5 matches found
CVE-2006-4072
Multiple SQL injection vulnerabilities in Club-Nuke XP 2.0 LCID 2048 allow remote attackers to execute arbitrary SQL commands via the 1 haberid parameter to haberdetay.asp, and allow remote authenticated users to execute arbitrary SQL commands via the 2 menuid parameter to menu.asp...
CVE-2006-4072
Multiple SQL injection vulnerabilities affect Club-Nuke [XP] 2.0 LCID 2048. The flaws allow remote attackers to execute arbitrary SQL commands via the (1) haber_id parameter to haber_detay.asp and (2) menu_id parameter to menu.asp. Root cause: unsafely constructed SQL queries leading to injection...
CilemNews System 1.1 - 'yazdir.asp' haber_id SQL Injection
!/usr/bin/perl Method found & Exploit scripted by nukedx Contacts ICQ: 10072 MSN/Main: [email protected] web: www.nukedx.com Usage: cilem.pl Original Advisory: http://www.nukedx.com/?viewdoc=10 googledork inurl:yazdir.asp?haberid= 2.140 pages... use IO::Socket; if@ARGV + + Example: cilem.pl sux.c...
CilemNews System 1.1 - yazdir.asp haber_id SQL Injection
CilemNews System 1.1 - yazdir.asp haberid SQL Injection !/usr/bin/perl Method found & Exploit scripted by nukedx Contacts ICQ: 10072 MSN/Main: [email protected] web: www.nukedx.com Usage: cilem.pl Original Advisory: http://www.nukedx.com/?viewdoc=10 googledork inurl:yazdir.asp?haberid= 2.140...
Sql injection
SQL injection vulnerability in yazdir.asp in Cilem Hiber 1.1 allows remote attackers to execute arbitrary SQL commands via the haberid parameter. NOTE: this product has also been referred to as "Cilem News," although that does not appear to be the proper name...