DouPHP 1.1 /guestbook.php SQL注入漏洞

No description provided by source...

DouPHP 1.1 /guestbook.php SQL注入漏洞

No description provided by source...

NETonE PHPBook 1.4.6 Guestbook.PHP Cross Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/14390/info NETonE PHPBook is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input to the 'admin' parameter of the 'guestbook.php' script. A successful exploi...

SimpGB 1.0 Guestbook.PHP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/12801/info SimpGB is reportedly affected by an SQL injection vulnerability. This issue is due to the application failing to properly sanitize user-supplied input passed to the 'guestbook.php' script before using it in a S...

dedecms latest sql injection exploit guestbook. php-vulnerability warning-the black bar safety net

Impact version 5. 7 Vulnerability file edit. inc. php specific code: 0 1 ? php 0 2 if! defined'DEDEINC' exit'Request Error!'; 0 3 0 4 if! empty$COOKIE'GUESTBOOKPOS' $GUESTBOOKPOS =$COOKIE'GUESTBOOKPOS'; 0 5 else $GUESTBOOKPOS = "guestbook.php"; 0 6 0 7 $id = intval$id; 0 8 ifempty$job $job='view'...

Kahf Poems 1.0 - Multiple Vulnerabilities

Title : Kahf Poems V1.0 guestbook.php SQL Injection + Name : Kahf Poems + Affected Version : v1.0 + Software Link : http://www.traidnt.net/vb/traidnt19736/ + Tested on : L:Vista & Windows Xp and Windows 7 + Date : 13/08/2011 + Dork : "intitle:Kahf Poems - v 1.0 beta" &...

SimpGB 1.49.2 - Guestbook.php Multiple Cross-Site Scripting Vulnerabilities

SimpGB 1.49.2 - Guestbook.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/46033/info SimpGB is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to...

CVE-2010-0940

CVE-2010-0940 is a cross-site scripting (XSS) vulnerability in Simple PHP Guestbook 1.0, exploitable via the action parameter in guestbook.php. The affected component is the guestbook submission page; the root cause is reflected/script injection in user-provided input. Expected impact, as stated ...

CVE-2009-2592

The CVE-2009-2592 entry affects PHPJunkYard GBook 1.6, where a flaw in guestbook.php enables SQL injection via the mes_id parameter. This allows remote attackers to potentially run arbitrary SQL commands against the application's database. The vulnerability is described in publicly available sour...

CVE-2009-2592

SQL injection vulnerability in guestbook.php in PHPJunkYard GBook 1.6 allows remote attackers to execute arbitrary SQL commands via the mesid parameter...

fspgb-exec.txt

| | | \ \ \ / / / \ / | / | / | | | | | | \ V / / \ | | | | | | | | | Name required: Write - Mahmood In - Web site without http://: Write - http://tryag.cc In - Message: Write - After All This Go http://www.sanusart.com/php/test/guestbook/guestbook.php?tryag=id See Pictures : 1-...

Unfixed XSS vulnerability at vx.org.ua

Security researcher Uber0n, has submitted on 11/08/2008 a cross-site-scripting XSS vulnerability affecting vx.org.ua, which at the time of submission ranked 116081 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 17/06/2009. It is currently...

CVE-2008-2638

Static code injection vulnerability in guestbook.php in 1Book 1.0.1 and earlier allows remote attackers to upload arbitrary PHP code via the message parameter in an HTML webform, which is written to data.php...

Unfixed Script Insertion vulnerability at gav.sourceforge.net

Security researcher st@rext, has submitted on 07/10/2007 a Script Insertion vulnerability affecting gav.sourceforge.net, which at the time of submission ranked 132 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 07/10/2007. It is currently...

LI-Guestbook SQL Injection Vulnerability

New Advisory: LI-Guestbook SQL Injection Vulnerability http://belsec.com/advisories/139/summary.html --------------------Summary---------------- Belsec ID: BS0001 Vendor: LI-Scripts Vendor's Web Site: http://www.liscripts.net Software: LI-Guestbook Sowtware's Web Site:...

CVE-2006-7076

CVE-2006-7076 affects Advanced Guestbook 2.4 for phpBB, with a cross-site scripting flaw in guestbook.php that lets remote attackers inject arbitrary script or HTML via the entry parameter. The issue is identified as XSS and notes indicate it might originate from SQL injection. Documented impact ...

CVE-2006-7077

SQL injection vulnerability in guestbook.php in Advanced Guestbook 2.4 for phpBB allows remote attackers to execute arbitrary SQl commands via the entry parameter...

DBGuestbook 1.1 (dbs_base_path) Remote File Include Vulnerabilities

Exploit for unknown platform in category web applications =================================================================== DBGuestbook 1.1 dbsbasepath Remote File Include Vulnerabilities =================================================================== DBGuestBook 1.1 Found by Denven ERROR:...

CVE-2007-0926

The CVE-2007-0926 issue affects KvGuestbook 1.0 Beta, specifically the dologin function in guestbook.php. The vulnerability allows remote attackers to gain administrative privileges, probably by manipulating the $mysql['pass'] and $gbpass variables. The available sources confirm the affected comp...

Pie Cart Pro - Inc_Dir Remote File Inclusion

Pie Cart Pro - IncDir Remote File Inclusion ==================================================================== Pie Cart Pro = IncDir Remote File Inclusion Exploit ==================================================================== Critical Level : Dangerous By SnIpErSA...