2 backup.php, 3 badwords.php, 4 categories.php, 5 changepw.php, 6 colorchooser.php, 7 colorwheel.php, 8 dbfiles.php, 9...

CVE-2010-1360

Multiple PHP remote file inclusion vulnerabilities in FAQEngine 4.24.00 allow remote attackers to execute arbitrary PHP code via a URL in the pathfaqe parameter to 1 attachs.php, 2 backup.php, 3 badwords.php, 4 categories.php, 5 changepw.php, 6 colorchooser.php, 7 colorwheel.php, 8 dbfiles.php, 9...

CVE-2010-1360

CVE-2010-1360 affects FAQEngine 4.24.00. It involves multiple PHP remote file inclusion vulnerabilities that allow an attacker to execute arbitrary PHP code by supplying a URL in the path_faqe parameter to any of 13 PHP entry points (attachs.php, backup.php, badwords.php, categories.php, changepw...

CVE-2010-1360

Multiple PHP remote file inclusion vulnerabilities in FAQEngine 4.24.00 allow remote attackers to execute arbitrary PHP code via a URL in the pathfaqe parameter to 1 attachs.php, 2 backup.php, 3 badwords.php, 4 categories.php, 5 changepw.php, 6 colorchooser.php, 7 colorwheel.php, 8 dbfiles.php, 9...

FAQEngine 4.24.00 - Remote File Inclusion

FAQEngine 4.24.00 - Remote File Inclusion vulnerability RFI Author : kaMtiEz [email protected] Homepage : http://www.indonesiancoder.com Date : January 6, 2010 Software Information + Vendor : http://www.boesch-it.de/ + Download : http://www.boesch-it.de/sw/faqengine.php?lang=en + version : 4.24....

FAQEngine 4.24.00 - Remote File Inclusion vulnerability

Exploit for unknown platform in category web applications ======================================================= FAQEngine 4.24.00 - Remote File Inclusion vulnerability ======================================================= Software Information + Vendor : http://www.boesch-it.de/ + Download :...

FAQEngine 4.24.00 Remote File Inclusion

FAQEngine 4.24.00 - Remote File Inclusion vulnerability RFI Author : kaMtiEz [email protected] Homepage : http://www.indonesiancoder.com Date : January 6, 2010 Software Information + Vendor : http://www.boesch-it.de/ + Download : http://www.boesch-it.de/sw/faqengine.php?lang=en + version : 4.24....

FAQEngine &lt;= 4.16.03 (question.php questionref) SQL Injection Exploit

No description provided by source. !/usr/bin/perl -w FAQEngine = v4.16.03 SQL Injection Exploit Discovered by: Silentz Payload: Admin Username & Hash Retrieval Website: http://www.w4ck1ng.com Vulnerable Code question.php: $sql = "select from ".$tableprefix."questions where publish=1 and...

Sql injection

SQL injection vulnerability in question.php in FAQEngine 4.16.03 and earlier allows remote attackers to execute arbitrary SQL commands via the questionref parameter in a display action...

CVE-2007-2749

SQL injection vulnerability in question.php in FAQEngine 4.16.03 and earlier allows remote attackers to execute arbitrary SQL commands via the questionref parameter in a display action...

CVE-2007-2749

CVE-2007-2749 concerns a SQL injection in FAQEngine 4.16.03 and earlier, exploitable via the display action parameter questionref. The vulnerability allows remote attackers to execute arbitrary SQL commands, as documented by NVD and related records. There is no patch/version remediation detail in...

CVE-2007-2749

SQL injection vulnerability in question.php in FAQEngine 4.16.03 and earlier allows remote attackers to execute arbitrary SQL commands via the questionref parameter in a display action...

FAQEngine &lt;= 4.16.03 (question.php questionref) SQL Injection Exploit

No description provided by source. !/usr/bin/perl -w FAQEngine = v4.16.03 SQL Injection Exploit Discovered by: Silentz Payload: Admin Username & Hash Retrieval Website: http://www.w4ck1ng.com Vulnerable Code question.php: $sql = "select from ".$tableprefix."questions where publish=1 and...

FAQEngine <= 4.16.03 (question.php questionref) SQL Injection Exploit

Exploit for unknown platform in category web applications ===================================================================== FAQEngine = 4.16.03 question.php questionref SQL Injection Exploit ===================================================================== !/usr/bin/perl -w FAQEngine =...

FAQEngine 4.16.03 - &#039;question.php?questionref&#039; SQL Injection

!/usr/bin/perl -w FAQEngine = v4.16.03 SQL Injection Exploit Discovered by: Silentz Payload: Admin Username & Hash Retrieval Website: http://www.w4ck1ng.com Vulnerable Code question.php: $sql = "select from ".$tableprefix."questions where publish=1 and questionref=$questionref order by enterdate...