EUVD-2007-4167

Malware in sbrugna...

EUVD-2006-5064

Malware in sbrugna...

paBugs <= 2.0 Beta 3 (class.mysql.php) Remote File Include Exploit

No description provided by source. ?php / ::::::::: :::::::::: ::: ::: ::::::::::: ::: :+: :+: :+: :+: :+: :+: :+: +:+ +:+ +:+ +:+ +:+ +:+ +:+ ++ +:+ +++:++ ++ +:+ ++ ++ ++ ++ ++ ++ ++ ++ ++ + + + +++ + + ::::::::::: :::::::::: ::: :::: :::: :+: :+: :+: :+: +:+:+: :+:+:+ +:+ +:+ +:+ +:+ +:+ +:+:+...

Sql injection

SQL injection vulnerability in main.php in paBugs 2.0 Beta 3 and earlier allows remote attackers to execute arbitrary SQL commands via the cid parameter to index.php...

CVE-2007-4183

SQL injection vulnerability in main.php in paBugs 2.0 Beta 3 and earlier allows remote attackers to execute arbitrary SQL commands via the cid parameter to index.php...

CVE-2007-4183

The CVE-2007-4183 issue affects the PHP-based paBugs web application (2.0 Beta 3 and earlier); the vulnerability is a SQL injection in main.php that allows an attacker to manipulate the database by supplying a crafted cid value to index.php. The underlying cause is an inadequate sanitization/vali...

CVE-2007-4183

SQL injection vulnerability in main.php in paBugs 2.0 Beta 3 and earlier allows remote attackers to execute arbitrary SQL commands via the cid parameter to index.php...

pabugs-sql.txt

!/usr/bin/perl use LWP::UserAgent; use HTTP::Cookies; if@ARGV get$sql or err; $res - content = /0-9,a-f32/ or err; print "\n + Admin Passwordmd5=$usid is: $1 \n\n"; sub usage print "---------------------------------------------------------\n"; print "| Bug Found by: umpi |\n"; print...

paBugs &lt;= 2.0 Beta 3 (main.php cid) Remote SQL Injection Exploit

No description provided by source. !/usr/bin/perl use LWP::UserAgent; use HTTP::Cookies; if@ARGV 4 usage; exit; $host = $ARGV0; Host $path = $ARGV1; Path to paBugs directory $pref = $ARGV2; prefix for admin tables $usid = $ARGV3; user id $www = new LWP::UserAgent; $sql =...

paBugs 2.0 Beta 3 - &#039;main.php?cid&#039; SQL Injection

!/usr/bin/perl use LWP::UserAgent; use HTTP::Cookies; if@ARGV get$sql or err; $res - content = /0-9,a-f32/ or err; print "\n + Admin Passwordmd5=$usid is: $1 \n\n"; sub usage print "---------------------------------------------------------\n"; print "| Bug Found by: umpi |\n"; print...

paBugs <= 2.0 Beta 3 (main.php cid) Remote SQL Injection Exploit

Exploit for unknown platform in category web applications ================================================================ paBugs get$sql or err; $res - content = /0-9,a-f32/ or err; print "\n + Admin Passwordmd5=$usid is: $1 \n\n"; sub usage print...

paBugs 2.0 Beta 3 - main.php?cid SQL Injection

paBugs 2.0 Beta 3 - main.php?cid SQL Injection !/usr/bin/perl use LWP::UserAgent; use HTTP::Cookies; if@ARGV get$sql or err; $res - content = /0-9,a-f32/ or err; print "\n + Admin Passwordmd5=$usid is: $1 \n\n"; sub usage print "---------------------------------------------------------\n"; print ...

CVE-2006-5079

PHP remote file inclusion vulnerability in class.mysql.php in Matt Humphrey paBugs 2.0 Beta 3 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the pathtobtdir parameter...

CVE-2006-5079

Summary: CVE-2006-5079 is a PHP remote file inclusion vulnerability in the class.mysql.php component of Matt Humphrey’s paBugs 2.0 Beta 3 and earlier. The flaw allows an attacker to execute arbitrary PHP code by supplying a URL in the path_to_bt_dir parameter. The CVSSv2 base metrics suggest netw...

CVE-2006-5079

PHP remote file inclusion vulnerability in class.mysql.php in Matt Humphrey paBugs 2.0 Beta 3 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the pathtobtdir parameter...

paBugs 2.0 Beta 3 - &#039;class.mysql.php&#039; Remote File Inclusion

?php / ::::::::: :::::::::: ::: ::: ::::::::::: ::: :+: :+: :+: :+: :+: :+: :+: +:+ +:+ +:+ +:+ +:+ +:+ +:+ ++ +:+ +++:++ ++ +:+ ++ ++ ++ ++ ++ ++ ++ ++ ++ + + + +++ + + ::::::::::: :::::::::: ::: :::: :::: :+: :+: :+: :+: +:+:+: :+:+:+ +:+ +:+ +:+ +:+ +:+ +:+:+ +:+ ++ +++:++ +++:++++: ++ +:+ ++ ...

paBugs <= 2.0 Beta 3 (class.mysql.php) Remote File Include Exploit

Exploit for unknown platform in category web applications ================================================================== paBugs = 2.0 Beta 3 class.mysql.php Remote File Include Exploit ================================================================== ?php / ::::::::: :::::::::: ::: :::...

paBugs 2.0 Beta 3 - class.mysql.php Remote File Inclusion

paBugs 2.0 Beta 3 - class.mysql.php Remote File Inclusion ?php / ::::::::: :::::::::: ::: ::: ::::::::::: ::: :+: :+: :+: :+: :+: :+: :+: +:+ +:+ +:+ +:+ +:+ +:+ +:+ ++ +:+ +++:++ ++ +:+ ++ ++ ++ ++ ++ ++ ++ ++ ++ + + + +++ + + ::::::::::: :::::::::: ::: :::: :::: :+: :+: :+: :+: +:+:+: :+:+:+ +:...

paBugs &lt;= 2.0 Beta 3 (class.mysql.php) Remote File Include Exploit

No description provided by source. ?php / ::::::::: :::::::::: ::: ::: ::::::::::: ::: :+: :+: :+: :+: :+: :+: :+: +:+ +:+ +:+ +:+ +:+ +:+ +:+ ++ +:+ +++:++ ++ +:+ ++ ++ ++ ++ ++ ++ ++ ++ ++ + + + +++ + + ::::::::::: :::::::::: ::: :::: :::: :+: :+: :+: :+: +:+:+: :+:+:+ +:+ +:+ +:+ +:+ +:+ +:+:+...