CVE-2008-3711

SQL injection vulnerability in index.php in PHPArcadeScript PHP Arcade Script 4.0 allows remote attackers to execute arbitrary SQL commands via the cat parameter in a browse action...

phpArcadeScript v4 (cat) Remote SQL Injection Vulnerability

No description provided by source. || | | PHP Arcade Script v4.0 cat Remote SQL Injection Vulnerability | | |---------------------Hussin X----------------------| | | Author: Hussin X | | Home : www.tryag.cc/cc | | email: darkangelg85atYahooDoTcom | | | | | | | script :...

phpArcadeScript v4 (cat) Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications =========================================================== phpArcadeScript v4 cat Remote SQL Injection Vulnerability =========================================================== || | | PHP Arcade Script v4.0 cat Remote SQL Injection...

Sql injection

SQL injection vulnerability in index.php in phpArcadeScript 1.0 through 3.0 RC2 allows remote attackers to execute arbitrary SQL commands via the userid parameter in a profile action...

CVE-2008-1163

SQL injection vulnerability in index.php in phpArcadeScript 1.0 through 3.0 RC2 allows remote attackers to execute arbitrary SQL commands via the userid parameter in a profile action...

CVE-2008-1163

What is affected : phpArcadeScript, versions 1.0 through 3.0 RC2 (index.php). Vulnerability : SQL injection via the userid parameter in a profile action. Impact : allows remote attackers to execute arbitrary SQL commands (per the vendor/persona description). Exploitation : public exploit referenc...

CVE-2008-1163

SQL injection vulnerability in index.php in phpArcadeScript 1.0 through 3.0 RC2 allows remote attackers to execute arbitrary SQL commands via the userid parameter in a profile action...

phparcadescript-sql.txt

phpArcadeScript all version Remote Sql Injection Exploit AUTHOR:SoSo H H Iraqi-Cracker Script Site: http://www.phparcadescript.com/ Price:$30.00 Tested on: Versions:1.0,2.0,3.0 RC1 &RC2 Dorks:"Powered by phpArcadeScript v1.0" "Powered by phpArcadeScript v2.0" "Powered by phpArcadeScript v3.0RC1"...

phpArcadeScript <= 3.0RC2 (userid) SQL Injection Vulnerability

No description provided by source. phpArcadeScript all version Remote Sql Injection Exploit AUTHOR:SoSo H H Iraqi-Cracker &nb...

phpArcadeScript <= 3.0RC2 (userid) SQL Injection Vulnerability

Exploit for unknown platform in category web applications ============================================================== phpArcadeScript = 3.0RC2 userid SQL Injection Vulnerability ============================================================== phpArcadeScript all version Remote Sql Injection...

phpArcadeScript 3.0RC2 - userid SQL Injection

phpArcadeScript 3.0RC2 - userid SQL Injection phpArcadeScript all version Remote Sql Injection Exploit AUTHOR:SoSo H H Iraqi-Cracker Script Site: http://www.phparcadescript.com/ Price:$30.00 Tested on: Versions:1.0,2.0,3.0 RC1 &RC2 Dorks:"Powered by phpArcadeScript v1.0" "Powered by phpArcadeScri...

phpArcadeScript 3.0RC2 - &#039;userid&#039; SQL Injection

phpArcadeScript all version Remote Sql Injection Exploit AUTHOR:SoSo H H Iraqi-Cracker Script Site: http://www.phparcadescript.com/ Price:$30.00 Tested on: Versions:1.0,2.0,3.0 RC1 &RC2 Dorks:"Powered by phpArcadeScript v1.0" "Powered by phpArcadeScript v2.0" "Powered by phpArcadeScript v3.0RC1"...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in phpArcadeScript 2.0 and earlier allow remote attackers to inject arbitrary web script or HTML via 1 the gamename parameter in tellafriend.php, 2 the loginstatus parameter in loginbox.php, 3 the submissionstatus parameter in index.php, the 4...

CVE-2006-1082

Multiple cross-site scripting XSS vulnerabilities in phpArcadeScript 2.0 and earlier allow remote attackers to inject arbitrary web script or HTML via 1 the gamename parameter in tellafriend.php, 2 the loginstatus parameter in loginbox.php, 3 the submissionstatus parameter in index.php, the 4...

CVE-2006-1082

Multiple cross-site scripting XSS vulnerabilities in phpArcadeScript 2.0 and earlier allow remote attackers to inject arbitrary web script or HTML via 1 the gamename parameter in tellafriend.php, 2 the loginstatus parameter in loginbox.php, 3 the submissionstatus parameter in index.php, the 4...

CVE-2006-1082

phpArcadeScript 2.0 and earlier are affected by multiple XSS vulnerabilities due to lack of input sanitization. The issues allow remote attackers to inject arbitrary script via parameters in tellafriend.php (gamename), loginbox.php (login_status), index.php (submissionstatus), browse.php (cell_ti...

phparcadescriptxss.txt

——–summary software: phpArcadeScript vendors website: http://www.phparcadescript.com/ versions: this poor coding is repetative throughought the application, possibly having more vulnerabilities present in the coding. ——– exploits...

[SA19124] phpArcadeScript Cross-Site Scripting Vulnerabilities

TITLE: phpArcadeScript Cross-Site Scripting Vulnerabilities SECUNIA ADVISORY ID: SA19124 VERIFY ADVISORY: http://secunia.com/advisories/19124/ CRITICAL: Less critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: phpArcadeScript 2.x http://secunia.com/product/8565/ phpArcadeScript 1.x...

phpArcadeScript XSS Injections

——–summary software: phpArcadeScript vendors website: http://www.phparcadescript.com/ versions: = 2.0 class: remote status: unpatched exploit: available solution: not available discovered by: retard and jim risk level: medium ——– description due to phpArcadeScript excessive use of global variable...

phpArcadeScript 2.0 loginbox.php login_status Parameter XSS

phpArcadeScript 2.0 loginbox.php loginstatus Parameter XSS. CVE-2006-1082. Webapps exploit for php platform source: http://www.securityfocus.com/bid/16957/info phpArcadeScript is prone to multiple cross-site scripting vulnerabilities. These issues are due to a lack of proper sanitization of...