Lucene search
+L

142 matches found

zdt
zdt
added 2008/06/23 12:0 a.m.37 views

HoMaP-CMS 0.1 (index.php go) Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications =============================================================== HoMaP-CMS 0.1 index.php go Remote SQL Injection Vulnerability ===============================================================...

7.1AI score
Exploits0
seebug
seebug
added 2008/06/20 12:0 a.m.14 views

Carscripts Classifieds (index.php cat) Remote SQL Injection Vulnerability

No description provided by source. Carscripts Classifieds Sql INjection By Stack Home v4-team.com + : you can see the Result in 'Title' + : Open the source page to see the result poc : http://site.co.il/index.php?cat=-1//UNION//SELECT//concatchar58,user,version,database,2,3/ live demo...

7.1AI score
Exploits0
nvd
nvd
added 2008/04/15 5:5 p.m.13 views

CVE-2008-1787

Multiple cross-site scripting XSS vulnerabilities in index.php in Poplar Gedcom Viewer 2.0 allow remote attackers to inject arbitrary web script or HTML via the 1 text and 2 ul parameters. NOTE: the provenance of this information is unknown; the details are obtained solely from third party...

4.3CVSS5.7AI score0.01465EPSS
Exploits1References4
exploitdb
exploitdb
added 2008/04/05 12:0 a.m.36 views

Picture Rating 1.0 - Blind SQL Injection

!/usr/bin/perl -- Picture Rating 1.0 Blind SQL Injection Exploit -- -Info/Instructions- After running this perl script, you will have admin details therefore you will be able to login to the admin area at http://site.com/control/ ok once you have logged in has admin you can upload a shell, click...

7.4AI score
Exploits0
packetstorm
packetstorm
added 2008/03/26 12:0 a.m.23 views

phpaddressbook-sql.txt

php-addressbook v2.0 SQL Injection Vulnerbility admin Authentication bypass Virangar Security Team www.virangar.org www.virangar.net -------- Discoverd By : hadihadi special tnx to:MR.nosrati,black.shadowes,MR.hesy,Zahra & all virangar members & all iranian hackerz greetz:to my best friend in the...

7.4AI score
Exploits0
prion
prion
added 2008/02/13 9:0 p.m.14 views

Sql injection

SQL injection vulnerability in index.php in the comiomezun component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in an edit action...

7.5CVSS9.1AI score0.01051EPSS
Exploits0References3
zdt
zdt
added 2008/01/22 12:0 a.m.18 views

SetCMS 3.6.5 (setcms.org) Remote Command Execution Exploit

Exploit for unknown platform in category web applications ========================================================== SetCMS 3.6.5 setcms.org Remote Command Execution Exploit ========================================================== !/usr/bin/perl SetCMS v3.6.5 setcms.org remote commands executio...

7.1AI score
Exploits0
zdt
zdt
added 2007/12/30 12:0 a.m.44 views

w-Agora <= 4.2.1 (cat) Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications ========================================================= w-Agora = 4.2.1 cat Remote SQL Injection Vulnerability ========================================================= W-Agora = 4.2.1 Class: SQL Injection Found: 30/12/2007 Remote: Yes...

7.1AI score
Exploits0
zdt
zdt
added 2007/12/24 12:0 a.m.17 views

ThemeSiteScript 1.0 (index.php loadadminpage) RFI Vulnerability

Exploit for unknown platform in category web applications =============================================================== ThemeSiteScript 1.0 index.php loadadminpage RFI Vulnerability =============================================================== . . NN NNNN JNNN NNNN. NNN NNNNNNNNNNN NN NN...

7.1AI score
Exploits0
seebug
seebug
added 2007/12/06 12:0 a.m.12 views

ezContents 1.4.5 (index.php link) Remote File Disclosure Vulnerability

No description provided by source. -------------------------------------------------------------- ezContents Version 1.4.5 Remote File Disclosure Vulnerability. -------------------------------------------------------------- download : http://www.visualshapers.com/ author : p4imi0 contact :...

7.1AI score
Exploits0
cvelist
cvelist
added 2007/11/10 2:0 a.m.20 views

CVE-2007-5920

index.php in Domenico Mancini PicoFlat CMS before 0.4.18 allows remote attackers to include certain files via unspecified vectors, possibly due to a directory traversal vulnerability. NOTE: this can be leveraged to bypass authentication and upload files by including picoinsert.php or unspecified...

7.2AI score0.02251EPSS
Exploits0References5
packetstorm
packetstorm
added 2007/11/05 12:0 a.m.19 views

nuboard-rfi.txt

nuBoard 0.5 index.php site Remote File Inclusion Vulnerability http://switch.dl.sourceforge.net/sourceforge/nuboard/nuboardv0.5.tar.gz /nuboardv0.5/admin/index.php?site=http://localhost/scripts/020.txt?...

7.4AI score
Exploits0
prion
prion
added 2007/08/14 6:17 p.m.22 views

Design/Logic Flaw

index.php in Ryan Haudenschilt Family Connections FCMS before 0.9 allows remote attackers to access an arbitrary account by placing the account's name in the value of an fcmsloginid cookie. NOTE: this can be leveraged for code execution via a POST with PHP code in the content parameter...

10CVSS8AI score0.08925EPSS
Exploits1References10Affected Software1
ptsecurity
ptsecurity
added 2007/08/07 12:0 a.m.11 views

PT-2007-5361 · Xuyiyang · Blue Memories Theme

Cross-site scripting XSS vulnerability in index.php in the Blue Memories theme 1.5 for WordPress allows remote attackers to inject arbitrary web script or HTML via the s parameter, possibly a related issue to CVE-2007-2757 and CVE-2007-4014. NOTE: the provenance of this information is unknown; th...

6.8CVSS5.6AI score0.04897EPSS
Exploits0References6
cvelist
cvelist
added 2007/07/26 7:0 p.m.24 views

CVE-2007-4028

Absolute path traversal vulnerability in index.php in Webspell 4.01.02 allows remote attackers to include and execute arbitrary local files via a full pathname in the site parameter. NOTE: some of these details are obtained from third party information...

7AI score0.01523EPSS
Exploits1References5
exploitpack
exploitpack
added 2007/04/26 12:0 a.m.9 views

PHPBandManager 0.8 - index.php?pg Remote File Inclusion

PHPBandManager 0.8 - index.php?pg Remote File Inclusion author:koray greetz:cigicigi.net script:http://sourceforge.net/projects/phpbandmanager allowurlfopen:on or registerglobals:on vuln; /bandmanager/suite/index.php include$GET'pg'.".php"; example; http://www.victim.com/suite/index.php?pg=shell...

0.6AI score
Exploits0
cvelist
cvelist
added 2007/03/23 12:0 a.m.28 views

CVE-2007-1612

SQL injection vulnerability in index.php in Katalog Plyt Audio 1.0 and earlier allows remote attackers to execute arbitrary SQL commands via the kolumna parameter...

8.2AI score0.01224EPSS
Exploits0References6
osv
osv
added 2007/03/10 10:19 p.m.4 views

DEBIAN-CVE-2007-1395

Incomplete blacklist vulnerability in index.php in phpMyAdmin 2.8.0 through 2.9.2 allows remote attackers to conduct cross-site scripting XSS attacks by injecting arbitrary JavaScript or HTML in a 1 db or 2 table parameter value followed by an uppercase end tag, which bypasses the protection...

4.3CVSS5.7AI score0.0142EPSS
Exploits1References1
exploitdb
exploitdb
added 2007/03/10 12:0 a.m.43 views

HC Newssystem 1.0-1.4 - &#039;index.php?ID&#039; SQL Injection

HC NEWSSYSTEM 1.0-4 index.php "ID" Blind SQL Injection Type : SQL Injection Release Date : 2007-03-08 Product / Vendor : HC Design News Publisher. http://www.hcdesign.at/demo Bug : http://localhost/script/index.php?option=news&aktion=komm&ID=-SQL Inj.- SQL Inj Code : Admin Username/Password Query...

7AI score
Exploits0
packetstorm
packetstorm
added 2007/02/24 12:0 a.m.36 views

flashgame154-rfi.txt

-------------------------------------------------------- Author : JuMp-Er Date : feb, 21th 2007 Level : Dangerous contact: : aH-crewathotmaildotcom -------------------------------------------------------- Software description -------------------------------------------------------- App...

7.4AI score
Exploits0
Rows per page
Query Builder