Raw CMS Cross Site Scripting

Exploit Title : Raw Cross Site Scripting Vulnerabilitiy Author : Emperor-Team Discovered By : Am!r Home : http://Emperor-Team.Org Software Link : http://www.weareraw.co.uk/ Security Risk : High Version : All Version Tested on : GNU/Linux Ubuntu - Windows Server - win7 Dork : "Design by Raw"...

Art And Soul Design SQL Injection

Exploit Title: Art And Soul Design SQL Injection Vulnerability Date: 18/01/2012 - 04.24 Author: 3spi0n Software Website: http://www.artandsoul.co.uk/ Tested On: BackTrack 5 - Win7 Ultimate Platform: Php $ Vulnerable File: image.php $ Demo Sites: www.the-picture-box.co.uk/image.php?id=2" SQL...

Ruubik CMS 1.1.0 Local File Inclusion

Exploit Title: Ruubikcms v 1.1.0 /extra/image.php Local File Inclusion Vulnerability Date: 2011/10/16 Author: Sangyun YOO Software Link: http://ruubikcms.com/ruubikcms/download.php?f=ruubikcms110.zip Version: Ruubikcms v 1.1.0 Tested on: Windows 7 Starter K ---------------------------------------...

Ruubikcms 1.1.0 - extraimage.php Local File Inclusion

Ruubikcms 1.1.0 - extraimage.php Local File Inclusion Exploit Title: Ruubikcms v 1.1.0 /extra/image.php Local File Inclusion Vulnerability Date: 2011/10/16 Author: Sangyun YOO Software Link: http://ruubikcms.com/ruubikcms/download.php?f=ruubikcms110.zip Version: Ruubikcms v 1.1.0 Tested on: Windo...

Ruubikcms 1.1.0 - '/extra/image.php' Local File Inclusion

Exploit Title: Ruubikcms v 1.1.0 /extra/image.php Local File Inclusion Vulnerability Date: 2011/10/16 Author: Sangyun YOO Software Link: http://ruubikcms.com/ruubikcms/download.php?f=ruubikcms110.zip Version: Ruubikcms v 1.1.0 Tested on: Windows 7 Starter K ---------------------------------------...

Ruubikcms v 1.1.0 (/extra/image.php) Local File Inclusion

Exploit for php platform in category web applications Exploit Title: Ruubikcms v 1.1.0 /extra/image.php Local File Inclusion Vulnerability Date: 2011/10/16 Author: Sangyun YOO Software Link: http://ruubikcms.com/ruubikcms/download.php?f=ruubikcms110.zip Version: Ruubikcms v 1.1.0 Tested on: Windo...

Sql injection

SQL injection vulnerability in zp-core/full-image.php in Zenphoto 1.3 and 1.3.1.2 allows remote attackers to execute arbitrary SQL commands via the a parameter. NOTE: some of these details are obtained from third party information...

CVE-2010-4909

Multiple cross-site scripting XSS vulnerabilities in PaysiteReviewCMS 1.1 allow remote attackers to inject arbitrary web script or HTML via the 1 q parameter to search.php or the 2 image parameter to image.php...

dz7. 2 HTTP header injection vulnerability-vulnerability warning-the black bar safety net

dz7. 2 HTTP header injection vulnerability 20107/7/, the dz7. 2 header injection vulnerability 20107/7/ image.php to: header header'location: '.$ boardurl.$ thumbfile; $boardurl = htmlspecialchars'http://'.$ SERVER'HTTPHOST'. pregreplace"//+api|archiver|wap?/$/ i", ", substr$PHPSELF, 0,...

SaurusCMS <=upd 4.7.1 Multiple Remote File Inclusion

Exploit for php platform in category web applications 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 +...

PaysiteReviewCMS - &#039;image.php&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/43213/info Mechanical Bunny Media PaysiteReviewCMS is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser o...

PaysiteReviewCMS - image.php Cross-Site Scripting

PaysiteReviewCMS - image.php Cross-Site Scripting source: https://www.securityfocus.com/bid/43213/info Mechanical Bunny Media PaysiteReviewCMS is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues...

snipe Gallery Script - SQL Injection

Exploit Title: snipe gallery Script Sql Injection Date: 26/06/2010 Author: dev!l ghost Email: awsatlivedotit Site : www.h00forall.com Script url: http://sourceforge.net/projects/snipegallery/ Version: 3.1.5 Tested on: Windows CVE : ::::::::::::::::::::::::: =================Exploit===============...

Fa-Ads Bypass / Shell Upload

======================================================================================== | Title : Fa-Ads Auth Bypass Vulnerability | Author : indoushka | email : [email protected] | Home : www.iqs3cur1ty.com | Web Site : http://dl.p30vel.ir/scripts/FaAds.NulL.bY.Eh3an.FaScript.Product.zip |...

e107 my_gallery 2.4.1 File Disclosure

MainHack BrotherHood http://news.serverisdown.org Vrs-hCk OoNBoY Paman bL4Ck3n91n3 Angela Zhang H312Y yooogy mousekill ^-^ loqsa zxvf martfella skulmatic OLiBekaS ulga Cungkee k1tk4t str0ke FUCK TERORIS!! / $vuln = '/e107plugins/mygallery/image.php?file='; $trasv =...

ClearContent (image.php url) RFI/LFI Vulnerability

Exploit for unknown platform in category web applications ================================================== ClearContent image.php url RFI/LFI Vulnerability ==================================================...

Sql injection

SQL injection vulnerability in image.php in Softbiz Banner Ad Management Script allows remote attackers to execute arbitrary SQL commands via the sizeid parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in myColex 1.4.2 allow remote attackers to inject arbitrary web script or HTML via 1 the year parameter to modules/kalender.php, 2 the Page parameter in a List action to modules/ereignis.php, 3 the Kontext parameter in a Search action to...

CVE-2009-1811

Multiple cross-site scripting XSS vulnerabilities in myGesuad 0.9.14 aka 0.9 allow remote attackers to inject arbitrary web script or HTML via 1 the Page parameter in a List action to modules/ereignis.php, 2 the Kontext parameter in a Search action to modules/kategorie.php, 3 the image parameter ...

e-cart.biz Shopping Cart Shell Upload

=-=-Remote Arbitrary File Upload-=-= -=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-=-=-=-=-=-=-=-= script::e-cart Shopping Carts ------------------------------------------------- Author: ahmadbady =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= download from:http://www.e-cart.biz/e-cartFree.zip...