49 matches found
EUVD-2011-0431
Malware in sbrugna...
chCounter <= 3.1.3 - SQL Injection Vulnerability
No description provided by source. !/usr/bin/python Exploit Title: chCounter = 3.1.3 SQLInjection Date: 2010/11/18 Author: Matias [email protected]. Software Link: http://chcounter.org/chCounter3/getfile.php?id=5 Version: 3.1.3 Tested on: Ubuntu Server 10.04 with apache...
Fhimage 1.2.1 - Remote Command Execution Exploit (mq = off)
No description provided by source. !/usr/bin/perl ----------------------------------------------------------------------------------------------- INFORMATIONS ----------------------------------------------------------------------------------------------- Fhimage 1.2.1...
novaboard 1.0.0 - Multiple Vulnerabilities
No description provided by source. =============================================================================================== Found : brainpillow Dork : Powered by NovaBoard v1.0.0 Visit : brainpillow.cc, forum.antichat.ru, raz0r.name Mail : [email protected]...
Blue Eye CMS <= 1.0.0 - Remote Cookie SQL Injection Vulnerability
No description provided by source. BlueEye CMS = 1.0.0 Remote Cookie SQL Injection Vulnerability found by ka0x ka0x01alt+64gmail.com Download: http://kent.dl.sourceforge.net/sourceforge/blueeyecms/blueeyecms-100preRC.rar need magicquotesgpc = Off - Vuln code: 10: if !empty$COOKIEBlueEyeCMSlogin /...
PHP Director <= 0.21 (sql into outfile) eval() Injection Exploit
No description provided by source. include stdio.h include stdlib.h include string.h include netinet/in.h include arpa/inet.h include netdb.h / Dork Powered by PHP Director 0.2 | PHP Director 0.2.1 sql into outfile eval Injection Exploit | Exploit-...
Php-Stats 0.1.9.2 - Multiple Vulnerabilities Exploit
No description provided by source. ?php / Php-Stats 0.1.9.2 Multiple Vulnerabilities Exploit Blind SQL Injection / Remote Code Execution P.o.C. author...: EgiX mail.....: n0b0d13satgmaildotcom link.....: http://php-stats.com/downloads details..: works with magicquotesruntime = off 1 Blind SQL...
bilboblog 2.1 - Multiple Vulnerabilities
No description provided by source. ------------------------------------------------------------------ Name : Bilboblog 2.1 Multiples Vulnerabilities Description : Bilboblog is a small application of micro-blogging in Php / MySQL Link :...
MaxForum 2.0.0 Local File Inclusion
Exploit Title: MaxForum v2.0.0 Local File Inclusion Vulnerability Date: 25/09/2012 Author: L0n3ly-H34rT Contact: [email protected] My Site: http://se3c.blogspot.com/ Vendor Link: http://www.max4dev.com/demo/ar/ Software Link:...
chCounter <= 3.1.3 SQL Injection Vulnerability
Exploit for php platform in category web applications ============================================== chCounter = 3.1.3 SQL Injection Vulnerability ============================================== !/usr/bin/python Exploit Title: chCounter = 3.1.3 SQLInjection Date: 2010/11/18 Author: Matias...
chCounter 3.1.3 - SQL Injection
!/usr/bin/python Exploit Title: chCounter = 3.1.3 SQLInjection Date: 2010/11/18 Author: Matias [email protected]. Software Link: http://chcounter.org/chCounter3/getfile.php?id=5 Version: 3.1.3 Tested on: Ubuntu Server 10.04 with apache Requirements: - Downloads must be...
Wiccle Web Builder CMS and iWiccle CMS Community Builder Multiple XSS Vulnerabilities
Wiccle Web Builder CMS and iWiccle CMS Community Builder Multiple Cross-Site Scripting Vulnerability. SecPod Technologies www.secpod.com Author Veerendra G.G SecPod ID: 1005 09/07/2010 Issue Discovered 09/10/2010 Vendor Notified 09/13/2010 Vendor Confirmed 09/14/2010 Fix Available Class: Cross-Si...
Joomla! Component Answers 2.3beta - Multiple Vulnerabilities
Joomla! Component Answers 2.3beta - Multiple Vulnerabilities Exploit Title: Joomla Component Answers v2.3beta Multiple Vulnerabilities Date: 25 May 2010 Author: jdc Software Link: http://extensions.joomla.org/extensions/communication/forum/12652 Version: 2.3beta Tested on: PHP5, MySQL5 Blind SQL...
CVE-2010-2012
SQL injection vulnerability in function.php in MigasCMS 1.1, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the categorie parameter in a catalogo action. NOTE: some of these details are obtained from third party information...
BigForum 4.5 - SQL Injection
BigForum 4.5 - SQL Injection !/usr/bin/perl use LWP::Simple; print "\n"; print "\n"; print " BigForum Version: 4.5 SQL INJECTION \n"; print " Author: Ctacok Russian \n"; print " Blog : www.Ctacok.ru \n"; print " Special for Antichat forum.antichat.ru and xakep.ru \n"; print " Require : Magicquote...
PHP-RESIDENCE 0.7.2 - Multiple Local File Inclusions
'/ -.- --------------------oOO------OOo------------------- | PHP-RESIDENCE ! Download: http://www.digitaldruid.net/download/php-residence0.7.2.zip ! Date: 30.12.2009 ! Remote: yes ! Code : include"./includes/templates/$templatedatadir/phrases.php"; ! PoC:...
PT-2010-1400 · Roseonline · Roseonlinecms
Name of the Vulnerable Software and Affected Versions: RoseOnlineCMS versions 3 B1 and earlier Description: The issue allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the admin parameter in the modules/admincp.php file when magic quotes gpc...
Joomla MemoryBook 1.2 SQL Injection / RFI
SQL Injection ------------- requires: magic quotes OFF, user account Add this as the description of a new event: ', 63,SELECT CONCATusername,0x20,email FROM users WHERE gid=25 LIMIT 1,1,1,1 -- ' NOTE: 63 MUST be your Joomla user ID. extracted info can be found on View Events page Remote File...
Oscailt CMS 3.3 Local File Inclusion
Exploit for unknown platform in category web applications ==================================== Oscailt CMS 3.3 Local File Inclusion ==================================== 0 Oscailt 3.3 CMS 0 Download: http://sourceforge.net/projects/oscailt/ 0 Bug: Local File Inclusion in index.php file ! 0 Poc:...
Endonesia CMS 8.4 local file inclusion
Exploit for unknown platform in category web applications ====================================== Endonesia CMS 8.4 local file inclusion ====================================== Endonesia 8.4 CMS Site: http://www.endonesia.org/ Download: http://sourceforge.net/projects/endonesia Bug: Local File...