1446 matches found
GLLCTS2 <= 4.2.4 - (login.php detail) SQL Injection Exploit
No description provided by source. ?php / 08000000088@M@@@M@2ZZZ8@aZX;ii,,:,iir777777777777777777777777r;i:, i ,@X:i:0a7 BMMM88000000000 08888888882aMMMMM,SZZ0WZ ........ 7a2MMMMM : MMM@aZ888888888 08888888888WMMMMM78aSXi XBMMMMMMMMMMMMMM2: MB.X:. ,SMMMMMMMMMMMM. r: MMM0a8888888888...
Dark Hart Portal (login.php) Remote File Inclusion Vulnerability
No description provided by source. ------------------------------------------------------------------------------------- Dark Portal login.php Remote File Inclusion Vulnerability ------------------------------------------------------------------------------------- Author: CoBRa21 Mail:...
Koobi Pro 6.1 - Gallery (img_id)
No description provided by source. Koobi Pro v6.1 gallery imgid AUTHOR : BILGEKAGAN HOME : http://www.1923turk.biz DORK 1 : allinurl: index.php?p=gallerypic imgid EXPLOiT: index.php?p=gallerypic&imgid=-1+union+select+0,1,2,concatemail,0x3a,pass,4,5,6,7,8+from+kpro6user aDMN PANEL: admin/login.php...
EsContacts 1.0 - login.php msg Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/28825/info EsContacts is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. Attackers may leverage these issues to execute arbitrary script code in the browse...
Easy POS System - SQL Injection (login.php)
No description provided by source...
Indexu 5.0/5.3 login.php error_msg Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/22084/info Indexu is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute in the...
WebCalendar 0.9.x Multiple Module SQL Injection Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/8540/info It has been reported that WebCalendar may be prone to multiple SQL injection issues in the viewt.php, vieww.php, viewv.php, and login.php modules of the software. The problems arise from a lack of sufficient...
DeskPro 2.0.1 Login.PHP HTML Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/23381/info DeskPRO is prone to an HTML-injection scripting vulnerability because the application fails to properly sanitize user-supplied input. Attacker-supplied HTML and script code would execute in the context of the...
MercuryBoard <= 1.1.5 (login.php) Remote Blind SQL Injection Exploit
No description provided by source. ?php / -------------------------------------------------------------------- MercuryBoard = 1.1.5 login.php Remote Blind SQL Injection Exploit -------------------------------------------------------------------- author...: EgiX mail.....: n0b0d13satgmaildotcom...
Infront SQL Injection Vulnerability
No description provided by source. Exploit Title: Infront SQL Injection Vulnerability Date: 12-06-2010 Author: TheMaster [email protected] Software Link: http://www.infront.com/ Version: N/A Tested on: Windows XP SP3 Author : TheMaster [email protected] Dork : intext:Powered by Infront Type of attack :...
AckerTodo 4.2 Login.PHP Multiple SQL Injection Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/20372/info ackerTodo is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries. A successful exploit could allow an attacker t...
phpwcms <= 1.2.6 (Cookie: wcs_user_lang) Local File Include Exploit
No description provided by source. ? print ' ::::::::: :::::::::: ::: ::: ::::::::::: ::: :+: :+: :+: :+: :+: :+: :+: +:+ +:+ +:+ +:+ +:+ +:+ +:+ ++ +:+ +++:++ ++ +:+ ++ ++ ++ ++ ++ ++ ++ ++ ++ + + + +++ + + ::::::::::: :::::::::: ::: :::: :::: :+: :+: :+: :+: +:+:+: :+:+:+ +:+ +:+ +:+ +:+ +:+...
myBloggie 2.1.5 login.php PATH_INFO Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/22097/info MyBloggie is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code...
4xcms 'login.php' Multiple SQL Injection Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/39840/info 4xcms is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to compromi...
ourvideo CMS 9.5 phpi/login.php XSS Vulnerabilities
No description provided by source...
ShopWeezle 2.0 login.php itemID Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/17441/info ShopWeezle is prone to multiple SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. A successful exploit...
PHPEasyData 1.5.4 - admin/login.php username Field SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/29659/info PHPEasyData is prone to multiple SQL-injection and cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage the cross-site scripting issues to...
Spaminator <= 1.7 (page) Remote File Include Vulnerability
No description provided by source. Spaminator 1.7. $page Remote File Include CreW: ToXiC BuG Found By Drago84 SourcE CodE: http://freshmeat.net/redir/spaminator/16281/urltgz/spaminator-1.7.tar.gz Page Affect is: /src/Login.php Problem is include $page.php; Path : Declare $page ExpL:...
psipuss 1.0 - Multiple Remote SQL Injection Vulnerabilities
No description provided by source. ...:::::psipuss version 1.0 SQL Injection Vulnerabilities ::::.... Virangar Security Team www.virangar.net www.virangar.ir -------- Discoverd By :virangar security teamhadihadi special tnx to:MR.nosrati,black.shadowes,MR.hesy,Zahra & all virangar members & all...
Nukeviet 2.0 'admin/login.php' Cookie Authentication Bypass Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/30681/info Nukeviet is prone to an authentication-bypass vulnerability because it fails to adequately verify user-supplied input used for cookie-based authentication. Attackers can exploit this vulnerability to gain...