14 matches found
EUVD-2008-6691
Malware in sbrugna...
EUVD-2008-6690
Malware in sbrugna...
Sql injection
Multiple SQL injection vulnerabilities in admin/usercheck.php in FlexPHPLink Pro 0.0.6 and 0.0.7, when magicquotesgpc is disabled, allow remote attackers to execute arbitrary SQL commands via 1 the checkuser parameter aka username field, or 2 the checkpass parameter aka password field, to...
CVE-2008-6731
Unrestricted file upload vulnerability in submitlink.php in FlexPHPLink Pro 0.0.7 allows remote attackers to execute arbitrary PHP code by uploading a file with an executable extension, then accessing it via a direct request to the renamed file in linkphoto/...
CVE-2008-6730
Multiple SQL injection vulnerabilities in admin/usercheck.php in FlexPHPLink Pro 0.0.6 and 0.0.7, when magicquotesgpc is disabled, allow remote attackers to execute arbitrary SQL commands via 1 the checkuser parameter aka username field, or 2 the checkpass parameter aka password field, to...
CVE-2008-6731
Unrestricted file upload vulnerability in submitlink.php in FlexPHPLink Pro 0.0.7 allows remote attackers to execute arbitrary PHP code by uploading a file with an executable extension, then accessing it via a direct request to the renamed file in linkphoto/...
CVE-2008-6730
CVE-2008-6730 affects FlexPHPLink Pro versions 0.0.6 and 0.0.7. The vulnerability is a SQL injection in admin/usercheck.php that can be triggered when magic_quotes_gpc is disabled, allowing remote attackers to alter or disclose data via the checkuser (username) or checkpass (password) fields dire...
CVE-2008-6730
Multiple SQL injection vulnerabilities in admin/usercheck.php in FlexPHPLink Pro 0.0.6 and 0.0.7, when magicquotesgpc is disabled, allow remote attackers to execute arbitrary SQL commands via 1 the checkuser parameter aka username field, or 2 the checkpass parameter aka password field, to...
Flexphplink 0.0.x Authentication Bypass
Autore: x0r Email: [email protected] Site: http://w00tz0ne.altervista.org/index.php Cms: Flexphplink Pro Version: 0.0.7 Download: http://www.china-on-site.com/flexphplink/downloads.html Bug In \admin\usercheck.php $sql = "select username,adminid from linkexadmin where username='$checkuser' and...
Flexphplink Pro File Upload
!/usr/bin/perl HAPPY CHRISTMAS !! Flexphplink Pro http://www.hotscripts.com/jump.php?listingid=21062&jumptype=1 Bug: Arbitrary File Upload I coded this exploit just for fun ; Exploit coded by Osirys osirysatlivedotit http://osirys.org Greets: x0r, miclen, emgent, str0ke, Todd and AlpHaNiX Example...
Flexphplink 0.0.x (Auth Bypass) SQL Injection Vulnerability
Exploit for unknown platform in category web applications =========================================================== Flexphplink 0.0.x Auth Bypass SQL Injection Vulnerability =========================================================== Autore: x0r Cms: Flexphplink Pro Version: 0.0.7 Download:...
Flexphplink 0.0.x (Auth Bypass) SQL Injection Vulnerability
No description provided by source. Autore: x0r Email: [email protected] Site: http://w00tz0ne.altervista.org/index.php Cms: Flexphplink Pro Version: 0.0.7 Download: http://www.china-on-site.com/flexphplink/downloads.html Bug In \admin\usercheck.php $sql = "select username,adminid from...
Flexphplink 0.0.x - Authentication Bypass
Autore: x0r Email: [email protected] Site: http://w00tz0ne.altervista.org/index.php Cms: Flexphplink Pro Version: 0.0.7 Download: http://www.china-on-site.com/flexphplink/downloads.html Bug In \admin\usercheck.php $sql = "select username,adminid from linkexadmin where username='$checkuser' and...
Flexphplink Pro - Arbitrary File Upload
!/usr/bin/perl HAPPY CHRISTMAS !! Flexphplink Pro http://www.hotscripts.com/jump.php?listingid=21062&jumptype=1 Bug: Arbitrary File Upload I coded this exploit just for fun ; Exploit coded by Osirys osirysatlivedotit http://osirys.org Greets: x0r, miclen, emgent, str0ke, Todd and AlpHaNiX Example...