EUVD-2007-1416

Malware in sbrugna...

Unfixed XSS vulnerability at www.sahafium.com

Security researcher BackDoor, has submitted on 15/09/2007 a cross-site-scripting XSS vulnerability affecting www.sahafium.com, which at the time of submission ranked 3333309 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 20/09/2007. It is...

duyuru-sql.txt

Fıstıq Duyuru Scripti Remote Sql İnjection File : goster.asp Sql : -1%20union+all+select+0,kullaniciadi,sifre,3+from+admin Admin Name + Admin Pass Admin Menu: yoneticiii/default.asp Thanks : Ajann , Xoron , ApAci , ErNE , Uyuss , Eno7 , Thehacker , Enjexion .pl Exploit Code : !/usr/bin/perl Scrip...

Sql injection

SQL injection vulnerability in goster.asp in fystyq Duyuru Scripti allows remote attackers to execute arbitrary SQL commands via the id parameter, a different vector than CVE-2007-0688...

CVE-2007-1422

SQL injection vulnerability in goster.asp in fystyq Duyuru Scripti allows remote attackers to execute arbitrary SQL commands via the id parameter, a different vector than CVE-2007-0688...

CVE-2007-1422

CVE-2007-1422 is a SQL injection vulnerability in the goster.asp component of the fystyq Duyuru Scripti, where an attacker can pass the id parameter to execute arbitrary SQL commands. The connected records confirm the affected file and parameter, and state this vector is distinct from CVE-2007-06...