Lucene search
+L

209 matches found

seebug.org
seebug.org
added 2014/07/01 12:0 a.m.103 views

FusionPHP Fusion News 3.3/3.6 X-ForwordedFor PHP Script Code Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/13661/info FusionPHP Fusion News is prone to a remote PHP code injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. This may facilitate unauthorized access. ...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.14 views

LinPHA <= 1.3.3 (maps plugin) Remote Command Execution Exploit

No description provided by source. ?php / -------------------------------------------------------------- LinPHA = 1.3.3 maps plugin Remote Command Execution Exploit -------------------------------------------------------------- author...: EgiX mail.....: n0b0d13satgmaildotcom link.....:...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.30 views

MyCMS <= 0.9.8 - Remote Command Execution Exploit

No description provided by source. !/usr/bin/php -q -d shortopentag=on ? echo MyCMS = 0.9.8 Remote Command Execution Exploit by BlackHawk [email protected] http://itablackhawk.altervista.org Thanks to rgod for the php code and Marty for the Love ; if $argc3 echo Usage: php .$argv0. Host Path C...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.19 views

FLABER <= 1.1 RC1 Remote Command Execution Exploit

No description provided by source. ?php / -------------------------------------------------- FLABER = 1.1 RC1 Remote Command Execution Exploit -------------------------------------------------- author...: EgiX mail.....: n0b0d13satgmaildotcom link.....: http://sourceforge.net/projects/flaber -...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.39 views

Invision Power Board <= 1.3.1 Login.PHP SQL Injection (working)

No description provided by source. ?php / = 1.3.1 Final /str0ke / $server = SERVER; $port = 80; $file = PATH; $target = 81; / User id and password used to fake-logon are not important. '10' is a random number. / $id = 10; $pass = ; $hex = 0123456789abcdef; for$i = 1; $i = 32; $i++ $idx = 0; $foun...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.11 views

Goople <= 1.8.2 (frontpage.php) Blind SQL Injection Exploit

No description provided by source. --+++=========================================================+++-- --+++====== Goople = 1.8.2 Blind SQL Injection Exploit ======+++-- --+++=========================================================+++-- !/usr/bin/php ? function usage echo \n+ Goople = 1.8.2 Blin...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.11 views

phpMDJ <= 1.0.3 (id_animateur) Blind SQL Injection Exploit

No description provided by source. --+++=========================================================+++-- --+++====== phpMDJ = 1.0.3 Blind SQL Injection Exploit ======+++-- --+++=========================================================+++-- ?php function query $usr, $chr, $pos $query = x' OR...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.27 views

blur6ex <= 0.3.462 (ID) Admin Disclosure / Blind SQL Injection Exploit

No description provided by source. !/usr/bin/php -q -d shortopentag=on ? echo blur6ex = 0.3.462 'ID' blind SQL injection / admin credentials disclosure\r\n; echo by rgod [email protected]\r\n; echo site: http://retrogod.altervista.org\r\n; echo dork: \powered by blur6ex\r\n\r\n; / works...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.20 views

CMS Mini <= 0.2.2 - Remote Command Execution Exploit

No description provided by source. --+++================================================================+++-- --+++====== CMS Mini = 0.2.2 Remote Command Execution Exploit ======+++-- --+++================================================================+++-- ?php function usage exit \nCMS Mini =...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.15 views

PhpWebGallery <= 1.7.2 Session Hijacking / Code Execution Exploit

No description provided by source. ?php / ------------------------------------------------------------------------ PhpWebGallery = 1.7.2 Remote Session Hijacking / Code Execution Exploit ------------------------------------------------------------------------ author...: EgiX mail.....:...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.21 views

Mantis Bug Tracker <= 1.1.3 - Remote Code Execution Exploit

No description provided by source. ?php / -------------------------------------------------------------------------------- Mantis Bug Tracker = 1.1.3 manageprojpage.php Remote Code Execution Exploit -------------------------------------------------------------------------------- author...: EgiX...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.15 views

MyCMS <= 0.9.8 - Remote Command Execution Exploit (2 method)

No description provided by source. !/usr/bin/php -q -d shortopentag=on ? echo MyCMS = 0.9.8 Remote Command Execution Exploit 2 method by BlackHawk [email protected] http://itablackhawk.altervista.org Thanks to rgod for the php code and Marty for the Love ; if $argc3 echo Usage: php .$argv0. Ho...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.47 views

Drake CMS <= 0.4.11 Remote Blind SQL Injection Exploit

No description provided by source. ?php / ------------------------------------------------------ Drake CMS = 0.4.11 Remote Blind SQL Injection Exploit ------------------------------------------------------ author...: EgiX mail.....: n0b0d13satgmaildotcom link.....: http://drakecms.sourceforge.net...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.13 views

PHPcounter <= 1.3.2 (index.php name) Remote SQL Injection Exploit

No description provided by source. !/usr/bin/php -q ?php // PHPcounter = 1.3.2 Remote SQL Injection Exploit // Discovered By: StAkeR - StAkeRathotmaildotit // Discovered On: 28/09/2008 // Download: http://sourceforge.net/projects/phpcounter/ errorreporting0; $host = $argv1 or banner; $path = $arg...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.11 views

iPlanet 4.1 Web Publisher Remote Buffer Overflow Vulnerability (2)

No description provided by source. source: http://www.securityfocus.com/bid/2732/info iPlanet Webserver is an http server product offered by the Sun-Netscape Alliance. By sending a specially crafted request composed of at least 2000 characters it is possible to cause a buffer overflow. This could...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.40 views

FreeWebshop <= 2.2.9 R2 (ajax_save_name.php) Remote Code Execution

No description provided by source. ?php / -------------------------------------------------------------------------- FreeWebshop = 2.2.9 R2 ajaxsavename.php Remote Code Execution Exploit -------------------------------------------------------------------------- author.............: Egidio Romano...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.38 views

phpFox <= 3.0.1 (ajax.php) Remote Command Execution Exploit

No description provided by source. ?php / ----------------------------------------------------------- phpFox = 3.0.1 ajax.php Remote Command Execution Exploit ----------------------------------------------------------- author.............: Egidio Romano aka EgiX mail...............:...

6.6AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.23 views

PHP 4/5 Input/Output Wrapper Remote Include Function Command Execution Weakness

No description provided by source. source: http://www.securityfocus.com/bid/10427/info PHP is reportedly affected by an arbitrary command-execution weakness through the PHP 'include' function. This issue is due to a design error that allows the execution of attacker-supplied POST PHP commands whe...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.18 views

Coppermine Photo Gallery <= 1.4.14 Remote SQL Injection Exploit

No description provided by source. ?php RST/GHC PRIVATE CPG 1.4.10 sql injection exploit Date: 17.05.07 bug: SQL injection in private album function through array indexes with COOKIE errorreporting EERROR; inisetmaxexecutiontime,0; intro; if $argc 4 print Usage: . $argv0 . host dir force table...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.19 views

PHP-Nuke 7.x Block-Old_Articles.PHP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/22037/info PHP-Nuke is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...

7.1AI score
Exploits0
Rows per page
Query Builder