1408 matches found
DomainSale PHP Script 1.0 - id SQL Injection
DomainSale PHP Script 1.0 - id SQL Injection Exploit Title: DomainSale PHP Script 1.0 - SQL Injection Dork: N/A Date: 08.12.2017 Vendor Homepage: https://www.codester.com/ChewiScripts Software Link: https://www.codester.com/items/5301/domainsale-php-script Demo:...
Doctor Search Script 1.0 - 'city' SQL Injection
Exploit Title: Doctor Search Script 1.0 - SQL Injection Dork: N/A Date: 08.12.2017 Vendor Homepage: https://www.phpscriptsmall.com/ Software Link: https://www.phpscriptsmall.com/product/doctor-search-script/ Demo: http://fxwebsolution.com/demo/doctorsearch/ Version: 1.0 Category: Webapps Tested o...
E-commerce MLM Software 1.0 - SQL Injection
Exploit Title: E-commerce MLM Software 1.0 - SQL Injection Dork: N/A Date: 08.12.2017 Vendor Homepage: https://www.phpscriptsmall.com/ Software Link: https://www.phpscriptsmall.com/product/e-commerce-mlm/ Demo: http://74.124.215.220/advaemlm/ Version: 1.0 Category: Webapps Tested on:...
Realestate Crowdfunding Script 2.7.2 - pid SQL Injection
Realestate Crowdfunding Script 2.7.2 - pid SQL Injection Exploit Title: Realestate Crowdfunding Script 2.7.2 - SQL Injection Dork: N/A Date: 08.12.2017 Vendor Homepage: https://www.phpscriptsmall.com/ Software Link: https://www.phpscriptsmall.com/product/realestate-crowdfunding-script/ Demo:...
Cab Booking Script 1.0 - city SQL Injection
Cab Booking Script 1.0 - city SQL Injection Exploit Title: Cab Booking Script 1.0 - SQL Injection Dork: N/A Date: 08.12.2017 Vendor Homepage: https://www.phpscriptsmall.com/ Software Link: https://www.phpscriptsmall.com/product/cab-booking-script-2/ Demo: http://fxwebsolution.com/demo/cabbooking/...
Entrepreneur Job Portal Script 2.0.6 - 'jobsearch_all.php?rid1' SQL Injection
Exploit Title: Entrepreneur Job Portal Script 2.0.6 - SQL Injection Dork: N/A Date: 08.12.2017 Vendor Homepage: https://www.phpscriptsmall.com/ Software Link: https://www.phpscriptsmall.com/product/entrepreneur-job-portal-script/ Demo: http://freelancewebdesignerchennai.com/demo/job-portal/...
Child Care Script 1.0 - 'city' SQL Injection
Exploit Title: Child Care Script 1.0 - SQL Injection Dork: N/A Date: 08.12.2017 Vendor Homepage: https://www.phpscriptsmall.com/ Software Link: https://www.phpscriptsmall.com/product/child-care-script/ Demo: http://ordermanagementscript.com/demo/childcare/ Version: 1.0 Category: Webapps Tested on...
Cab Booking Script 1.0 - 'city' SQL Injection
Exploit Title: Cab Booking Script 1.0 - SQL Injection Dork: N/A Date: 08.12.2017 Vendor Homepage: https://www.phpscriptsmall.com/ Software Link: https://www.phpscriptsmall.com/product/cab-booking-script-2/ Demo: http://fxwebsolution.com/demo/cabbooking/ Version: 1.0 Category: Webapps Tested on:...
Co-work Space Search Script 1.0 - city SQL Injection
Co-work Space Search Script 1.0 - city SQL Injection Exploit Title: Co-work Space Search Script 1.0 - SQL Injection Dork: N/A Date: 08.12.2017 Vendor Homepage: https://www.phpscriptsmall.com/ Software Link: https://www.phpscriptsmall.com/product/co-work-space-search-script/ Demo:...
Entrepreneur Job Portal Script 2.0.6 - jobsearch_all.php?rid1 SQL Injection
Entrepreneur Job Portal Script 2.0.6 - jobsearchall.php?rid1 SQL Injection Exploit Title: Entrepreneur Job Portal Script 2.0.6 - SQL Injection Dork: N/A Date: 08.12.2017 Vendor Homepage: https://www.phpscriptsmall.com/ Software Link:...
Nearbuy Clone Script 3.2 - 'search' SQL Injection
Exploit Title: Nearbuy Clone Script 3.2 - SQL Injection Dork: N/A Date: 08.12.2017 Vendor Homepage: https://www.phpscriptsmall.com/ Software Link: https://www.phpscriptsmall.com/product/nearbuy-clone/ Demo: http://www.fxwebsolution.com/demo/arthi/nearby/ Version: 3.2 Category: Webapps Tested on:...
Western Digital MyCloud multi_uploadify File Upload Vulnerability
This module exploits a file upload vulnerability found in Western Digital's MyCloud NAS web administration HTTP service. The /web/jquery/uploader/multiuploadify.php PHP script provides multipart upload functionality that is accessible without authentication and can be used to place a file anywher...
Basic B2B Script SQL Injection
Exploit Title: Basic B2B Script - SQL Injection Dork: N/A Date: 30.10.2017 Vendor Homepage: http://www.phpscriptsmall.com/ Software Link: http://www.exclusivescript.com/product/nC3F4570353/php-scripts/basic-b2b-script Demo: http://readymadeb2bscript.com/product/entrepreneur/ Version: N/A Category...
AROX School ERP PHP Script SQL Injection Vulnerability
AROX School ERP PHP Script is a web-based school management system. The system features enrollment management, class management, library management and fund management. A SQL injection vulnerability exists in AROX School ERP PHP Script version 1.0. A remote attacker can exploit this vulnerability...
International Islamic University Chittagong: SQL injection in http://119.18.148.140/hrd/js/makeemployeeid.php
Hello, The mentioned page takes at least two GET parameters, namely q and departmentname. The two parameters are vulnerable to SQL injection as both are placed into SQL query strings without proper sanitization. It seems like the PHP script uses the affected parameters into two SQL queries, since...
CVE-2017-15978
AROX School ERP PHP Script 1.0 allows SQL Injection via the officeadmin/ id parameter...
CVE-2017-15978
AROX School ERP PHP Script 1.0 allows SQL Injection via the officeadmin/ id parameter...
CVE-2017-15978
CVE-2017-15978 affects AROX School ERP PHP Script 1.0. The vulnerability is an SQL injection via the GET parameter id in office_admin/ (as shown in multiple sources, including Exploit-DB and CVE records). PoCs indicate time-based blind payloads (e.g., id parameter manipulation with AND SLEEP) to ...
Website Broker Script - status_id SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Website Broker Script - 'statusid' Parameter SQL Injection Dork: N/A Date: 30.10.2017 Vendor Homepage: http://www.phpscriptsmall.com/ Software Link:...
Online Exam Test Application - sort SQL Injection
Online Exam Test Application - sort SQL Injection Exploit Title: Online Exam Test Application - SQL Injection Dork: N/A Date: 30.10.2017 Vendor Homepage: http://www.phpscriptsmall.com/ Software Link: http://www.exclusivescript.com/product/1z2e4672468/php-scripts/online-exam-test-application Demo:...