BlogPHP v.2 (id) XSS / Remote SQL Injection Exploit

Exploit for unknown platform in category web applications =================================================== BlogPHP v.2 id XSS / Remote SQL Injection Exploit =================================================== !/usr/bin/perl BlogPHP V.2 Multiple Remote Vulnerabilities SQL Injection Exploit/XSS...

CVE-2002-2330

Cross-site scripting XSS vulnerability in stat.pl in StatsPlus 1.25 allows remote attackers to inject arbitrary web script or HTML via 1 HTTPUSERAGENT or 2 HTTPREFERER, which is written to stats.html and executed in client browsers...

CVE-2002-2246

Technical details are not publicly available in the provided documents. Monitor for updates.

CVE-2007-4540

Multiple SQL injection vulnerabilities in download.php in Olate Download od 3.4.2 allow remote attackers to execute arbitrary SQL commands via the 1 HTTPREFERER or 2 HTTPUSERAGENT HTTP header...

Sql injection

Multiple SQL injection vulnerabilities in download.php in Olate Download od 3.4.2 allow remote attackers to execute arbitrary SQL commands via the 1 HTTPREFERER or 2 HTTPUSERAGENT HTTP header...

CVE-2007-4540

Multiple SQL injection vulnerabilities in download.php in Olate Download od 3.4.2 allow remote attackers to execute arbitrary SQL commands via the 1 HTTPREFERER or 2 HTTPUSERAGENT HTTP header...

CVE-2007-3686

CRLF injection vulnerability in db.php in Unobtrusive Ajax Star Rating Bar before 1.2.0 allows remote attackers to inject arbitrary HTTP headers and data via CRLF sequences in the HTTPREFERER parameter...

bbsxp sql latest version 0day-vulnerability warning-the black bar safety net

bbsxp some time ago a log injection vulnerability, this vulnerability is still present in this place. ! References the reference content sub LogMessage if Request. ServerVariables"QueryString""" then QueryString="?"& amp;Request. ServerVariables"QueryString"&"" Conn. Execute"insert into BBSXPLog...

CVE-2006-2586

Cross-site scripting XSS vulnerability in IpLogger 1.7 and earlier allows remote attackers to inject arbitrary HTML or web script via the HTTPREFERER header in an HTTP request...

Cross site scripting

Cross-site scripting XSS vulnerability in IpLogger 1.7 and earlier allows remote attackers to inject arbitrary HTML or web script via the HTTPREFERER header in an HTTP request...

CVE-2006-2586

IpLogger 1.7 and earlier is affected by an XSS vulnerability: remote attackers can inject arbitrary HTML/JavaScript via the HTTP_REFERER header in an HTTP request. The NVD entry confirms the issue for IpLogger 1.7 and earlier, with a base score of 5.8 (MEDIUM) and network attack vector. The docum...

CVE-2006-2586

Cross-site scripting XSS vulnerability in IpLogger 1.7 and earlier allows remote attackers to inject arbitrary HTML or web script via the HTTPREFERER header in an HTTP request...

EV0083.txt

New eVuln Advisory: E-Blah Platinum 'Referer' XSS Vulnerability http://evuln.com/vulns/83/summary.html --------------------Summary---------------- eVuln ID: EV0083 CVE: CVE-2006-0829 Software: E-Blah Platinum Sowtware's Web Site: http://www.eblah.com Versions: 9.7 Critical Level: Moderate Type:...

[eVuln] E-Blah Platinum 'Referer' XSS Vulnerability

New eVuln Advisory: E-Blah Platinum 'Referer' XSS Vulnerability http://evuln.com/vulns/83/summary.html --------------------Summary---------------- eVuln ID: EV0083 CVE: CVE-2006-0829 Software: E-Blah Platinum Sowtware's Web Site: http://www.eblah.com Versions: 9.7 Critical Level: Moderate Type:...

CVE-2006-0829

Cross-site scripting vulnerability in E-Blah Platinum 9.7 allows remote attackers to inject arbitrary web script or HTML via the referer HTTPREFERER, which is not sanitized when the log file is viewed by the administrator using "Click Log"...

CVE-2006-0829

E-Blah Platinum 9.7 is affected by CVE-2006-0829: a Referer (HTTP_REFERER) XSS vulnerability in the log viewer (“Click Log”). The underlying issue is inadequate sanitization of the Referer leading to execution of arbitrary script when an administrator loads the Log. Reports indicate remote exploi...

CVE-2006-0829

Cross-site scripting vulnerability in E-Blah Platinum 9.7 allows remote attackers to inject arbitrary web script or HTML via the referer HTTPREFERER, which is not sanitized when the log file is viewed by the administrator using "Click Log"...

CVE-2006-0461

Cross-site scripting XSS vulnerability in core.input.php in ExpressionEngine 1.4.1 allows remote attackers to inject arbitrary web script or HTML via HTTPREFERER referer...

Cross site scripting

Cross-site scripting XSS vulnerability in core.input.php in ExpressionEngine 1.4.1 allows remote attackers to inject arbitrary web script or HTML via HTTPREFERER referer...

CVE-2006-0461

CVE-2006-0461 : The provided connected documents identify a cross-site scripting (XSS) vulnerability in ExpressionEngine 1.4.1, specifically in the file core.input.php, exploitable via HTTP_REFERER (referer). The vulnerability allows remote attackers to inject arbitrary web script or HTML, potent...