EUVD-2005-4354

Malware in sbrugna...

ODFaq 2.1 FAQ.PHP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/15958/info ODFaq is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could result...

ODFaq 2.1.0 - Blind SQL Injection Exploit

No description provided by source. !/usr/bin/perl eSploit Framework - Inphex use Digest::MD5 qwmd5 md5hex md5base64; use LWP::UserAgent; use HTTP::Cookies; use Switch; $host = shift; $path = shift; $cat = shift; $nonfind = shift; choose anything thats inside the cat $column = username; change if...

odfaq-blindsql.txt

!/usr/bin/perl eSploit Framework - Inphex use Digest::MD5 qwmd5 md5hex md5base64; use LWP::UserAgent; use HTTP::Cookies; use Switch; $host = shift; $path = shift; $cat = shift; $nonfind = shift; choose anything thats inside the cat $column = "username"; change if needet $table = "odfaquser"; chan...

ODFaq 2.1.0 Blind SQL Injection Exploit

No description provided by source. !/usr/bin/perl eSploit Framework - Inphex use Digest::MD5 qwmd5 md5hex md5base64; use LWP::UserAgent; use HTTP::Cookies; use Switch; $host = shift; $path = shift; $cat = shift; $nonfind = shift; choose anything thats inside the cat $column = "username"; change i...

ODFaq 2.1.0 - Blind SQL Injection

ODFaq 2.1.0 - Blind SQL Injection !/usr/bin/perl eSploit Framework - Inphex use Digest::MD5 qwmd5 md5hex md5base64; use LWP::UserAgent; use HTTP::Cookies; use Switch; $host = shift; $path = shift; $cat = shift; $nonfind = shift; choose anything thats inside the cat $column = "username"; change if...

ODFaq 2.1.0 - Blind SQL Injection

!/usr/bin/perl eSploit Framework - Inphex use Digest::MD5 qwmd5 md5hex md5base64; use LWP::UserAgent; use HTTP::Cookies; use Switch; $host = shift; $path = shift; $cat = shift; $nonfind = shift; choose anything thats inside the cat $column = "username"; change if needet $table = "odfaquser"; chan...

ODFaq 2.1.0 Blind SQL Injection Exploit

Exploit for unknown platform in category web applications ======================================= ODFaq 2.1.0 Blind SQL Injection Exploit ======================================= !/usr/bin/perl eSploit Framework - Inphex use Digest::MD5 qwmd5 md5hex md5base64; use LWP::UserAgent; use HTTP::Cookies...

чтение произвольного файла в ODFaq 2.1.0

Программа: ODFaq 2.1.0 http://www.oodie.com/project/odfaq/ Описание: в интерактивной системе ODFaq 2.1.0 существует возможность обхода ограничения на чтение файлов с сервера. В файле config.inc.php в ассоциативном массиве $PAGE прописаны все страницы, доступные для выполнения через параметр P в...

CVE-2005-4359

SQL injection vulnerability in includes/core.inc.php in ODFaq 2.1.0 allows remote attackers to execute arbitrary SQL commands via the 1 cat and 2 srcText parameters to faq.php...

CVE-2005-4359

SQL injection vulnerability in includes/core.inc.php in ODFaq 2.1.0 allows remote attackers to execute arbitrary SQL commands via the 1 cat and 2 srcText parameters to faq.php...

CVE-2005-4359

CVE-2005-4359 describes an SQL injection in ODFaq 2.1.0, exploitable via the (1) cat and (2) srcText parameters to faq.php, affecting includes/core.inc.php. The vulnerability could allow remote attackers to execute arbitrary SQL commands, with partial confidentiality and partial integrity impacts...

ODFaq 2.1 - 'faq.php' SQL Injection

source: https://www.securityfocus.com/bid/15958/info ODFaq is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could result in a compromise of the applicatio...

ODFaq 2.1 - faq.php SQL Injection

ODFaq 2.1 - faq.php SQL Injection source: https://www.securityfocus.com/bid/15958/info ODFaq is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could result...

ODFaq SQL inj. vuln.

ODFaq SQL inj. vuln. Vuln. discovered by : r0t Date: 18 dec. 2005 vendor:http://www.oodie.com/project/odfaq/ affected version: 2.1.0 and prior Product Description: PHP application that allows you to manage frequently asked questions. You can create/edit/delete entries using user-friendly web base...