CVE-2008-6197

SQL injection vulnerability in index.php in the galerie module for KwsPHP 1.3.456 allows remote attackers to execute arbitrary SQL commands via the idgal parameter in a gal action...

CVE-2008-6197

SQL injection vulnerability in index.php in the galerie module for KwsPHP 1.3.456 allows remote attackers to execute arbitrary SQL commands via the idgal parameter in a gal action...

CVE-2008-6197

CVE-2008-6197 describes a SQL injection vulnerability in the galerie module of KwsPHP 1.3.456, specifically in the index.php script. The flaw allows remote attackers to inject arbitrary SQL via the id_gal parameter used in a gal action. The NVD record lists a high base score (7.5, CVSS2) with net...

KwsPHP (Upload) Remote Code Execution Exploit

?php / ---KwsPHP All Version / Remote Code Execution--- Faille Discovered By TsukasaGenesis && Ajax Sploit Coded By Ajax Site: http://www.r57shell.in / if$argc9 print "---KwsPHP All Version / Remote Code Execution---nn"; print "usage: kwsphpsploit.php -url url -login login -pass pass -email email...

KwsPHP (Upload) Remote Code Execution Exploit

No description provided by source. ?php / ---KwsPHP All Version / Remote Code Execution--- Faille Discovered By TsukasaGenesis && Ajax Sploit Coded By Ajax / if$argc9 print "---KwsPHP All Version / Remote Code Execution---\n\n"; print "usage: kwsphpsploit.php -url url -login login -pass pass -ema...

KwsPHP - Upload Remote Code Execution

KwsPHP - Upload Remote Code Execution -login -pass -email -file -id \n\n"; print "Url url of KwsPHP script : Ex : www.example.com/kwsphp/\n"; print "Login your account's login need to be allow to upload \n"; print "Pass account's password\n"; print "Email account's email\n"; print "File PHP scrip...

KwsPHP - 'Upload' Remote Code Execution

-login -pass -email -file -id \n\n"; print "Url url of KwsPHP script : Ex : www.example.com/kwsphp/\n"; print "Login your account's login need to be allow to upload \n"; print "Pass account's password\n"; print "Email account's email\n"; print "File PHP script upload and execute\n"; print "Id...

kwsphp-exec.txt

-login -pass -email -file -id \n\n"; print "Url url of KwsPHP script : Ex : www.example.com/kwsphp/\n"; print "Login your account's login need to be allow to upload \n"; print "Pass account's password\n"; print "Email account's email\n"; print "File PHP script upload and execute\n"; print "Id...

KwsPHP (Upload) Remote Code Execution Exploit

Exploit for unknown platform in category web applications ============================================= KwsPHP Upload Remote Code Execution Exploit ============================================= -login -pass -email -file -id \n\n"; print "Url url of KwsPHP script : Ex : www.example.com/kwsphp/\n";...

Sql injection

SQL injection vulnerability in the ConcoursPhoto module for KwsPHP allows remote attackers to execute arbitrary SQL commands via the CID parameter to index.php...

CVE-2008-1759

SQL injection vulnerability in the jeuxflash module for KwsPHP allows remote attackers to execute arbitrary SQL commands via the cat parameter to index.php, a different vector than CVE-2007-4922...

CVE-2008-1758

SQL injection vulnerability in the ConcoursPhoto module for KwsPHP allows remote attackers to execute arbitrary SQL commands via the CID parameter to index.php...

Cross site scripting

Cross-site scripting XSS vulnerability in index.php in the ConcoursPhoto module for KwsPHP 1.0 allows remote attackers to inject arbitrary web script or HTML via the VIEW parameter...

CVE-2008-1757

Cross-site scripting XSS vulnerability in index.php in the ConcoursPhoto module for KwsPHP 1.0 allows remote attackers to inject arbitrary web script or HTML via the VIEW parameter...

Sql injection

SQL injection vulnerability in the jeuxflash module for KwsPHP allows remote attackers to execute arbitrary SQL commands via the cat parameter to index.php, a different vector than CVE-2007-4922...

CVE-2008-1759

SQL injection vulnerability in the jeuxflash module for KwsPHP allows remote attackers to execute arbitrary SQL commands via the cat parameter to index.php, a different vector than CVE-2007-4922...

CVE-2008-1757

CVE-2008-1757 describes a Cross-site Scripting (XSS) vulnerability in the index.php of the ConcoursPhoto module for KwsPHP 1.0, where the VIEW parameter can be abused to inject arbitrary script/HTML. Affected software is KwsPHP 1.0 with the ConcoursPhoto module; root cause is improper handling of...

CVE-2008-1758

SQL injection vulnerability in the ConcoursPhoto module for KwsPHP allows remote attackers to execute arbitrary SQL commands via the CID parameter to index.php...

CVE-2008-1757

Cross-site scripting XSS vulnerability in index.php in the ConcoursPhoto module for KwsPHP 1.0 allows remote attackers to inject arbitrary web script or HTML via the VIEW parameter...

CVE-2008-1759

CVE-2008-1759 describes an SQL injection in the jeuxflash module for KwsPHP. The vulnerability allows remote attackers to pass arbitrary SQL commands through the cat parameter to index.php, representing a different vector from CVE-2007-4922. The description in the provided documents specifies the...