CmsFaethon 2.2.0 (info.php item) SQL Command Injection Exploit

No description provided by source. !/usr/bin/perl |----------------------------------------------------------------------------------------------------------------------------------| | INFORMATIONS |...

Cross site scripting

Cross-site scripting XSS vulnerability in info.php in Bandwebsite aka Bandsite portal system 1.5 allows remote attackers to inject arbitrary web script or HTML via the section parameter...

Mole Group Airline Ticket Script - SQL Injection

|| || | || o,7 || . o7 || 4||| ow, : / / . |-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=| | | | /' \ /'\ /\ \ /'\ /\ \ | | /, \ /\/\L\ \ \ \ ,/\ /\ \ \ \ / | | //\ \ /' \ /\ //\ Kings of injection | | // | | |...

CVE-2008-4207

CVE-2008-4207 affects Attachmax Dolphin 2.1.0 and earlier. The vulnerability is an information disclosure where an improperly protected info.php in the main folder can be accessed via a direct request that invokes the phpinfo function, allowing remote attackers to obtain sensitive information. Th...

Attachmax Dolphin <= 2.1.0 Multiple Remote Vulnerabilities

Exploit for unknown platform in category web applications ========================================================== Attachmax Dolphin = 2.1.0 Multiple Remote Vulnerabilities ==========================================================...

Attachmax Dolphin 2.1.0 - Multiple Vulnerabilities

\ /\ \ / | \ \ | / \ // / | \ | \ \ Y / | \ / / \ /| /\ / / / / / .OR.ID ECHOADV101$2008 ----------------------------------------------------------------------------------------- ECHOADV101$2008 Attachmax Dolphin = 2.1.0 Multiple Vulnerability...

Information disclosure

XRMS CRM 1.99.2 allows remote attackers to obtain configuration information via a direct request to tests/info.php, which calls the phpinfo function...

Sql injection

SQL injection vulnerability in info.php in C. Desseno YouTube Blog ytb 0.1 allows remote attackers to execute arbitrary SQL commands via the id parameter, a different vector than CVE-2008-3307. NOTE: the provenance of this information is unknown; the details are obtained solely from third party...

CVE-2008-3306

SQL injection vulnerability in info.php in C. Desseno YouTube Blog ytb 0.1 allows remote attackers to execute arbitrary SQL commands via the id parameter, a different vector than CVE-2008-3307. NOTE: the provenance of this information is unknown; the details are obtained solely from third party...

CVE-2008-3306

CVE-2008-3306 targets C. Desseno YouTube Blog (ytb) 0.1. The vulnerability is a SQL injection in info.php that allows remote attackers to execute arbitrary SQL commands via the id parameter (a vector distinct from CVE-2008-3307). Associated records indicate a second, related entry (CVE-2008-3307)...

Sql injection

SQL injection vulnerability in info.php in Project Alumni 1.0.9 allows remote attackers to execute arbitrary SQL commands via the id parameter...

CVE-2008-2118

SQL injection vulnerability in info.php in Project Alumni 1.0.9 allows remote attackers to execute arbitrary SQL commands via the id parameter...

CVE-2008-2118

SQL injection vulnerability (CVE-2008-2118) in Project Alumni 1.0.9, specifically in info.php via the id parameter. The underlying issue allows remote attackers to execute arbitrary SQL commands. This is evidenced by multiple sources (NVD entry and associated records) confirming the flaw and impa...

projectalumni-sql.txt

...:::::project alumni v1.0.9 info.php SQL Injection Vulnerability ::::.... Virangar Security Team www.virangar.net -------- Discoverd By :virangar security teamhadihadi special tnx to:MR.nosrati,black.shadowes,MR.hesy,Zahra & all virangar members & all hackerz greetz:to my best friend in the wor...

domphp-lfi.txt

------------------------------------------------------------- ----- H-T Team HouSSaMix + ToXiC350 from MoroCCo -------- ------------------------------------------------------------- = Author : HouSSaMix From H-T Team = Script : DomPHP 0.82 = Download : http://www.domphp.com/download/ = BUG : Loca...

Directory traversal

Directory traversal vulnerability in info.php in GradMan 0.1.3 and earlier allows remote attackers to include and execute arbitrary local files via a .. dot dot in the tabla parameter, a different vector than CVE-2008-0361...

Gradman 0.1.3 - &#039;info.php&#039; Local File Inclusion

Software: Gradman = 0.1.3 HomePage: http://gradman.xe1ido.com.mx/ Software: Gradman = 0.1.3 Exploit: Local File Inclusion High Dork: "powered by Gradman" Bug Found By: Syndr0me! site: www.remoteexecution.es Where: info.php?tabla= Greetz: S4nt0!, Yubix, Xarnuz, Chame, Electr0cbax, komtec1, f34r +...

Gradman 0.1.3 - info.php Local File Inclusion

Gradman 0.1.3 - info.php Local File Inclusion Software: Gradman = 0.1.3 HomePage: http://gradman.xe1ido.com.mx/ Software: Gradman = 0.1.3 Exploit: Local File Inclusion High Dork: "powered by Gradman" Bug Found By: Syndr0me! site: www.remoteexecution.es Where: info.php?tabla= Greetz: S4nt0!, Yubix...

Gradman &lt;= 0.1.3 (info.php tabla) Local File Inclusion Vulnerability

No description provided by source. Software: Gradman = 0.1.3 HomePage: http://gradman.xe1ido.com.mx/ Software: Gradman = 0.1.3 Exploit: Local File Inclusion High Dork: "powered by Gradman" Bug Found By: Syndr0me! site: www.remoteexecution.es Where: info.php?tabla= Greetz: S4nt0!, Yubix, Xarnuz,...

Doruk100Net - &#039;Info.php&#039; Remote File Inclusion

source: https://www.securityfocus.com/bid/23675/info Doruk100Net is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue may allow an attacker to compromise the application and the underlying system; other attacks are als...