17 matches found
EUVD-2005-0779
Malware in sbrugna...
Viart Shopping Cart 5.0 - Cross-Site Request Forgery / Arbitrary File Upload
function submitRequest var xhr = new XMLHttpRequest; xhr.open"POST", "http://localhost/admin/adminfmuploadfiles.php", true; xhr.setRequestHeader"Accept", "text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8"; xhr.setRequestHeader"Accept-Language", "en-US,en;q=0.5";...
Job Search Engine Script SQL Injection Vulnerability
No description provided by source. 1 1 0 I'm L0rd CrusAd3r member from Inj3ct0r Team 1 1 0 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=1 Author: L0rd CrusAd3r aka VSN [email protected] Exploit Title:Job Search Engine Script SQL Injection Vendor...
PHP openssl_x509_parse() - Memory Corruption Vulnerability
No description provided by source. SektionEins GmbH www.sektioneins.de -= Security Advisory =- Advisory: PHP opensslx509parse Memory Corruption Vulnerability Release Date: 2013/12/13 Last Modified: 2013/12/13 Author: Stefan Esser stefan.esseratsektioneins.de Application: PHP 4.0.6 - PHP 4.4.9 PHP...
PHP - openssl_x509_parse() Memory Corruption
PHP - opensslx509parse Memory Corruption SektionEins GmbH www.sektioneins.de -= Security Advisory =- Advisory: PHP opensslx509parse Memory Corruption Vulnerability Release Date: 2013/12/13 Last Modified: 2013/12/13 Author: Stefan Esser stefan.esseratsektioneins.de Application: PHP 4.0.6 - PHP 4.4...
PHP openssl_x509_parse() Memory Corruption
SektionEins GmbH www.sektioneins.de -= Security Advisory =- Advisory: PHP opensslx509parse Memory Corruption Vulnerability Release Date: 2013/12/13 Last Modified: 2013/12/13 Author: Stefan Esser stefan.esseratsektioneins.de Application: PHP 4.0.6 - PHP 4.4.9 PHP 5.0.x PHP 5.1.x PHP 5.2.x PHP 5.3....
Job Search Engine Script SQL Injection
1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : Inj3ct0r.com 0 1 + Support e-mail :...
Job Search Engine Script SQL Injection Vulnerability
Exploit for php platform in category web applications ==================================================== Job Search Engine Script SQL Injection Vulnerability ==================================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' ...
Job Search Engine Script - SQL Injection
Job Search Engine Script - SQL Injection 1 1 0 I'm L0rd CrusAd3r member from Inj3ct0r Team 1 1 0 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=1 Author: L0rd CrusAd3r aka VSN [email protected] Exploit Title:Job Search Engine Script SQL Injection Vendor...
Full Site For Restaurant SQL Injection
Author: L0rd CrusAd3r aka VSN [email protected] Exploit Title: Full Site for Restaurant SQL Injection Vulnerability Vendor url:http://www.mformula.com.br/ Version:n/a Price:100$ Published: 2010-06-11 Greetz to:Sid3^effects, MaYur, M4n0j, Dark Blue, S1ayer,d3c0d3r,KD and to all ICW & AH member...
Full Site for Restaurant - SQL Injection
Full Site for Restaurant - SQL Injection Vendor url:http://www.mformula.com.br/ Greetz to:Sid3^effects, MaYur, M4n0j, Dark Blue, S1ayer,d3c0d3r,KD and to all ICW & AH members. Spl Greetz to:inj3ct0r.com Team Description: Full Site for Restaurant SQL Injection Vulnerability Internal system for tot...
Restaurant SQL Injection Vulnerability
Exploit for php platform in category web applications ====================================== Restaurant SQL Injection Vulnerability ====================================== Author: L0rd CrusAd3r aka VSN email protected Exploit Title: Full Site for Restaurant SQL Injection Vulnerability Vendor...
Full Site for Restaurant - SQL Injection
Vendor url:http://www.mformula.com.br/ Greetz to:Sid3^effects, MaYur, M4n0j, Dark Blue, S1ayer,d3c0d3r,KD and to all ICW & AH members. Spl Greetz to:inj3ct0r.com Team Description: Full Site for Restaurant SQL Injection Vulnerability Internal system for total administration of the site, Available...
Geeklog 1.5.2 - 'SEC_authenticate()' SQL Injection
= 5.0 google dorks: "By Geeklog" "Created this page in" +seconds +powered "By Geeklog" "Created this page in" +seconds +powered inurl:publichtml vulnerability, see /publichtml/webservices/atom/index.php near lines 34-53: ... requireonce '../../lib-common.php'; if PHPVERSION 5...
Bo-blog文件包含漏洞
Bo-blog程序在程序逻辑方面没有处理存在本地文件包含漏洞,在Php5.0可能导致敏感信息泄露以及Php代码执行,在Php5.0直接导致远程代码执行。 Bo-Blog 2.0.1 SP1 http://bo-blog.com/ 临时解决方案 修改Php设置registerglobals = Off,可以暂时避免受此漏洞影响。...
MySpeach 3.0.7 - Local/Remote File Inclusion
/=======================================\ | Advisory :: MySpeach = 5.0.0, registerglobals = On, allowurlfopen = On | | Vuln 2 : registerglobals = On | | Risk level : High | | | +-------------------------------------------------------------------------------------------------------+ | | | Program...
CVE-2005-0776
adm-photo.php in PhotoPost PHP 5.0 RC3 does not properly verify administrative privileges before manipulating photos, which could allow remote attackers to manipulate other users' photos...