32 matches found
EUVD-2005-1495
Malware in sbrugna...
CVE-2024-9838 Auto Affiliate Links < 6.4.7 - Admin+ SQL Injection
The Auto Affiliate Links WordPress plugin before 6.4.7 does not sanitize and escape a parameter before using it in a SQL statement, allowing admins to perform SQL injection attacks...
CVE-2024-34386
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Lucian Apostol Auto Affiliate Links.This issue affects Auto Affiliate Links: from n/a through 6.4.3.1...
Gossamer Threads Links 2.x User.CGI Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/13484/info Gossamer Threads Links is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have...
Hot Links SQL-PHP - Multiple Cross Site Scripting Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/29632/info Hot Links SQL-PHP is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code i...
Hot Links SQL-PHP 'news.php' SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/31118/info Hot Links SQL-PHP is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to...
[eVuln.com] report.cgi SQL inj in Hot Links SQL (CGI version)
New eVuln Advisory: report.cgi SQL inj in Hot Links SQL http://evuln.com/vulns/141/summary.html -----------Summary----------- eVuln ID: EV0141 Software: Hot Links SQL 3 Vendor: Mrcgiguy Version: 3.2.0 Critical Level: medium Type: SQL injection Status: Unpatched. No reply from developers PoC:...
[eVuln.com] Cookie Auth Bypass in Hot Links SQL
New eVuln Advisory: Cookie Auth Bypass in Hot Links SQL http://evuln.com/vulns/140/summary.html ----------------------- Summary ------------------------- eVuln ID: EV0140 Software: Hot Links SQL 3 Vendor: Mrcgiguy Version: 3.2.0 Critical Level: high Type: Authentication Bypass Status: Unpatched. ...
Hot Links SQL report.cgi SQL Injection
New eVuln Advisory: report.cgi SQL inj in Hot Links SQL http://evuln.com/vulns/141/summary.html -----------Summary----------- eVuln ID: EV0141 Software: Hot Links SQL 3 Vendor: Mrcgiguy Version: 3.2.0 Critical Level: medium Type: SQL injection Status: Unpatched. No reply from developers PoC:...
Hot Links SQL 3.2 - 'report.cgi' SQL Injection
source: https://www.securityfocus.com/bid/45000/info Hot Links SQL is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify...
Hot Links SQL 3.2.0 Administrative Bypass
New eVuln Advisory: Cookie Auth Bypass in Hot Links SQL http://evuln.com/vulns/140/summary.html ----------------------- Summary ------------------------- eVuln ID: EV0140 Software: Hot Links SQL 3 Vendor: Mrcgiguy Version: 3.2.0 Critical Level: high Type: Authentication Bypass Status: Unpatched. ...
CVE-2008-7120
SQL injection vulnerability in Mr. CGI Guy Hot Links SQL-PHP 3 and earlier allows remote attackers to execute arbitrary SQL commands via the news.php parameter...
CVE-2008-7121
CVE-2008-7121 describes an XSS vulnerability in Mr. CGI Guy Hot Links SQL-PHP 3 and earlier, where remote attackers can inject arbitrary web script or HTML through the search bar. The affected component is the SQL-PHP-based search functionality in the product, with exploitation relying on imprope...
MRCGIGUY Hot Links SQL 3.2.0 Insecure Cookie Handling Vuln
No description provided by source. --------------------------------------------------------------- --------------------------------------------------------------- Hot Links SQL / Hot Links SQL-PHP Version 3.2.0 Insecure Cookie Handling Vulnerability...
MRCGIGUY Hot Links SQL 3.2.0 Insecure Cookie Handling Vuln
Exploit for unknown platform in category web applications ========================================================== MRCGIGUY Hot Links SQL 3.2.0 Insecure Cookie Handling Vuln ========================================================== --------------------------------------------------------------...
MRCGIGUY Hot Links SQL 3.2.0 - Insecure Cookie Handling
MRCGIGUY Hot Links SQL 3.2.0 - Insecure Cookie Handling --------------------------------------------------------------- --------------------------------------------------------------- Hot Links SQL / Hot Links SQL-PHP Version 3.2.0 Insecure Cookie Handling Vulnerability...
MRCGIGUY Hot Links SQL 3.2.0 - Insecure Cookie Handling
--------------------------------------------------------------- --------------------------------------------------------------- Hot Links SQL / Hot Links SQL-PHP Version 3.2.0 Insecure Cookie Handling Vulnerability --------------------------------------------------------------- Founder : TiGeR-Dz...
CVE-2008-4379
Cross-site scripting XSS vulnerability in report.php in Mr. CGI Guy Hot Links SQL-PHP 3.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the id parameter...
CVE-2008-4379
CVE-2008-4379 is a cross-site scripting (XSS) vulnerability impacting report.php in Mr. CGI Guy Hot Links SQL-PHP 3.0 and earlier. The flaw allows remote attackers to inject arbitrary web script or HTML via the id parameter, as described in the NVD entry. The reported impact is partial confidenti...
hotlinks-sql.txt
. . | / | | \ \ | / / |\ \ \ |/ // / /\ \ / |/ \ / // | / | | / \ /|\ / / / / \ / \ / / / \ | | /\ /\ / \ | \ // est.2007 / / forum.darkc0de.com --d3hydr8 -rsauron-baltazar -sinner01 -C1c4Tr1Z - beenu ---QKrun1x-P47tr1ck - FeDeReR -MAGE -JeTFyrE and all darkc0de members ---...