CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1494 matches found

CVE•added 2008/08/12 7:0 p.m.•39 views

CVE-2008-3601

The CVE-2008-3601 entry documents a SQL injection vulnerability in Quicksilver Forums 1.4.1. The flaw is triggered in index.php during a search action, where the forums array parameter is used in an SQL query, allowing remote attackers to execute arbitrary SQL commands. Impact and affected compon...

7.5CVSS8.3AI score0.00493EPSS

Exploits0References5Affected Software1

seebug.org•added 2008/08/11 12:0 a.m.•164 views

Quicksilver Forums 1.4.1 forums[] Remote SQL Injection Exploit

No description provided by source. ?php / . vuln.: Quicksilver Forums 1.4.1 forums Remote SQL Injection Exploit . download: http://www.quicksilverforums.com/ . . author: irk4zatyahoo.pl . homepage: http://irk4z.wordpress.com/ . . greets: all friends ; . . this is PoC exploit / $host = $argv1; $pa...

7.1AI score

Exploits0

Exploit DB•added 2008/08/10 12:0 a.m.•41 views

Quicksilver Forums 1.4.1 - SQL Injection

?php / . vuln.: Quicksilver Forums 1.4.1 forums Remote SQL Injection Exploit . download: http://www.quicksilverforums.com/ . . author: irk4zatyahoo.pl . homepage: http://irk4z.wordpress.com/ . . greets: all friends ; . . this is PoC exploit / $host = $argv1; $path = $argv2; $prefix = "qsf"; // th...

7.4AI score

Exploits0

exploitpack•added 2008/08/10 12:0 a.m.•9 views

Quicksilver Forums 1.4.1 - SQL Injection

Quicksilver Forums 1.4.1 - SQL Injection ?php / . vuln.: Quicksilver Forums 1.4.1 forums Remote SQL Injection Exploit . download: http://www.quicksilverforums.com/ . . author: irk4zatyahoo.pl . homepage: http://irk4z.wordpress.com/ . . greets: all friends ; . . this is PoC exploit / $host = $argv...

0.3AI score

Exploits0

0day.today•added 2008/08/10 12:0 a.m.•19 views

Quicksilver Forums 1.4.1 forums[] Remote SQL Injection Exploit

Exploit for unknown platform in category web applications ============================================================== Quicksilver Forums 1.4.1 forums Remote SQL Injection Exploit ============================================================== ?php / . vuln.: Quicksilver Forums 1.4.1 forums Remo...

7.1AI score

Exploits0

Exploit DB•added 2008/07/28 12:0 a.m.•18 views

Web Wiz Forum 9.5 - 'admin_category_details.asp?mode' Cross-Site Scripting

source: https://www.securityfocus.com/bid/30398/info Web Wiz Forums is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in...

7.4AI score

Exploits0

exploitpack•added 2008/07/28 12:0 a.m.•10 views

Web Wiz Forum 9.5 - admin_category_details.asp?mode Cross-Site Scripting

Web Wiz Forum 9.5 - admincategorydetails.asp?mode Cross-Site Scripting source: https://www.securityfocus.com/bid/30398/info Web Wiz Forums is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to...

6.8AI score

Exploits0

exploitpack•added 2008/07/28 12:0 a.m.•19 views

Web Wiz Forum 9.5 - admin_group_details.asp?mode Cross-Site Scripting

Web Wiz Forum 9.5 - admingroupdetails.asp?mode Cross-Site Scripting source: https://www.securityfocus.com/bid/30398/info Web Wiz Forums is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to...

6.8AI score

Exploits0

exploitpack•added 2008/06/10 12:0 a.m.•14 views

ASPPortal Free Version - Topic_Id SQL Injection

ASPPortal Free Version - TopicId SQL Injection --==+=================== Spanish Hackers Team www.spanish-hackers.com =================+==-- --==+ ASPPortal Free Version TopicId Remote SQL Injection Vulnerability +==--...

0.2AI score

Exploits0

Exploit DB•added 2008/06/10 12:0 a.m.•28 views

ASPPortal Free Version - 'Topic_Id' SQL Injection

--==+=================== Spanish Hackers Team www.spanish-hackers.com =================+==-- --==+ ASPPortal Free Version TopicId Remote SQL Injection Vulnerability +==-- --==+====================================================================================+==-- - dreaming of necessity is reas...

7.4AI score

Exploits0

0day.today•added 2008/06/10 12:0 a.m.•22 views

ASPPortal Free Version (Topic_Id) Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications ==================================================================== ASPPortal Free Version TopicId Remote SQL Injection Vulnerability ==================================================================== + Info: Bug found by JosS EspSeC &...

7.1AI score

Exploits0

Prion•added 2008/04/30 12:5 p.m.•13 views

Sql injection

Multiple SQL injection vulnerabilities in PD9 Software MegaBBS 2.2 allow remote attackers to execute arbitrary SQL commands via the 1 invisible and 2 timeoffset parameters to profile/controlpanel.asp and the 3 attachmentid parameter to forums/attach-file.asp...

7.5CVSS9.3AI score0.00569EPSS

Exploits1References5Affected Software1

Cvelist•added 2008/04/30 10:0 a.m.•22 views

CVE-2008-2023

8.5AI score0.00569EPSS

Exploits1References5

Exploit DB•added 2008/04/27 12:0 a.m.•45 views

Megabbs Forum 2.2 - SQL Injection / Cross-Site Scripting

www.BugReport.ir AmnPardaz Security Research Team Title: MegaBBS Forum Multiple Vulnerabilities. Vendor: http://www.pd9soft.com/ Vulnerable Version: 2.2 Exploit: Available Impact: Medium Fix: N/A Original Advisory: http://bugreport.ir/index.php?/37 1. Description: A complete, fully featured ASP...

7.4AI score

Exploits0

NVD•added 2008/03/28 6:44 p.m.•16 views

CVE-2008-1539

SQL injection vulnerability in includes/dynamictitles.php in PHP-Nuke Platinum 7.6.b.5 allows remote attackers to execute arbitrary SQL commands via the p parameter to modules.php for the Forums module...

7.5CVSS8.4AI score0.00462EPSS

Exploits1References3

Prion•added 2008/03/28 6:44 p.m.•13 views

Sql injection

7.5CVSS9.1AI score0.00462EPSS

Exploits1References3Affected Software1

Cvelist•added 2008/03/28 6:0 p.m.•21 views

CVE-2008-1539

8.4AI score0.00462EPSS

Exploits1References3

Packet Storm•added 2008/03/24 12:0 a.m.•30 views

phpnukeplat-sql.txt

!/usr/bin/perl Inphex use LWP::UserAgent; use LWP::Simple; use IO::Socket; use Switch; PHP-Nuke Platinum , ForumsStandart - magicquotesgpc = OFF , SQL Injection nukeusers Structure: userid name username useremail femail userwebsite useravatar userregdate usericq userocc userfrom userinterests...

7.4AI score

Exploits0

seebug.org•added 2008/03/23 12:0 a.m.•49 views

PHP-Nuke Platinum 7.6.b.5 (dynamic_titles.php) SQL Injection Exploit

No description provided by source. !/usr/bin/perl Inphex use LWP::UserAgent; use LWP::Simple; use IO::Socket; use Switch; PHP-Nuke Platinum , ForumsStandart - magicquotesgpc = OFF , SQL Injection nukeusers Structure: userid name username useremail femail userwebsite useravatar userregdate usericq...

7.1AI score

Exploits0

0day.today•added 2008/03/22 12:0 a.m.•34 views

PHP-Nuke Platinum 7.6.b.5 (dynamic_titles.php) SQL Injection Exploit

Exploit for unknown platform in category web applications ==================================================================== PHP-Nuke Platinum 7.6.b.5 dynamictitles.php SQL Injection Exploit ==================================================================== !/usr/bin/perl Inphex use...

7.1AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by