CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

No description provided by source. Aria-Security Team http://Aria-Security.Net ----------------------------- Shoutz: Aura, Null, imm02tal, Kinglet, and our staff PHP-Nuke MyeGallery gid Remote SQL Injection Dork: inurl:modules.php?name=MyeGallery...

7.1AI score

Exploits0

Prion•added 2009/08/24 10:30 a.m.•14 views

Sql injection

SQL injection vulnerability in the MyeGallery module for PHP-Nuke allows remote attackers to execute arbitrary SQL commands via the gid parameter in a showgall action to modules.php. NOTE: this issue was disclosed by an unreliable researcher, so the details might be incorrect...

7.5CVSS9.1AI score0.01164EPSS

Exploits1References6

Cvelist•added 2009/08/24 10:0 a.m.•21 views

CVE-2008-7038

8.3AI score0.01164EPSS

Exploits1References6

CVE•added 2009/08/24 10:0 a.m.•49 views

CVE-2008-7038

CVE-2008-7038 describes a SQL injection in the My_eGallery module for PHP-Nuke. The vulnerability is triggered by manipulating the gid parameter in a showgall action to modules.php, allowing remote execution of arbitrary SQL commands. The description notes that the issue was disclosed by an unrel...

7.5CVSS8.7AI score0.01164EPSS

Exploits1References6Affected Software1

seebug.org•added 2009/02/26 12:0 a.m.•155 views

MDPro My_eGallery模块pid参数SQL注入漏洞

BUGTRAQ ID: 33871 CVECAN ID: CVE-2009-0728 MDPro是一款开放源码的内容管理系统。 MDPro的index.php文件没有正确地过滤对pid参数的输入参数，如果module设置为MyeGallery且do设置为showpic，远程攻击者就可以通过提交恶意请求执行SQL注入攻击。 MAXdev MyeGallery 3.1.1g 厂商补丁： MAXdev ------ 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本：...

7.5CVSS6.5AI score0.0095EPSS

Exploits2

NVD•added 2009/02/24 11:30 p.m.•18 views

CVE-2009-0728

SQL injection vulnerability in the MyeGallery module for MAXdev MDPro MD-Pro and Postnuke allows remote attackers to execute arbitrary SQL commands via the pid parameter in a showpic action to index.php...

7.5CVSS8.4AI score0.0095EPSS

Exploits2References2

Prion•added 2009/02/24 11:30 p.m.•22 views

Sql injection

7.5CVSS9AI score0.0095EPSS

Exploits2References2

Cvelist•added 2009/02/24 11:0 p.m.•26 views

CVE-2009-0728

8.4AI score0.0095EPSS

Exploits2References2

CVE•added 2009/02/24 11:0 p.m.•58 views

CVE-2009-0728

The CVE-2009-0728 issue affects MAXdev MDPro (MD-Pro) with the My_eGallery module. The root cause is improper input filtering of the pid parameter in index.php when module=My_eGallery and do=showpic, enabling a remote SQL injection that can execute arbitrary SQL commands. Exploitation details are...

7.5CVSS8.7AI score0.0095EPSS

Exploits2References2Affected Software1

Packet Storm•added 2009/02/23 12:0 a.m.•73 views

MDPro My_eGallery SQL Injection

!/usr/bin/perl $host, PeerPort = 80, Proto = 'tcp' or die $!; $packet .= "GET /$inject HTTP/1.1\r\n"; $packet .= "Host: $host\r\n"; $packet .= "User-Agent: Lynx textmode\r\n"; $packet .= "Connection: close\r\n\r\n"; $socket-send$packet; while $content .= $; close$socket; if $content = /.+?/i prin...

0.4AI score

Exploits0

Exploit DB•added 2009/02/23 12:0 a.m.•96 views

MDPro Module My_eGallery - 'pid' SQL Injection

!/usr/bin/perl $host, PeerPort = 80, Proto = 'tcp' or die $!;...

7.4AI score

Exploits0

exploitpack•added 2009/02/23 12:0 a.m.•32 views

MDPro Module My_eGallery - pid SQL Injection

MDPro Module MyeGallery - pid SQL Injection !/usr/bin/perl $host, PeerPort = 80, Proto = 'tcp' or die $!;...

0.3AI score

Exploits0

Packet Storm•added 2008/03/13 12:0 a.m.•23 views

xoopsegal-sql.txt

XOOPS Module MyeGallery 3.04 download=http://webscripts.softpedia.com/script/Modules/Other-Modules/My-eGallery-dev-8113.html AUTHOR : S@BUN HOME : http://www.milw0rm.com/author/1334 MAİL : [email protected] DORKS 1 : allinurl :"modules/myegallery" EXPLOIT :...

7.4AI score

Exploits0

seebug.org•added 2008/03/13 12:0 a.m.•21 views

XOOPS Module My_eGallery 3.04 (gid) SQL Injection Vulnerability

No description provided by source. XOOPS Module MyeGallery 3.04 download=http://webscripts.softpedia.com/script/Modules/Other-Modules/My-eGallery-dev-8113.html AUTHOR : S@BUN HOME : http://www.milw0rm.com/author/1334 MA陌L : [email protected] DORKS 1 : allinurl :"modules/myegallery...

7.1AI score

Exploits0

exploitpack•added 2008/03/12 12:0 a.m.•12 views

XOOPS Module My_eGallery 3.04 - gid SQL Injection

XOOPS Module MyeGallery 3.04 - gid SQL Injection XOOPS Module MyeGallery 3.04 download=http://webscripts.softpedia.com/script/Modules/Other-Modules/My-eGallery-dev-8113.html AUTHOR : S@BUN HOME : http://www.milw0rm.com/author/1334 MAÄ°L : [email protected] DORKS 1 : allinurl...

0.5AI score

Exploits0

0day.today•added 2008/03/12 12:0 a.m.•37 views

XOOPS Module My_eGallery 3.04 (gid) SQL Injection Vulnerability

Exploit for unknown platform in category web applications =============================================================== XOOPS Module MyeGallery 3.04 gid SQL Injection Vulnerability =============================================================== XOOPS Module MyeGallery 3.04...

7.1AI score

Exploits0

Exploit DB•added 2008/03/12 12:0 a.m.•32 views

XOOPS Module My_eGallery 3.04 - 'gid' SQL Injection

XOOPS Module MyeGallery 3.04 download=http://webscripts.softpedia.com/script/Modules/Other-Modules/My-eGallery-dev-8113.html AUTHOR : S@BUN HOME : http://www.milw0rm.com/author/1334 MAÄ°L : [email protected] DORKS 1 : allinurl :"modules/myegallery" EXPLOIT :...

7AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by