34 matches found
EUVD-2009-0967
Malware in sbrugna...
EUVD-2009-3318
Malware in sbrugna...
EUVD-2008-6013
Malware in sbrugna...
PHP Pro Bid 5.2.4 viewfeedback.php Multiple Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/19158/info PHP Pro Bid is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because the application fails to properly sanitize user-supplied input. A successful...
PHP Pro Bid 5.2.4 categories.php orderType Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/19158/info PHP Pro Bid is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because the application fails to properly sanitize user-supplied input. A successful...
PHP Pro Bid 5.2.4/6.04 Multiple SQL Injection Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/31263/info PHP Pro Bid is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied input before using it in an SQL query. Exploiting these issues could allow an attacker to...
PHP Pro Bid 5.2.4 auctionsearch.php advsrc Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/19158/info PHP Pro Bid is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because the application fails to properly sanitize user-supplied input. A successful...
PHP Pro Bid 6.0 SQL Injection
Securitylab.ir Application Info: Name: PHP Pro Bid Vendor: http://www.phpprobid.com Version: 6.0 Vulnerability Info: Type: SQL Injection Risk: Medium Vulnerability: http://site.com/auctiondetails.php? name = item name & auctionid = item ID and 1 = 2 union select concat username, 0x3a, password,...
CVE-2009-3336
SQL injection vulnerability in auctiondetails.php in PHP Pro Bid allows remote attackers to execute arbitrary SQL commands via the auctionid parameter...
Sql injection
SQL injection vulnerability in auctiondetails.php in PHP Pro Bid allows remote attackers to execute arbitrary SQL commands via the auctionid parameter...
CVE-2009-3336
SQL injection vulnerability in auctiondetails.php in PHP Pro Bid allows remote attackers to execute arbitrary SQL commands via the auctionid parameter...
CVE-2009-3336
CVE-2009-3336 describes an SQL injection in auction_details.php of PHP Pro Bid, exploitable via the auction_id parameter to allow remote SQL execution. The vulnerability is confirmed by multiple sources (NVD, CVE list, PRION/CVELIST) with a base score of 7.5 (HIGH). The connected documents do not...
PHP Pro Bid Blind SQL Injection
!/usr/bin/perl //////////////////////////////////\\\\\\\\\\\\\\\\\ \\\\\\\\\\\\\\\\\////////////////////////////////// o PHP Pro Bid Blind SQL Injection Exploit Software : PHP Pro Bid Vendor : http://www.phpprobid.com/ Author : NoGe Contact :...
PHP Pro Bid - Blind SQL Injection
!/usr/bin/perl //////////////////////////////////\\\\\\\\\\\\\\\\\ \\\\\\\\\\\\\\\\\////////////////////////////////// o PHP Pro Bid Blind SQL Injection Exploit Software : PHP Pro Bid Vendor : http://www.phpprobid.com/ Author : NoGe Contact :...
PHP Pro Bid Remote Blind SQL Injection Exploit
Exploit for unknown platform in category web applications ============================================== PHP Pro Bid Remote Blind SQL Injection Exploit ============================================== !/usr/bin/perl //////////////////////////////////\\\\\\\\\\\\\\\\\...
PHP Pro Bid Remote Blind SQL Injection Exploit
No description provided by source. !/usr/bin/perl //////////////////////////////////\\\\\\\\\\\\\\\\\ \\\\\\\\\\\\\\\\\////////////////////////////////// o PHP Pro Bid Blind SQL Injection Exploit Software : PHP Pro Bid Vendor : http://www.phpprobid.com/ Author :...
PHP Pro Bid - Blind SQL Injection
PHP Pro Bid - Blind SQL Injection !/usr/bin/perl //////////////////////////////////\\\\\\\\\\\\\\\\\ \\\\\\\\\\\\\\\\\////////////////////////////////// o PHP Pro Bid Blind SQL Injection Exploit Software : PHP Pro Bid Vendor : http://www.phpprobid.com/ Author :...
CVE-2009-0970
PHP remote file inclusion vulnerability in includes/classimage.php in PHP Pro Bid 6.05, when registerglobals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the fileExtension parameter. NOTE: the provenance of this information is unknown; the details are obtained...
Remote file inclusion
PHP remote file inclusion vulnerability in includes/classimage.php in PHP Pro Bid 6.05, when registerglobals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the fileExtension parameter. NOTE: the provenance of this information is unknown; the details are obtained...
CVE-2009-0970
PHP remote file inclusion vulnerability in includes/classimage.php in PHP Pro Bid 6.05, when registerglobals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the fileExtension parameter. NOTE: the provenance of this information is unknown; the details are obtained...