4 matches found
CVE-2007-3234
SQL injection vulnerability in low.php in Fuzzylime Forum 1.0 allows remote attackers to execute arbitrary SQL commands via the topic parameter...
CVE-2007-3235
CVE-2007-3235 is an XSS in Fuzzylime Forum 1.0, via the topic parameter in low.php. The vulnerability allows remote injection of arbitrary HTML/script. Root cause noted as possible linkage to SQL injection; no explicit exploit details or patch information are provided in the connected documents.
Fuzzylime Forum 1.0 (low.php topic) Remote SQL Injection Exploit
Exploit for unknown platform in category web applications ================================================================ Fuzzylime Forum 1.0 low.php topic Remote SQL Injection Exploit ================================================================ !/usr/bin/perl -w Fuzzylime Forum 1.0 SQL...
Fuzzylime Forum 1.0 - 'low.php?topic' SQL Injection
!/usr/bin/perl -w Fuzzylime Forum 1.0 SQL Injection Exploit Discovered by: Silentz Payload: Admin Username & Hash Retrieval Website: http://www.w4ck1ng.com Vulnerable Code low.php: $gettopicid = mysqlquery"SELECT FROM $tableprefixthreads WHERE threadid='$GETtopic'"; PoC:...