MyPHP CMS 0.3.1 - 'pid' SQL Injection

=============================================================== MyPHP CMS page.php pid Remote SQL Injection Vulnerability =============================================================== ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH Underground Hacking Team...

MyPHP CMS 0.3.1 - pid SQL Injection

MyPHP CMS 0.3.1 - pid SQL Injection =============================================================== MyPHP CMS page.php pid Remote SQL Injection Vulnerability =============================================================== ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH...

myphpcms-sql.txt

=============================================================== MyPHP CMS page.php pid Remote SQL Injection Vulnerability =============================================================== ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH Underground Hacking Team...

CVE-2008-0099

Multiple SQL injection vulnerabilities in MyPHP Forum 3.0 and earlier allow remote attackers to execute arbitrary SQL commands via the searchtext parameter to search.php, and unspecified other vectors...

Sql injection

Multiple SQL injection vulnerabilities in MyPHP Forum 3.0 and earlier allow remote attackers to execute arbitrary SQL commands via the searchtext parameter to search.php, and unspecified other vectors...

CVE-2008-0099

Affected software: MyPHP Forum 3.0 and earlier. Vulnerability: SQL injection in search.php (searchtext) and unspecified other vectors. Root cause: improper handling of user-supplied input enabling arbitrary SQL execution. Impact: remote attackers can perform SQL commands with partial confidential...

CVE-2008-0099

Multiple SQL injection vulnerabilities in MyPHP Forum 3.0 and earlier allow remote attackers to execute arbitrary SQL commands via the searchtext parameter to search.php, and unspecified other vectors...

MyPHP Forum多个SQL注入漏洞

BUGTRAQ ID: 27118 MyPHP Forum是一个易于架设并且易于使用基于MySQL与PHP的论坛。 MyPHP Forum处理用户请求数据时存在输入验证漏洞，远程攻击者可能利用此漏洞执行SQL注入攻击。 MyPHP Forum的faq.php文件没有正确地验证对id参数的输入，member.php文件没有正确验证对member参数的输入，search.php文件没有正确验证对searchtext和searchuser参数的输入，允许攻击者通过注入任意SQL代码控制SQL查询。成功攻击要求禁用了magicquotesgpc。 faq.php文件中的漏洞代码：...

CVE-2007-6667

SQL injection vulnerability in faq.php in MyPHP Forum 3.0 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter. NOTE: the member.php vector is already covered by CVE-2005-0413...

Sql injection

SQL injection vulnerability in faq.php in MyPHP Forum 3.0 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter. NOTE: the member.php vector is already covered by CVE-2005-0413...

CVE-2007-6667

SQL injection vulnerability in faq.php in MyPHP Forum 3.0 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter. NOTE: the member.php vector is already covered by CVE-2005-0413...

CVE-2007-6667

The CVE-2007-6667 entry describes an SQL injection in MyPHP Forum 3.0 and earlier, exploitable via the id parameter in faq.php. The vulnerability allows remote execution of arbitrary SQL commands, with the attack surface limited to the FAQ handling path; the note indicates the member.php vector i...

MyPHP Forum <= 3.0 (Final) Remote SQL Injection Vulnerability

No description provided by source. ================================================================================================= / | |\ \ / | / |/ | | |/ \ | | / \ \ | \ \ &...

MyPHP Forum 3.0 - Final SQL Injection

MyPHP Forum 3.0 - Final SQL Injection ================================================================================================= / | |\ \ / | / |/ | | |/ \ | | | |||| /| / / ================================================================================================= This is a Public...

MyPHP Forum 3.0 - 'search.php' Multiple SQL Injections

source: https://www.securityfocus.com/bid/27118/info MyPHP Forum is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to compromise the application, access o...

MyPHP Forum 3.0 - 'Final' SQL Injection

================================================================================================= / | |\ \ / | / |/ | | |/ \ | | | |||| /| / / ================================================================================================= This is a Public Exploit. Date: 03/01/2008 dd,mm,yyyy...

MyPHP Forum 3.0 - search.php Multiple SQL Injections

MyPHP Forum 3.0 - search.php Multiple SQL Injections source: https://www.securityfocus.com/bid/27118/info MyPHP Forum is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allo...

MyPHP Forum <= 3.0 (Final) Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications ============================================================= MyPHP Forum | |||| /| / / ================================================================================================= This is a Public Exploit. Date: 03/01/2008...

myphp30-sql.txt

================================================================================================= / | |\ \ / | / |/ | | |/ \ | | | |||| /| / / ================================================================================================= This is a Public Exploit. Date: 03/01/2008 dd,mm,yyyy...

MyPHP Forum 'faq.php' and 'member.php' Multiple SQL Injection Vulnerabilities

MyPHP Forum is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in t...