21 matches found
EUVD-2006-2127
Malware in sbrugna...
EUVD-2008-2840
Malware in sbrugna...
MaxTrade 1.0.1 - Multiple SQL Injection Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/17765/info MaxTrade is prone to multiple SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. A successful exploit...
Maxtrade AIO CMS LFI Vulnerabilty
Exploit for php platform in category web applications ================================= Maxtrade AIO CMS LFI Vulnerabilty ================================= 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ ...
CVE-2008-2847
SQL injection vulnerability in the Trade module in Maxtrade AIO 1.3.23 allows remote attackers to execute arbitrary SQL commands via the categori parameter in a pocategorisell action to modules.php...
CVE-2008-2847
SQL injection vulnerability in the Trade module in Maxtrade AIO 1.3.23 allows remote attackers to execute arbitrary SQL commands via the categori parameter in a pocategorisell action to modules.php...
Sql injection
SQL injection vulnerability in the Trade module in Maxtrade AIO 1.3.23 allows remote attackers to execute arbitrary SQL commands via the categori parameter in a pocategorisell action to modules.php...
CVE-2008-2847
SQL injection vulnerability in the Trade module in Maxtrade AIO 1.3.23 allows remote attackers to execute arbitrary SQL commands via the categori parameter in a pocategorisell action to modules.php...
CVE-2008-2847
The CVE-2008-2847 entry concerns a SQL injection in the Trade module of Maxtrade AIO 1.3.23. The vulnerability is triggered via the categori parameter in the pocategorisell action to modules.php, enabling remote attackers to arbitrarily query the database. The NVD lists a CVSSv2 base score of 7.5...
MaxTrade Trade SQL注入漏洞
BUGTRAQ ID: 29799 CNCAN ID:CNCAN-2008062305 Avalon Ltd MaxTrade是一款基于PHP的WEB应用程序。 Avalon Ltd MaxTrade不正确处理用户提交的输入,远程攻击者可以利用漏洞进行SQL注入攻击,可能获得敏感信息或操作数据库。 问题是脚本对用户提交给"categori"参数缺少过滤,构建恶意SQL查询作为参数数据,可更改原来的SQL逻辑,获得敏感信息或操作数据库。 Avalon Ltd MaxTrade 1.3.23 目前没有详细解决方案提供: http://softdivision.com/...
Maxtrade AIO 1.3.23 (categori) Remote SQL Injection Vulnerability
No description provided by source. Remote SQL Injection Maxtrade AIO 1.3.23 ... HaCkerEgy Contact : [email protected] Home : pal-hacker.com & atsdp.com =============================================== Script : Maxtrade Version : 1.3.23 Download : http://softdivision.com...
Maxtrade AIO 1.3.23 (categori) Remote SQL Injection Vulnerability
Exploit for unknown platform in category web applications ================================================================= Maxtrade AIO 1.3.23 categori Remote SQL Injection Vulnerability ================================================================= Remote SQL Injection Maxtrade AIO 1.3.23...
Maxtrade AIO 1.3.23 - categori SQL Injection
Maxtrade AIO 1.3.23 - categori SQL Injection Remote SQL Injection Maxtrade AIO 1.3.23 ... HaCkerEgy Contact : [email protected] Home : pal-hacker.com & atsdp.com =============================================== Script : Maxtrade Version : 1.3.23 Download : http://softdivision.com...
maxtrade-sql.txt
Remote SQL Injection Maxtrade AIO 1.3.23 ... HaCkerEgy Contact : [email protected] Home : pal-hacker.com & atsdp.com =============================================== Script : Maxtrade Version : 1.3.23 Download : http://softdivision.com =============================================== Exploit : ...
Maxtrade AIO 1.3.23 - 'categori' SQL Injection
Remote SQL Injection Maxtrade AIO 1.3.23 ... HaCkerEgy Contact : [email protected] Home : pal-hacker.com & atsdp.com =============================================== Script : Maxtrade Version : 1.3.23 Download : http://softdivision.com =============================================== Exploit : ...
Sql injection
SQL injection vulnerability in pocategories.php in MaxTrade 1.0.1 and earlier allows remote attackers to execute arbitrary SQL commands via the 1 categori and 2 stranica parameters...
CVE-2006-2126
SQL injection vulnerability in pocategories.php in MaxTrade 1.0.1 and earlier allows remote attackers to execute arbitrary SQL commands via the 1 categori and 2 stranica parameters...
CVE-2006-2126
SQL injection vulnerability in pocategories.php in MaxTrade 1.0.1 and earlier allows remote attackers to execute arbitrary SQL commands via the 1 categori and 2 stranica parameters...
CVE-2006-2126
The provided connected records confirm CVE-2006-2126 is a SQL injection vulnerability in MaxTrade 1.0.1 and earlier, occurring in pocategories.php via the (1) categori and (2) stranica parameters. The root cause is unsafely embedded input in those parameters allowing remote attackers to execute a...
MaxTrade 1.0.1 - Multiple SQL Injections
source: https://www.securityfocus.com/bid/17765/info MaxTrade is prone to multiple SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. A successful exploit could allow an attacker to compromis...