1444 matches found
CVE-2007-2006
Multiple SQL injection vulnerabilities in login.php in pL-PHP beta 0.9 allow remote attackers to execute arbitrary SQL commands via the 1 login or 2 pass parameter...
CVE-2007-2006
CVE-2007-2006 describes multiple SQL injection vulnerabilities in login.php of the pL-PHP beta 0.9. The flaw allows remote attackers to inject SQL commands via the login or pass parameters, enabling arbitrary SQL execution. The referenced sources confirm the affected component and parameters, but...
Sql injection
SQL injection vulnerability in login.php in Ryan Haudenschilt Battle.net Clan Script for PHP 1.5.1 and earlier allows remote attackers to execute arbitrary SQL commands via the 1 user or 2 pass parameter...
battlenet-sql.txt
script : Battle.net Clan Script 1.5 file : login.php attack : injection sql auteur : h a c k e r X code : ------------------------------------------------------------------------------------------ line 9 -- $user = $POST'user'; line 10-- $pass = $POST'pass'; ..... ..... ..... line 21--...
Battle.net Clan Script for PHP 1.5.1 - SQL Injection
Battle.net Clan Script for PHP 1.5.1 - SQL Injection script : Battle.net Clan Script 1.5 file : login.php attack : injection sql auteur : h a c k e r X code : ------------------------------------------------------------------------------------------ line 9 -- $user = $POST'user'; line 10-- $pass ...
CVE-2007-1842
Directory traversal vulnerability in login.php in JSBoard before 2.0.12 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the table parameter, as demonstrated by injecting PHP sequences into an Apache HTTP Server log file, a related issue to CVE-2006-2019...
CVE-2007-1842
CVE-2007-1842 affects JSBoard prior to 2.0.12. It is a directory-traversal in login.php where a .. in the table parameter enables remote attackers to include and execute local files (illustrated by PHP sequences injected into an Apache log). This is a confirmed vulnerability with potential arbitr...
JSBoard 2.0.10 (login.php table) Local File Inclusion Vulnerability
Exploit for unknown platform in category web applications =================================================================== JSBoard 2.0.10 login.php table Local File Inclusion Vulnerability =================================================================== !/usr/bin/perl jsboard 2.0.10login.ph...
Free File Hosting System 1.1 - login.php?AD_BODY_TEMP Remote File Inclusion
Free File Hosting System 1.1 - login.php?ADBODYTEMP Remote File Inclusion source: https://www.securityfocus.com/bid/23118/info Free File Hosting is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow...
CVE-2007-1599
wp-login.php in WordPress allows remote attackers to redirect authenticated users to other websites and potentially obtain sensitive information via the redirectto parameter...
Information disclosure
wp-login.php in WordPress allows remote attackers to redirect authenticated users to other websites and potentially obtain sensitive information via the redirectto parameter...
CVE-2007-1599
wp-login.php in WordPress allows remote attackers to redirect authenticated users to other websites and potentially obtain sensitive information via the redirectto parameter...
CVE-2007-1599
CVE-2007-1599 affects WordPress and is documented across multiple connected sources. The vulnerability enables remote attackers to abuse wp-login.php by manipulating the redirect_to parameter to redirect authenticated users to external sites and potentially disclose sensitive information. The Deb...
CVE-2007-1599
wp-login.php in WordPress allows remote attackers to redirect authenticated users to other websites and potentially obtain sensitive information via the redirectto parameter...
CVE-2007-1599
wp-login.php in WordPress allows remote attackers to redirect authenticated users to other websites and potentially obtain sensitive information via the redirectto parameter...
webcal-rfi.txt
|-------------------------------------------------------------------------------| | | | WebCalendar v0.9.45 13 Dec 2004 login.php Remote File include | | | | Script : WebCalendar | | Version : v0.9.45 13 Dec 2004 | | Authord : Drackanz | | Contact : Drackanz at gmail com | | Vendor :...
WebCalendar 0.9.45 (includedir) Remote File Inclusion Vulnerability
No description provided by source. |-------------------------------------------------------------------------------| | | | WebCalendar v0.9.45 13 Dec 2004 login.php Remote File include | | | | Script : WebCalendar | | Version : v0.9.45 13 Dec 2004 | | Authord : Drackanz | | Contact : Drackanz at...
WebCalendar v0.9.45 (13 Dec 2004) (login.php) Remote File include
|-------------------------------------------------------------------------------| | | | WebCalendar v0.9.45 13 Dec 2004 login.php Remote File include | | | | Script : WebCalendar | | Version : v0.9.45 13 Dec 2004 | | Authord : Drackanz | | Contact : Drackanz at gmail com | | Vendor :...
WebCalendar 0.9.45 (includedir) Remote File Inclusion Vulnerability
Exploit for unknown platform in category web applications =================================================================== WebCalendar 0.9.45 includedir Remote File Inclusion Vulnerability ===================================================================...
WebCalendar 0.9.45 - includedir Remote File Inclusion
WebCalendar 0.9.45 - includedir Remote File Inclusion |-------------------------------------------------------------------------------| | | | WebCalendar v0.9.45 13 Dec 2004 login.php Remote File include | | | | Script : WebCalendar | | Version : v0.9.45 13 Dec 2004 | | Authord : Drackanz | |...