Lucene search
K

65 matches found

0day.today
0day.today
added 2010/06/03 12:0 a.m.31 views

phpBazar V2.1.1 stable rfi Vulnerability

Exploit for php platform in category web applications ======================================== phpBazar V2.1.1 stable rfi Vulnerability ======================================== Title: phpBazar V2.1.1 stable rfi Vulnerability Author: Sid3^effects Published: 2010-06-03 Verison: 2.1.1 stable vendor:...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2010/06/03 12:0 a.m.24 views

phpBazar 2.1.1 stable - Remote File Inclusion

phpBazar 2.1.1 stable - Remote File Inclusion Title: phpBazar V2.1.1 stable rfi Vulnerability Author: Sid3^effects Published: 2010-06-03 Verison: 2.1.1 stable vendor: SmartISoft ooooo .oooooo. oooooo oooooo oooo 888' d8P' Y8b 888. 888. .8' 888 888 888. .8888. .8' 888 888 888 .8'888. .8' 888 888...

0.2AI score
Exploits0
Exploit DB
Exploit DB
added 2010/06/03 12:0 a.m.43 views

phpBazar 2.1.1 stable - Remote File Inclusion

Title: phpBazar V2.1.1 stable rfi Vulnerability Author: Sid3^effects Published: 2010-06-03 Verison: 2.1.1 stable vendor: SmartISoft ooooo .oooooo. oooooo oooooo oooo 888' d8P' Y8b 888. 888. .8' 888 888 888. .8888. .8' 888 888 888 .8'888. .8' 888 888 888.8' 888.8' 888 88b ooo 888' 888' o888o...

7.4AI score
Exploits0
OpenVAS
OpenVAS
added 2010/02/17 12:0 a.m.57 views

phpBazar 'classified.php' SQL Injection Vulnerability

The host is running phpBazar and is prone to SQL Injection vulnerability. OpenVAS Vulnerability Test $Id: gbphpbazarsqlinjvuln.nasl 5323 2017-02-17 08:49:23Z teissa $ phpBazar 'classified.php' SQL Injection Vulnerability Authors: Antu Sanadi Copyright: Copyright c 2010 Greenbone Networks GmbH,...

7.5CVSS0.3AI score0.02199EPSS
Exploits2References3
OpenVAS
OpenVAS
added 2010/02/17 12:0 a.m.35 views

phpBazar <= 2.1.1 SQLi Vulnerability - Active Check

phpBazar is prone to an SQL injection SQLi vulnerability. Copyright C 2010 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you...

7.6AI score
Exploits0References3
OpenVAS
OpenVAS
added 2010/02/17 12:0 a.m.13 views

phpBazar Detection (HTTP)

HTTP based detection of phpBazar. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.800464";...

7.4AI score
Exploits0
NVD
NVD
added 2009/12/07 5:30 p.m.28 views

CVE-2009-4221

SQL injection vulnerability in classified.php in phpBazar 2.1.1fix and earlier allows remote attackers to execute arbitrary SQL commands via the catid parameter, a different vector than CVE-2008-3767...

7.5CVSS8.2AI score0.00987EPSS
Exploits1References4
Prion
Prion
added 2009/12/07 5:30 p.m.17 views

Sql injection

SQL injection vulnerability in classified.php in phpBazar 2.1.1fix and earlier allows remote attackers to execute arbitrary SQL commands via the catid parameter, a different vector than CVE-2008-3767...

7.5CVSS8.7AI score0.00997EPSS
Exploits2References4Affected Software1
Prion
Prion
added 2009/12/07 5:30 p.m.13 views

Design/Logic Flaw

phpBazar 2.1.1fix and earlier does not require administrative authentication for admin/admin.php, which allows remote attackers to obtain access to the admin control panel via a direct request...

7.5CVSS7.4AI score0.02199EPSS
Exploits1References2Affected Software1
NVD
NVD
added 2009/12/07 5:30 p.m.30 views

CVE-2009-4222

phpBazar 2.1.1fix and earlier does not require administrative authentication for admin/admin.php, which allows remote attackers to obtain access to the admin control panel via a direct request...

7.5CVSS6.8AI score0.02199EPSS
Exploits1References2
CVE
CVE
added 2009/12/07 5:0 p.m.60 views

CVE-2009-4221

CVE-2009-4221 affects phpBazar’s classified.php vulnerability in versions up to 2.1.1fix and earlier, where the catid parameter allows remote SQL injection due to unsanitized input. This enables arbitrary SQL execution as described in the vulnerability text. No explicit remediation details are pr...

7.5CVSS8.3AI score0.00987EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2009/12/07 5:0 p.m.34 views

CVE-2009-4221

SQL injection vulnerability in classified.php in phpBazar 2.1.1fix and earlier allows remote attackers to execute arbitrary SQL commands via the catid parameter, a different vector than CVE-2008-3767...

8.2AI score0.00987EPSS
Exploits1References4
CVE
CVE
added 2009/12/07 5:0 p.m.55 views

CVE-2009-4222

phpBazar 2.1.1fix and earlier is affected by CVE-2009-4222: it does not require administrative authentication for admin/admin.php, allowing remote attackers to access the admin control panel via a direct request. Affected versions are 2.1.1fix and earlier. The Red Hat entry confirms the same desc...

7.5CVSS6.9AI score0.02199EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2009/12/07 5:0 p.m.36 views

CVE-2009-4222

phpBazar 2.1.1fix and earlier does not require administrative authentication for admin/admin.php, which allows remote attackers to obtain access to the admin control panel via a direct request...

6.8AI score0.02199EPSS
Exploits1References2
0day.today
0day.today
added 2009/11/28 12:0 a.m.25 views

phpBazar <= 2.1.1fix (cid) SQL Injection

Exploit for unknown platform in category web applications ======================================== phpBazar = 2.1.1fix cid SQL Injection ======================================== The vulnerability is in the $GET'catid' , exploit :...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2009/11/28 12:0 a.m.14 views

phpBazar &lt;= 2.1.1fix (cid) SQL Injection

No description provided by source. / Author : MizoZ from MA Group : EvilWay, evilwayatmaildotcom Email : mizozxatgmaildotcom Greetz : Zuka, Dyle !! MABROOK L3IIIIIIIIIID / The vulnerability is in the $GET'catid' , exploit :...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2009/11/28 12:0 a.m.14 views

phpBazar 2.1.1fix - cid SQL Injection

phpBazar 2.1.1fix - cid SQL Injection / Author : MizoZ from MA Group : EvilWay, evilwayatmaildotcom Email : mizozxatgmaildotcom Greetz : Zuka, Dyle !! MABROOK L3IIIIIIIIIID / The vulnerability is in the $GET'catid' , exploit :...

0.9AI score
Exploits0
Exploit DB
Exploit DB
added 2009/11/28 12:0 a.m.23 views

phpBazar 2.1.1fix - &#039;cid&#039; SQL Injection

/ Author : MizoZ from MA Group : EvilWay, evilwayatmaildotcom Email : mizozxatgmaildotcom Greetz : Zuka, Dyle !! MABROOK L3IIIIIIIIIID / The vulnerability is in the $GET'catid' , exploit : http://server/classified.php?catid=2+and+1=0+union+all+select+1,2,3,4,5,6,7--...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2009/11/27 12:0 a.m.12 views

phpBazar 2.1.1fix SQL Injection

/ Author : MizoZ from MA Group : EvilWay, evilwayatmaildotcom Email : mizozxatgmaildotcom Greetz : Zuka, Dyle !! MABROOK L3IIIIIIIIIID / The vulnerability is in the $GET'cid' , exploit : HOST/PATH/classified.php?catid=2+and+1=0+union+all+select+1,2,3,4,5,6,7-- Live Demo :...

0.7AI score
Exploits0
0day.today
0day.today
added 2009/11/25 12:0 a.m.34 views

phpBazar 2.1.1fix Remote Administration-Panel Vulnerability

Exploit for unknown platform in category web applications =========================================================== phpBazar-2.1.1fix Remote Administration-Panel Vulnerability =========================================================== =======================================================...

7.1AI score
Exploits0
Rows per page
Query Builder