EUVD-2017-9113

Malware in sbrugna...

Muviko SQL Injection Vulnerability

Muviko is a video content management system. A SQL injection vulnerability exists in Muviko version 1.1. A remote attacker can exploit this vulnerability in a number of ways to execute arbitrary SQL commands...

CVE-2017-17970

Multiple SQL injection vulnerabilities in Muviko 1.1 allow remote attackers to execute arbitrary SQL commands via the 1 email parameter to login.php; the 2 seasonid parameter to themes/flixer/ajax/loadseason.php; the 3 movieid parameter to themes/flixer/ajax/getrating.php; the 4 rating or 5 movie...

CVE-2017-17970

Multiple SQL injection vulnerabilities in Muviko 1.1 allow remote attackers to execute arbitrary SQL commands via the 1 email parameter to login.php; the 2 seasonid parameter to themes/flixer/ajax/loadseason.php; the 3 movieid parameter to themes/flixer/ajax/getrating.php; the 4 rating or 5 movie...

Sql injection

Multiple SQL injection vulnerabilities in Muviko 1.1 allow remote attackers to execute arbitrary SQL commands via the 1 email parameter to login.php; the 2 seasonid parameter to themes/flixer/ajax/loadseason.php; the 3 movieid parameter to themes/flixer/ajax/getrating.php; the 4 rating or 5 movie...

CVE-2017-17970

Multiple SQL injection vulnerabilities in Muviko 1.1 allow remote attackers to execute arbitrary SQL commands via the 1 email parameter to login.php; the 2 seasonid parameter to themes/flixer/ajax/loadseason.php; the 3 movieid parameter to themes/flixer/ajax/getrating.php; the 4 rating or 5 movie...

CVE-2017-17970

CVE-2017-17970 concerns Muviko 1.1, where multiple SQL injection flaws exist. According to the records, remote attackers can inject arbitrary SQL via several parameters: email in login.php; season_id in themes/flixer/ajax/load_season.php; movie_id in themes/flixer/ajax/get_rating.php; rating or m...

Muviko 1.1 SQL Injection

Exploit Title: Muviko 1.1 - Multiple SQL Injection Exploit Author: Ahmad Mahfouz Contact: http://twitter.com/eln1x Date: 09/01/2018 CVE: CVE-2017-17970 Vendor Homepage: https://www.muvikoscript.com Version: 1.1 Tested on: Mac OS...

Muviko 1.1 - SQL Injection

Muviko 1.1 - SQL Injection Exploit Title: Muviko 1.1 - Multiple SQL Injection Exploit Author: Ahmad Mahfouz Contact: http://twitter.com/eln1x Date: 09/01/2018 CVE: CVE-2017-17970 Vendor Homepage: https://www.muvikoscript.com Version: 1.1 Tested on: Mac OS...

Muviko 1.1 - SQL Injection

Exploit Title: Muviko 1.1 - Multiple SQL Injection Exploit Author: Ahmad Mahfouz Contact: http://twitter.com/eln1x Date: 09/01/2018 CVE: CVE-2017-17970 Vendor Homepage: https://www.muvikoscript.com Version: 1.1 Tested on: Mac OS...

Muviko 1.1 - SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Muviko 1.1 - Multiple SQL Injection Exploit Author: Ahmad Mahfouz Contact: http://twitter.com/eln1x Date: 09/01/2018 CVE: CVE-2017-17970 Vendor Homepage: https://www.muvikoscript.com Version: 1.1 Tested on: Mac OS...

Muviko 1.0 SQL Injection

Exploit Title: Muviko - Video CMS v1.0 a 'q' Parameter SQL Injection Date: 02.08.2017 Vendor Homepage: https://muvikoscript.com/ Exploit Author: Kaan KAMIS Contact: iletisimatk2andotcom Website: http://k2an.com Category: Web Application Exploits Overview Muviko is a movie & video content manageme...

Muviko 1.0 - q SQL Injection

Muviko 1.0 - q SQL Injection Exploit Title: Muviko - Video CMS v1.0 – 'q' Parameter SQL Injection Date: 02.08.2017 Vendor Homepage: https://muvikoscript.com/ Exploit Author: Kaan KAMIS Contact: iletisimatk2andotcom Website: http://k2an.com Category: Web Application Exploits Overview Muviko is a...

Muviko 1.0 - (q) Parameter SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Muviko - Video CMS v1.0 – 'q' Parameter SQL Injection Date: 02.08.2017 Vendor Homepage: https://muvikoscript.com/ Exploit Author: Kaan KAMIS Contact: iletisimatk2andotcom Website: http://k2an.com Category: Web Application Exploi...

Muviko 1.0 - 'q' SQL Injection

Exploit Title: Muviko - Video CMS v1.0 – 'q' Parameter SQL Injection Date: 02.08.2017 Vendor Homepage: https://muvikoscript.com/ Exploit Author: Kaan KAMIS Contact: iletisimatk2andotcom Website: http://k2an.com Category: Web Application Exploits Overview Muviko is a movie & video content manageme...

Muviko Video CMS - SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Muviko Video CMS Script - SQL Injection Google Dork: N/A Date: 08.02.2017 Vendor Homepage: https://muvikoscript.com/ Software Buy: https://codecanyon.net/item/muviko-movie-video-cms/19402086 Demo: https://demo.muvikoscript.com/...

Muviko Video CMS - SQL Injection

Muviko Video CMS - SQL Injection Exploit Title: Muviko Video CMS Script - SQL Injection Google Dork: N/A Date: 08.02.2017 Vendor Homepage: https://muvikoscript.com/ Software Buy: https://codecanyon.net/item/muviko-movie-video-cms/19402086 Demo: https://demo.muvikoscript.com/ Version: N/A Tested o...

Muviko Video CMS - SQL Injection

Exploit Title: Muviko Video CMS Script - SQL Injection Google Dork: N/A Date: 08.02.2017 Vendor Homepage: https://muvikoscript.com/ Software Buy: https://codecanyon.net/item/muviko-movie-video-cms/19402086 Demo: https://demo.muvikoscript.com/ Version: N/A Tested on: Win7 x64, Kali Linux x64 Explo...

Muviko Video CMS SQL Injection

Exploit Title: Muviko Video CMS Script - SQL Injection Google Dork: N/A Date: 08.02.2017 Vendor Homepage: https://muvikoscript.com/ Software Buy: https://codecanyon.net/item/muviko-movie-video-cms/19402086 Demo: https://demo.muvikoscript.com/ Version: N/A Tested on: Win7 x64, Kali Linux x64 Explo...