Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.359 views

PHPizabi 0.848b - C1 HFP1 Remote Privilege Escalation Vulnerability

No description provided by source. -------------------------------------------------------------------------------- PHPizabi v0.848b C1 HFP1 proc.inc.php remote privilege escalation php.ini independent by Nine:Situations:Group::bookoo...

7.1AI score
Exploits0
exploitpack
exploitpackadded 2009/03/25 12:0 a.m.105 views

PHPizabi 0.848b C1 HFP1-3 - Arbitrary File Upload

PHPizabi 0.848b C1 HFP1-3 - Arbitrary File Upload date"U"-300 43. 44. fnc"laneMakeToken", "file", $GET"id", array 45. "user.username" = me"username", 46. "file" = "system/cache/temp/".$filename, 47. ; 48. PHPizabi is prone to a vulnerability that lets remote attackers to upload and execute...

0.3AI score
Exploits0
Exploit DB
Exploit DBadded 2009/03/24 12:0 a.m.101 views

PHPizabi 0.8 - 'notepad_body' SQL Injection

source: https://www.securityfocus.com/bid/34223/info PHPizabi is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify data...

7AI score
Exploits0
exploitpack
exploitpackadded 2009/03/23 12:0 a.m.1111 views

PHPizabi 0.848b C1 HFP1-3 - Remote Command Execution

PHPizabi 0.848b C1 HFP1-3 - Remote Command Execution !/usr/bin/php ?php / Found this after getting my inet back and noticing this http://www.milw0rm.com/exploits/6085 . The only problem with the remote command execution there is that it actually requires registerglobals = on. I saw the GLOBAL...

9.3CVSS6.9AI score0.04627EPSS
Exploits7
seebug.org
seebug.orgadded 2008/07/17 12:0 a.m.195 views

PHPizabi 0.848b C1 HFP1 Remote Code Execution Exploit

No description provided by source. !/usr/bin/perl inphex PHPizabi v0.848b C1 HFP1 Remote Code Execution http://www.dz-secure.com/tools/1/WebESploit.pl.txt if you are seeking for a partner to work on some projects just send an email inphex0 at gmail dot com system/vcronproc.php if...

7.1AI score
Exploits0
Prion
Prionadded 2008/02/19 12:0 a.m.32 views

Unrestricted file upload

Unrestricted file upload vulnerability in image.php in PHPizabi 0.848b C1 HFP1 allows remote attackers to execute arbitrary code by uploading a file with an executable extension from the event page, then accessing it via a direct request to the file in system/cache/pictures...

9.3CVSS8.2AI score0.10148EPSS
Exploits0References3Affected Software1
Packet Storm
Packet Stormadded 2008/02/18 12:0 a.m.1864 views

phpizabi-upload.txt

Powered by PHPizabi v0.848b C1 HFP1 remote file upload author: ZoRLu home: www.yildirimordulari.org contact: [email protected] dork: "Powered by PHPizabi v0.848b C1 HFP1" exploit: http://localhost/izabi/system/cache/pictures/idshell.php -first register web site -Create an event on the click an...

7.4AI score
Exploits0
Rows per page
Query Builder