md5 Encryption Decryption PHP Script - index.php Cross-Site Scripting

md5 Encryption Decryption PHP Script - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/40381/info md5 Encryption Decryption PHP Script is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker may leverage...

ImageHost 1.32 Shell Upload Vulnerability

Exploit for php platform in category web applications ========================================= ImageHost 1.32 Shell Upload Vulnerability ========================================= Exploit Title: ImageHost 1.32 Shell Upload Category: php script upload Date: 2010-05-20 Author: R i sk Y Contact:...

EgO 0.7b Arbitrary File Upload

Title: EgO v0.7b fckeditor Remote File Upload Download: http://sourceforge.net/projects/vairux-ego/ AUTHOR: ITSecTeam Email: [email protected] Website: http://www.itsecteam.com Forum : http://forum.ITSecTeam.com Original Advisory: www.ITSecTeam.com/en/vulnerabilities/vulnerability53.htm Thanks:...

EgO v0.7b (fckeditor) Remote File Upload

Exploit for php platform in category web applications ======================================== EgO v0.7b fckeditor Remote File Upload ======================================== Title: EgO v0.7b fckeditor Remote File Upload Download: http://sourceforge.net/projects/vairux-ego/ AUTHOR: ITSecTeam Emai...

EgO 0.7b - FCKeditor Arbitrary File Upload

EgO 0.7b - FCKeditor Arbitrary File Upload Title: EgO v0.7b fckeditor Remote File Upload Download: http://sourceforge.net/projects/vairux-ego/ AUTHOR: ITSecTeam Email: [email protected] Website: http://www.itsecteam.com Forum : http://forum.ITSecTeam.com Original Advisory:...

CVE-2009-4836

Eval injection vulnerability in system/services/init.php in Movie PHP Script 2.0 allows remote attackers to execute arbitrary PHP code via the anticode parameter...

Modelbook - 'casting_view.php' SQL Injection

/ / / \ \ \ \ \ / / \\ \ \ \ \ // /// \ \ / / \ //|\ / \ \ \ \ \ \ / / \ \ / / \ | | | \ | | || | | |/ / \ V / || |\ V / / \ | / \ | /| | | || / | | | | . | ' || / | || // \ // \|||/|||||||||\ .WEB.ID ----------------------------------------------------------------------- Modelbook...

CVE-2010-1497

Cross-site scripting XSS vulnerability in downloadproc.php in dlstats before 2.0 allows remote attackers to inject arbitrary web script or HTML via the id parameter...

Simple Calculator Shell Upload

======================================================================================== | Title : Simple Calculator by Peter Rekdal Sunde Remote Upload Vulnerability | Author : indoushka | Home : www.dz-blackhat.com | Tested on: Lunix Français v.9.4 Ubuntu | Bug : Remote Upload...

Date & Sex Vor und Ruckwarts Auktions System <= v2 Blind SQL Injection

Exploit for php platform in category web applications ====================================================================== Date & Sex Vor und Ruckwarts Auktions System 1 ----------------------------------------------------------------------------------------- Exploit !/usr/bin/env python --...

Vanilla 1.1.10 Remote File Inclusion

Vanilla-1.1.10 = Remote File Inclusion Vulnerability Title: Vanilla-1.1.10 = Remote File Inclusion Vulnerability Version: 1.1.10 link: http://php.opensourcecms.com/scripts/redirect/website.php?id=128 License: - Author: eidelweiss Date: 2010/03/22 Contact: eidelweissatcyberservices.com Thanks: Jos...

E-Topbiz Link Ads Blind SQL Injection

E-topbiz Link ADS 1 PHP script linkid Blind SQL Injection Vulnerability url: http://e-topbiz.com/oprema/pages/linkads1.php Author: Jose Luis Gongora Fernandez 'aka' JosS mail: sys-projectathotmaildotcom site: http://hack0wn.com team: Spanish Hackers Team - SHT This was written for educational...

E-topbiz Link ADS 1 PHP script (linkid) Blind SQL Injection Vulnerability

No description provided by source. E-topbiz Link ADS 1 PHP script linkid Blind SQL Injection Vulnerability url: http://e-topbiz.com/oprema/pages/linkads1.php Author: Jose Luis Gongora Fernandez 'aka' JosS mail: sys-projectathotmaildotcom site: http://hack0wn.com team: Spanish Hackers Team - SHT...

E-topbiz Link ADS 1 PHP script - linkid Blind SQL Injection

E-topbiz Link ADS 1 PHP script - linkid Blind SQL Injection E-topbiz Link ADS 1 PHP script linkid Blind SQL Injection Vulnerability url: http://e-topbiz.com/oprema/pages/linkads1.php Author: Jose Luis Gongora Fernandez 'aka' JosS mail: sys-projectathotmaildotcom site: http://hack0wn.com team:...

E-topbiz Link ADS 1 PHP script (linkid) Blind SQL Injection Vulnerability

Exploit for unknown platform in category web applications ========================================================================= E-topbiz Link ADS 1 PHP script linkid Blind SQL Injection Vulnerability ========================================================================= E-topbiz Link ADS 1...

E-topbiz Link ADS 1 PHP script - &#039;linkid&#039; Blind SQL Injection

E-topbiz Link ADS 1 PHP script linkid Blind SQL Injection Vulnerability url: http://e-topbiz.com/oprema/pages/linkads1.php Author: Jose Luis Gongora Fernandez 'aka' JosS mail: sys-projectathotmaildotcom site: http://hack0wn.com team: Spanish Hackers Team - SHT This was written for educational...

Uiga Church Portal index.php SQL Injection

Exploit for unknown platform in category web applications ========================================== Uiga Church Portal index.php SQL Injection ========================================== ----------------------------Information------------------------------------------------ +Name : Uiga Church...

SBD Directory 4.0 (XSS) Cross Site Scripting Vulnerability

Exploit for unknown platform in category web applications ========================================================== SBD Directory 4.0 XSS Cross Site Scripting Vulnerability ==========================================================...

MySmartBB 1.0.0 - Cross-Site Scripting

======================================================================================== | Title : MySmartBB 1.0.0 Cross Site Scripting in URI Vulnerability | Author : indoushka | email : [email protected] | Home : www.iq-ty.com | Web Site : http://www.mysmartbb.com/ | Dork : åÐÇ ÇáãæÞÚ íÚãá...

CableTEL's Triple Play v1.0 (login.php) Remote Login Bypass SQL Injection Vuln

Summary Triple Play is a PHP script that CableTEL offers its clients to check their internet traffic status. Description Triple Play suffers from a security bypass vulnerability login.php with sql injection attack. The login page can be accessed only by CableTEL's users. The script fails to...