27 matches found
AlegroCart 1.2.8 - Multiple SQL Injections
AlegroCart 1.2.8 - Multiple SQL Injections Security Advisory - Curesec Research Team 1. Introduction Affected Product: AlegroCart 1.2.8 Fixed in: Patch AC128fix17102015 Path Link: http://forum.alegrocart.com/download/file.php?id=1040 Vendor Website: http://alegrocart.com/ Vulnerability Type: SQL...
NeoBill - '/install/include/solidstate.php' Multiple SQL Injections
source: https://www.securityfocus.com/bid/64112/info NeoBill is prone to multiple security vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker can exploit these vulnerabilities to compromise the application, access or modify data, or exploit latent...
Web Cookbook - Multiple SQL Injections
Exploit Title: Web Cookbook Multiple SQL Injection Date: 2013/3/12 Exploit Author: Saadat Ullah , [email protected] Software Link: http://sourceforge.net/projects/webcookbook/ Author HomePage: http://security-geeks.blogspot.com/ Tested on: Server: Apache/2.2.15 Centos PHP/5.3.3 SQL...
Ripe Website Manager 1.1 - Cross-Site Scripting / Multiple SQL Injections
source: https://www.securityfocus.com/bid/47017/info Ripe Website Manager is prone to a cross-site scripting vulnerability and multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to execute arbitrary...
Cdnvote < 0.4.2 - Multiple SQL Injections
The cdnvote WordPress plugin was affected by a Multiple SQL Injections security vulnerability...
Jobbr 2.2.7 - Multiple SQL Injections
Jobbr 2.2.7 - Multiple SQL Injections -----------------------------I AM MUSLIM !!------------------------------ ============================================================================== / \ | | | | / \ | | | | / \ | | | | / \ | || | / \ | | | | / \ | | IN THE NAME OF // \ || || // \ || ||...
NEWSolved 1.1.6 - 'login grabber' Multiple SQL Injections
!/usr/bin/perl -w Neversolved.pl Copyright c 2009 by A simple login grabber by lama - 06/23/2009 Tested on: Newsolved 1.1.6 use strict; use LWP::UserAgent; use Getopt::Std; use vars qw/ %opt /; getopts "i:p:u:lfh", %opt ; my @bugs =...
Community CMS 0.5 - Multiple SQL Injections
Community CMS 0.5 - Multiple SQL Injections Salvatore "drosophila" Fresta + Application: Community CMS + Version: 0.5 + Website: http://sourceforge.net/projects/communitycms/ + Bugs: A Multiple SQL Injection + Exploitation: Remote + Dork: intext:"Powered by Community CMS" + Date: 30 Mar 2009 +...
IP Reg 0.4 - Multiple SQL Injections
IP Reg = 0.4 Multiple Remote SQL Injection Vulnerabilities url: http://sourceforge.net/projects/ipreg/ Author: JosS mail: sys-projectathotmaildotcom site: http://spanish-hackers.com team: Spanish Hackers Team - SHT This was written for educational purpose. Use it at your own risk. Author will be...
PG Matchmaking Script - Multiple SQL Injections
================================================================================================================== SSSSS NN N AA K K EEEEE SSSSS TTTTTTTTT EEEEE AA MM MM S N N N A A K K E S T E A A M M M M SSSSS N N N AAAAAA KKK EEEEE SSSSS T EEEEE AAAAAA M M M M S N N N A A K K E S T E A A M M M...
cyberBB 0.6 - Multiple SQL Injections
cyberBB 0.6 - Multiple SQL Injections Name : cyberBB v. 0.6 Multiply Remote SQL Injection Vulnerabilities Author : cOndemned Dark-Coders Greetz : Avantura, str0ke, ZaBeaTy, voo|doo, irk4z, and many, many more... Conditions : Magic quotes gpc = On & Off / User must be logged into source of...
HockeySTATS Online 2.0 - Multiple SQL Injections
Viva IslaM Viva IslaM Remote SQL injection Vulnerability Hockeystats Online V BASIC & ADVANCED index.php opt AuTh0r : Mr.SQL H0ME : WwW.PaL-HaCkEr.CoM && WwW.AtsDp.CoM/f Email : [email protected] SYRiAN Arab HACkErS -: L!VE DEMO :- BASIC VERSION...
Proje ASP Portal 2.0 - 'id' Multiple SQL Injections
source: https://www.securityfocus.com/bid/29427/info Proje ASP Portal is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied input before using it in an SQL query. Exploiting these issues could allow an attacker to compromise the application,...
phpDirectorySource 1.1 - Multiple SQL Injections
phpDirectorySource 1.1 - Multiple SQL Injections |-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=| | | | /' \ /'\ /\ \ /'\ /\ \ | | /, \ /\/\L\ \ \ \ ,/\ /\ \ \ \ / | | //\ \ /' \ /\ //\ Kings of injection | | // | | |...
Batchelor Media BM Classifieds - Multiple SQL Injections
Batchelor Media BM Classifieds - Multiple SQL Injections source: https://www.securityfocus.com/bid/28159/info BM Classifieds is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues cou...
Cacti 0.8.7 - 'tree.php' Multiple SQL Injections
source: https://www.securityfocus.com/bid/27749/info Cacti is prone to multiple unspecified input-validation vulnerabilities, including: - Multiple cross-site scripting vulnerabilities - Multiple SQL-injection vulnerabilities - An HTTP response-splitting vulnerability. Attackers may exploit these...
eTicket 1.5.5.2 - 'search.php' Multiple SQL Injections
source: https://www.securityfocus.com/bid/27173/info eTicket is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. These vulnerabilities include multiple SQL-injection issues, a cross-site scripting issue, and an...
Adult Script 1.6.5 - Multiple SQL Injections
--------------------------------------------------------------- / | |\ \ / | / |/ | | |/ \ | | | |||| /| / / --------------------------------------------------------------- Http://www.inj3ct-it.org Staffatinj3ct-itdotorg --------------------------------------------------------------- Multiple...
Adult Script 1.6.5 - Multiple SQL Injections
Adult Script 1.6.5 - Multiple SQL Injections --------------------------------------------------------------- / | |\ \ / | / |/ | | |/ \ | | | |||| /| / / --------------------------------------------------------------- Http://www.inj3ct-it.org Staffatinj3ct-itdotorg...
PHP-revista 1.1.2 - Multiple SQL Injections
PHP-revista 1.1.2 - Multiple SQL Injections php-revista = 1.1.2 Remote SQL Injection Exploit Found by & contact : Cold z3ro , [email protected] script : http://downloads.sourceforge.net/php-revista/revista-1.1.2.tgz?modtime=1025654400&bigmirror=0 Exploits :...