4 matches found
Code injection
Direct static code injection vulnerability in admin/configuration.php in Guestbara 1.2 and earlier allows remote authenticated users to inject arbitrary PHP code into config.php via the 1 adminmail, 2 emotpatch, 3 login, 4 pass, and unspecified other parameters. NOTE: the provenance of this...
Code injection
admin/configuration.php in Guestbara 1.2 and earlier allows remote attackers to modify the e-mail, name, and password of the admin account by setting the zapis parameter to "ok" and providing modified adminmail, login, and pass parameters...
CVE-2007-1554
Direct static code injection vulnerability in admin/configuration.php in Guestbara 1.2 and earlier allows remote authenticated users to inject arbitrary PHP code into config.php via the 1 adminmail, 2 emotpatch, 3 login, 4 pass, and unspecified other parameters. NOTE: the provenance of this...
Guestbara <= 1.2 Change Admin Login and Password Exploit
Exploit for unknown platform in category web applications ======================================================== Guestbara Guestbara Admin Email Admin Name Admin Pass by Kacper for DEVIL TEAM script download: http://www.hotscripts.pl/produkt-3051.html Greetz @ll DEVIL TEAM 0day.today 2018-04-11...