10 matches found
EUVD-2009-1908
Malware in sbrugna...
Sql injection
SQL injection vulnerability in manager.php in LuxBum 0.5.5, when magicquotesgpc is disabled and dotclear authentication is used, allows remote attackers to execute arbitrary SQL commands via the username parameter in a login action...
CVE-2009-1913
SQL injection vulnerability in manager.php in LuxBum 0.5.5, when magicquotesgpc is disabled and dotclear authentication is used, allows remote attackers to execute arbitrary SQL commands via the username parameter in a login action...
CVE-2009-1913
CVE-2009-1913 affects LuxBum 0.5.5. The vulnerability is a SQL injection in the login flow, specifically in manager.php, triggered when magic_quotes_gpc is disabled and dotclear authentication is used. An attacker can remotely execute arbitrary SQL commands by supplying a crafted username value i...
CVE-2009-1913
SQL injection vulnerability in manager.php in LuxBum 0.5.5, when magicquotesgpc is disabled and dotclear authentication is used, allows remote attackers to execute arbitrary SQL commands via the username parameter in a login action...
Luxbum 0.5.5/stable (Auth Bypass) SQL Injection Vulnerability
No description provided by source. /\ \ \ \ /'\ \ \ , /' \ /\ /'\ / \ /' \ /'\ \ \ \\ /\ /\ \/ //\ \L\ /\ /\ /\ / \ \ \ \ \//\ /\ \ \ \ ////////////// ////// Better to be alone than in bad company +============+ | MAIN INFOS | +============+ Software name: luxbum PHP Web...
Luxbum 0.5.5/stable - Authentication Bypass
/\ \ \ \ /'\ \ \ , auth bypass URL: http://www.luxbum.net/ Found by: knxone Greetings: Pirata from this famous irc server ; +=========+ | CONCEPT | +=========+ Luxbum allows authentification using dotclear username and password via MySQL, while the default auth mechanism uses a md5 hash of the...
Luxbum 0.5.5 SQL Injection
/\ \ \ \ /'\ \ \ , auth bypass URL: http://www.luxbum.net/ Found by: knxone Greetings: Pirata from this famous irc server ; +=========+ | CONCEPT | +=========+ Luxbum allows authentification using dotclear username and password via MySQL, while the default auth mechanism uses a md5 hash of the...
Luxbum 0.5.5stable - Authentication Bypass
Luxbum 0.5.5stable - Authentication Bypass /\ \ \ \ /'\ \ \ , auth bypass URL: http://www.luxbum.net/ Found by: knxone Greetings: Pirata from this famous irc server ; +=========+ | CONCEPT | +=========+ Luxbum allows authentification using dotclear username and password via MySQL, while the...
Luxbum 0.5.5/stable (Auth Bypass) SQL Injection Vulnerability
Exploit for unknown platform in category web applications ============================================================= Luxbum 0.5.5/stable Auth Bypass SQL Injection Vulnerability ============================================================= +============+ | MAIN INFOS | +============+ Software...