Lucene search
K

50 matches found

exploitpack
exploitpack
added 2006/08/23 12:0 a.m.42 views

Integramod Portal 2.x - functions_portal.php Remote File Inclusion

Integramod Portal 2.x - functionsportal.php Remote File Inclusion !/usr/bin/perl Method found and exploit scripted by nukedx Contacts ICQ: 10072 Web: http://www.nukedx.com MAIL/MSN: [email protected] Original advisory can be found at: http://www.nukedx.com/?viewdoc=47 Integramod Portal Copyright...

Exploits0
NVD
NVD
added 2006/06/13 1:2 a.m.13 views

CVE-2006-2985

SQL injection vulnerability in index.php in IntegraMOD 1.4.0 and earlier allows remote attackers to execute arbitrary SQL commands via double-encoded "'" characters in the STYLEURL parameter...

7.5CVSS8.4AI score0.01299EPSS
Exploits1References4
NVD
NVD
added 2006/06/13 1:2 a.m.9 views

CVE-2006-2984

Cross-site scripting XSS vulnerability in index.php in IntegraMOD 1.4.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the STYLEURL parameter. NOTE: it is possible that this issue is resultant from SQL injection...

4.3CVSS6.4AI score0.01176EPSS
Exploits0References6
CVE
CVE
added 2006/06/13 1:0 a.m.39 views

CVE-2006-2984

CVE-2006-2984 affects IntegraMOD 1.4.0 and earlier, with an XSS flaw in index.php exploitable via the STYLE_URL parameter. The database entries consistently cite a cross-site scripting issue, with a note that the root cause may be related to SQL injection, but the connected documents do not provi...

4.3CVSS6.7AI score0.01176EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2006/06/13 1:0 a.m.18 views

CVE-2006-2984

Cross-site scripting XSS vulnerability in index.php in IntegraMOD 1.4.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the STYLEURL parameter. NOTE: it is possible that this issue is resultant from SQL injection...

6.4AI score0.01176EPSS
Exploits0References6
CVE
CVE
added 2006/06/13 1:0 a.m.41 views

CVE-2006-2985

This CVE concerns SQL injection in IntegraMOD 1.4.0 (and earlier) via the STYLE_URL parameter in index.php. The root cause is unsafely encoded input (double-encoded a single quote), allowing remote attackers to craft SQL commands. Public records (NVD/NVD-derived CVE listing) confirm the affected ...

7.5CVSS8.8AI score0.01299EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2006/06/13 1:0 a.m.16 views

CVE-2006-2985

SQL injection vulnerability in index.php in IntegraMOD 1.4.0 and earlier allows remote attackers to execute arbitrary SQL commands via double-encoded "'" characters in the STYLEURL parameter...

8.4AI score0.01299EPSS
Exploits1References4
Packet Storm
Packet Storm
added 2006/06/12 12:0 a.m.21 views

integramod.txt

http://target/index.php?STYLEURL=%2527 http://index.php?STYLEURL=;alertsoot;...

Exploits0
securityvulns
securityvulns
added 2006/06/11 12:0 a.m.29 views

[SA20528] IntegraMOD "STYLE_URL" Parameter Cross-Site Scripting

---------------------------------------------------------------------- Want to join the Secunia Security Team? Secunia offers a position as a security specialist, where your daily work involves reverse engineering of software and exploit code, auditing of source code, and analysis of vulnerabilit...

1.5AI score
Exploits0
securityvulns
securityvulns
added 2006/06/09 12:0 a.m.30 views

'Multiple Sql injection and XSS in integramod portal

http://target/index.php?STYLEURL=2527 http://index.php?STYLEURL=script;alertsoot;/script...

0.4AI score
Exploits0
Rows per page
Query Builder