8 matches found
EUVD-2007-3808
Malware in sbrugna...
CVE-2007-3824
SQL injection vulnerability in katgoster.asp in MzK Blog tr allows remote attackers to execute arbitrary SQL commands via the katID parameter...
Sql injection
SQL injection vulnerability in katgoster.asp in MzK Blog tr allows remote attackers to execute arbitrary SQL commands via the katID parameter...
CVE-2007-3824
The CVE-2007-3824 entry concerns a SQL injection in the MzK Blog (tr) web app, specifically the katgoster.asp component. The vulnerability is exploitable via the katID parameter, enabling remote attackers to execute arbitrary SQL commands. According to the provided data, the CVSS v2 base score is...
CVE-2007-3824
SQL injection vulnerability in katgoster.asp in MzK Blog tr allows remote attackers to execute arbitrary SQL commands via the katID parameter...
mzkblog-sql.txt
MzK Blog tr SQL Injection Vuln Software: MzK Blog tr download: http://www.aspindir.com/goster/5013 demo: http://www.karahanbilgisayar.com/blog/ Found By: GeFORC3 | G3 Exploit: http://site.com/scriptpath/katgoster.asp?katID=-1+union+select+0,kullaniciadi,2,3,4,5,6,7+from+admin...
MzK Blog - Katgoster.asp SQL Injection
MzK Blog - Katgoster.asp SQL Injection source: https://www.securityfocus.com/bid/24909/info MzK Blog is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise...
MzK Blog - 'Katgoster.asp' SQL Injection
source: https://www.securityfocus.com/bid/24909/info MzK Blog is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify data...