Lucene search
K

13 matches found

Prion
Prion
added 2007/09/17 5:17 p.m.14 views

Sql injection

Multiple SQL injection vulnerabilities in JBlog 1.0 allow 1 remote attackers to execute arbitrary SQL commands via the id parameter to index.php, and allow 2 remote authenticated administrators to execute arbitrary SQL commands via the id parameter to admin/modifpost.php...

7.5CVSS8.9AI score0.00989EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2007/09/17 5:17 p.m.19 views

CVE-2007-4919

Multiple SQL injection vulnerabilities in JBlog 1.0 allow 1 remote attackers to execute arbitrary SQL commands via the id parameter to index.php, and allow 2 remote authenticated administrators to execute arbitrary SQL commands via the id parameter to admin/modifpost.php...

7.5CVSS8.2AI score0.00989EPSS
Exploits1References4
Cvelist
Cvelist
added 2007/09/17 5:0 p.m.19 views

CVE-2007-4919

Multiple SQL injection vulnerabilities in JBlog 1.0 allow 1 remote attackers to execute arbitrary SQL commands via the id parameter to index.php, and allow 2 remote authenticated administrators to execute arbitrary SQL commands via the id parameter to admin/modifpost.php...

8.2AI score0.00989EPSS
Exploits1References4
CVE
CVE
added 2007/09/17 5:0 p.m.47 views

CVE-2007-4919

CVE-2007-4919 involves multiple SQL injection vulnerabilities in JBlog 1.0. The affected components are the index.php id parameter (remote unauthenticated SQL commands) and the admin/modifpost.php id parameter (remote authenticated administrators can also inject SQL). The root cause is improper i...

7.5CVSS8.3AI score0.00989EPSS
Exploits1References4Affected Software1
0day.today
0day.today
added 2007/09/14 12:0 a.m.35 views

JBlog 1.0 (index.php id) Remote SQL Injection Exploit

Exploit for unknown platform in category web applications ===================================================== JBlog 1.0 index.php id Remote SQL Injection Exploit ===================================================== Script....................................: JBlog ver 1.0 Script...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2007/09/14 12:0 a.m.14 views

JBlog 1.0 (index.php id) Remote SQL Injection Exploit

No description provided by source. Script....................................: JBlog ver 1.0 Script Site...........................: http://www.jmuller.net/jblog/index.php Vulnerability........................: Remote SQL injection Exploit Access..................................: Remote...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2007/09/14 12:0 a.m.11 views

JBlog 1.0 - index.php?id SQL Injection

JBlog 1.0 - index.php?id SQL Injection Script....................................: JBlog ver 1.0 Script Site...........................: http://www.jmuller.net/jblog/index.php Vulnerability........................: Remote SQL injection Exploit Access..................................: Remote...

Exploits0
Exploit DB
Exploit DB
added 2007/09/14 12:0 a.m.26 views

JBlog 1.0 - 'index.php?id' SQL Injection

Script....................................: JBlog ver 1.0 Script Site...........................: http://www.jmuller.net/jblog/index.php Vulnerability........................: Remote SQL injection Exploit Access..................................: Remote level.........................................

7.4AI score
Exploits0
NVD
NVD
added 2007/07/25 5:30 p.m.24 views

CVE-2007-3974

admin/ajoutaut.php in JBlog 1.0 does not require authentication, which allows remote attackers to create arbitrary accounts via modified mot and droit parameters...

7.5CVSS6.8AI score0.0367EPSS
Exploits1References8
CVE
CVE
added 2007/07/25 5:0 p.m.49 views

CVE-2007-3973

CVE-2007-3973 affects JBlog 1.0 and involves multiple cross-site scripting (XSS) vulnerabilities. Remote attackers can inject arbitrary web script or HTML through (1) the id parameter to index.php, or (2) the search parameter, or (3) the theme cookie to recherche.php. The root cause is input hand...

6.8CVSS5.8AI score0.02772EPSS
Exploits1References10Affected Software1
securityvulns
securityvulns
added 2007/07/22 12:0 a.m.194 views

JBlog 1.0 Creat Admin exploit, xss, Cookie Manipulation

!-- Script...............: JBlog version: 1.0 Script Site..........: http://www.jmuller.net/jblog Vulnerability........: Creat Admin exploit, xss, Cookie Manipulation Access...............: Remote level................: Dangerous Author...............: S4mi Contact..............:...

6.9AI score
Exploits0
seebug.org
seebug.org
added 2007/07/22 12:0 a.m.15 views

JBlog 1.0 Create / Delete Admin Authentication Bypass Exploit

No description provided by source. !-- Script...............: JBlog version: 1.0 Script Site..........: http://www.jmuller.net/jblog Vulnerability........: Creat Admin exploit, xss, Cookie Manipulation Access...............: Remote level................: Dangerous Author...............: S4mi &nbs...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2007/07/21 12:0 a.m.39 views

JBlog 1.0 - Create / Delete Admin Authentication Bypass

xss Here&pcomm=com cookies Manipulation: -------------------- The POST variable 'search' in /jblog/recherche.php also The Cookie variable 'theme' is affected and can be set to : also we can do this : ' or : ' This is a small exemple of Inject Cookie Xploit Cookie Manipulation ----------------...

7.4AI score
Exploits0
Rows per page
Query Builder