129 matches found
CVE-2005-1943
Multiple SQL injection vulnerabilities in Loki download manager 2.0 allow remote attackers to execute arbitrary SQL commands via the 1 password field to default.asp or 2 cat parameter to catinfo.asp...
CVE-2005-1943
CVE-2005-1943 : The Loki download manager 2.0 contains multiple SQL injection vulnerabilities that could allow remote attackers to execute arbitrary SQL commands via (1) the password field to default.asp or (2) the cat parameter to catinfo.asp. The connected documents confirm the affected product...
2 SQL injection in Loki download manager v2.0
hi all tow SQL injection in Loki download manager 1. in http://localhost/adm/default.asp user: anyuser pass: 'or''=' 2. in http://localhost/downmancv/catinfo.asp?cat=' union select null,null,user,null,null,null,null,null,pass,null,null,null,null,null FROM tblAdm ' and u will have user and pass h4...
CVE-2005-1943
Multiple SQL injection vulnerabilities in Loki download manager 2.0 allow remote attackers to execute arbitrary SQL commands via the 1 password field to default.asp or 2 cat parameter to catinfo.asp...
Loki Download Manager 2.0 - default.asp SQL Injection
Loki Download Manager 2.0 - default.asp SQL Injection source: https://www.securityfocus.com/bid/13898/info Loki Download Manager is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input to the 'default.asp' script befor...
Loki Download Manager 2.0 - Catinfo.asp SQL Injection
Loki Download Manager 2.0 - Catinfo.asp SQL Injection source: https://www.securityfocus.com/bid/13900/info Loki Download Manager is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input to the 'catinfo.asp' script befor...
Loki Download Manager 2.0 - 'default.asp' SQL Injection
source: https://www.securityfocus.com/bid/13898/info Loki Download Manager is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input to the 'default.asp' script before using it in an SQL query. Successful exploitation...
vpn-root.txt
Date: 8-14-00 Time: 12:40p PST / You have been infected by the Bubonic Loki / OVERVIEW --------- RapidStream has hard-coded the 'rsadmin' account into the sshd binary in the appliance OS. The account has been given a 'null' password in which password assignment and authentication was expected to ...
REMOTE EXPLOIT IN ALL CURRENT VERSIONS OF BIG BROTHER
/ Big Brother Exploit For ALL Versions prior to v.1.4h Desc: View the contents of any file on the remote system. Including /etc/passwd or /etc/shadow Contributions: Identified and Proof of Concept by Safety and Loki LoA Greets and shouts to: RootHat, Lammie The Infamous Lamagra! We know wuftpd wa...