Lucene search
K

4 matches found

0day.today
0day.today
added 2019/02/20 12:0 a.m.20 views

eDirectory - SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Admin auth bypass, SQLi and File Disclosure Google Dork: no defacers please ! Date: March 2019 reported to vendor without response :D Exploit Author: Efren Diaz Author contact: https://twitter.com/elefr3n Vendor Homepage:...

Exploits0
exploitpack
exploitpack
added 2019/02/19 12:0 a.m.21 views

eDirectory - SQL Injection

eDirectory - SQL Injection Exploit Title: Admin auth bypass, SQLi and File Disclosure Google Dork: no defacers please ! Date: March 2019 reported to vendor without response :D Exploit Author: Efren Diaz Author contact: https://twitter.com/elefr3n Vendor Homepage: https://www.edirectory.com/...

Exploits0
Exploit DB
Exploit DB
added 2019/02/19 12:0 a.m.56 views

eDirectory - SQL Injection

Exploit Title: Admin auth bypass, SQLi and File Disclosure Google Dork: no defacers please ! Date: March 2019 reported to vendor without response :D Exploit Author: Efren Diaz Author contact: https://twitter.com/elefr3n Vendor Homepage: https://www.edirectory.com/ Software Link: not available...

7.4AI score
Exploits0
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2017/11/30 12:0 a.m.56 views

JVN#78501037: Movable Type plugin A-Member and A-Reserve vulnerable to SQL injection

A-Member and A-Reserve provided by ARK-Web co., ltd. are plugins for Movable Type which provide functions to build a membership website or a reservation website. A-Member and A-Reserve contain SQL injection CWE-89 vulnerability due to the issue in processing cookie values. Impact An attacker who...

9.8CVSS9.7AI score0.01269EPSS
Exploits0
Rows per page
Query Builder