Lucene search
K

9 matches found

NVD
NVD
added 2009/02/03 7:30 p.m.19 views

CVE-2009-0409

SQL injection vulnerability in offlineauth.php in Max.Blog 1.0.6 and earlier, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the username parameter...

6.8CVSS8.4AI score0.01105EPSS
Exploits1References5
Prion
Prion
added 2009/02/02 7:30 p.m.20 views

Server side request forgery (ssrf)

delete.php in Max.Blog 1.0.6 does not properly restrict access, which allows remote attackers to delete arbitrary blog posts via a direct request...

6.4CVSS7.3AI score0.02958EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2009/02/02 7:0 p.m.31 views

CVE-2009-0383

delete.php in Max.Blog 1.0.6 does not properly restrict access, which allows remote attackers to delete arbitrary blog posts via a direct request...

6.7AI score0.02958EPSS
Exploits0References6
exploitpack
exploitpack
added 2009/01/28 12:0 a.m.11 views

Max.Blog 1.0.6 - submit_post.php SQL Injection

Max.Blog 1.0.6 - submitpost.php SQL Injection Salvatore "drosophila" Fresta Application: Max.Blog http://www.mzbservices.com Version: Max.Blog = 1.0.6 Bug: SQL Injection Exploitation: Remote Dork: intext:"Powered by Max.Blog" Date: 27 Jan 2009 Discovered by: Salvatore "drosophila" Fresta Author:...

Exploits0
exploitpack
exploitpack
added 2009/01/27 12:0 a.m.14 views

Max.Blog 1.0.6 - show_post.php SQL Injection

Max.Blog 1.0.6 - showpost.php SQL Injection Salvatore "drosophila" Fresta Application: Max.Blog http://www.mzbservices.com Version: Max.Blog = 1.0.6 Bug: SQL Injection Exploitation: Remote Dork: intext:"Powered by Max.Blog" Date: 20 Jan 2009 Discovered by: Salvatore "drosophila" Fresta Author:...

Exploits0
Packet Storm
Packet Storm
added 2009/01/21 12:0 a.m.29 views

Max.Blog 1.0.6 Delete Post Exploit

Max.Blog 1.0.6 Delete Post Exploit Max.Blog 1.0.6 Delete Post Exploit Discovered by SirGod Thanks to Nytro Please visit : ------------------------ www.mortal-team.org ------------------------ www.h4cky0u.org ------------------------ www.xpl0it.info ------------------------ www.anti-intruders.org...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2009/01/20 12:0 a.m.11 views

Max.Blog 1.0.6 Arbitrary Delete Post Exploit

No description provided by source. html head titleMax.Blog 1.0.6 Delete Post Exploit/title /head body p align="center" bMax.Blog 1.0.6 Delete Post Exploit/bbr /br / bDiscovered by bSirGod/bbr / Thanks to bNytro/bbr / Please visit : br / ------------------------br / www.mortal-team.orgbr /...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2009/01/20 12:0 a.m.10 views

Max.Blog 1.0.6 - Arbitrary Delete Post

Max.Blog 1.0.6 - Arbitrary Delete Post Max.Blog 1.0.6 Delete Post Exploit Max.Blog 1.0.6 Delete Post Exploit Discovered by SirGod Thanks to Nytro Please visit : ------------------------ www.mortal-team.org ------------------------ www.h4cky0u.org ------------------------ www.xpl0it.info...

0.5AI score
Exploits0
Exploit DB
Exploit DB
added 2009/01/20 12:0 a.m.34 views

Max.Blog 1.0.6 - Arbitrary Delete Post

Max.Blog 1.0.6 Delete Post Exploit Max.Blog 1.0.6 Delete Post Exploit Discovered by SirGod Thanks to Nytro Please visit : ------------------------ www.mortal-team.org ------------------------ www.h4cky0u.org ------------------------ www.xpl0it.info ------------------------ www.anti-intruders.org...

7.4AI score
Exploits0
Rows per page
Query Builder