PHPBB 1.x/2.0.x Knowledge Base Module KB.PHP SQL Injection Vulnerability

No description provided by source...

phpBB2 Plus 1.53 (kb.php?mode) SQL Injection Vulnerability

Exploit for unknown platform in category web applications ========================================================== phpBB2 Plus 1.53 kb.php?mode SQL Injection Vulnerability ========================================================== Author : Gamoscu Homepage : http://www.1923turk.com Blog :...

phpbb 2.0.53 kb.php Sql注入漏洞

No description provided by source...

Omnistar Live 7.1 XSS

/ | | \ \ / / | | \ \ / / | |\ \ /\ / / | | | | | | \ V /| | | \ V V / | | || | || / ||| // ,|, | |/ | | | |/ / | ' \ | | / | | | | | | | |||,|| || || Omnistar Live 7.1 Remote XSS Vulnerabilities Discovered By : Moudi Contact : Download : http://www.omnistarlive.com/overview.htm Greetings :...

CVE-2008-2690

Multiple PHP remote file inclusion vulnerabilities in BrowserCRM 5.002.00, when registerglobals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the bcrmpubroot parameter to 1 kb.php, 2 login.php, 3 index.php, 4 contactview.php, and 5 contact.php in pub/, different...

Sql injection

SQL injection vulnerability in kb.php in Fully Modded phpBB phpbbfm 80220 allows remote attackers to execute arbitrary SQL commands via the k parameter in an article action...

CVE-2008-1350

CVE-2008-1350 is a SQL injection vulnerability in the PHPBB mod Fully Modded phpBB (phpbbfm) 80220 . The flaw resides in the file kb.php and is exploitable via the k parameter in an article action, allowing remote attackers to execute arbitrary SQL commands. Primary sources describe the vulnerabi...

Fully Modded phpBB - kb.php SQL Injection

Fully Modded phpBB - kb.php SQL Injection Powered by phpBB © 2001, 2006 phpBB Group Modified by Fully Modded phpBB © 2002, 2006 AUTHOR : TurkishWarriorr HOME : http://www.1923turk.org DORKS 1 : allinurl :kb.php?mode=article&k DORKS 2 : article&k= DORKS 3 : "Powered by phpBB © 2001, 2006 phpBB...

CVE-2007-5724

Multiple cross-site scripting XSS vulnerabilities in Omnistar Live allow remote attackers to inject arbitrary web script or HTML via 1 the categoryid parameter to users/kb.php, and possibly 3 the Email Box field in profile.php...

Omnistar Live - 'KB.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/26234/info Omnistar Live is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user i...

Omnistar Live "id" and "category_id" SQL inj.

Omnistar Live "id" and "categoryid" SQL inj. Vuln. dicovered by : r0t Date 23 nov. 2005 Orginal advisory:http://pridels.blogspot.com/2005/11/omnistar-live-id-and-categoryid-sql.html Affected product version: Omnistar Live 5.2 and prior. http://www.omnistarlive.com Vuln. Description: Input passed ...