65 matches found
phpBazar V2.1.1 stable rfi Vulnerability
Exploit for php platform in category web applications ======================================== phpBazar V2.1.1 stable rfi Vulnerability ======================================== Title: phpBazar V2.1.1 stable rfi Vulnerability Author: Sid3^effects Published: 2010-06-03 Verison: 2.1.1 stable vendor:...
phpBazar 2.1.1 stable - Remote File Inclusion
phpBazar 2.1.1 stable - Remote File Inclusion Title: phpBazar V2.1.1 stable rfi Vulnerability Author: Sid3^effects Published: 2010-06-03 Verison: 2.1.1 stable vendor: SmartISoft ooooo .oooooo. oooooo oooooo oooo 888' d8P' Y8b 888. 888. .8' 888 888 888. .8888. .8' 888 888 888 .8'888. .8' 888 888...
phpBazar 2.1.1 stable - Remote File Inclusion
Title: phpBazar V2.1.1 stable rfi Vulnerability Author: Sid3^effects Published: 2010-06-03 Verison: 2.1.1 stable vendor: SmartISoft ooooo .oooooo. oooooo oooooo oooo 888' d8P' Y8b 888. 888. .8' 888 888 888. .8888. .8' 888 888 888 .8'888. .8' 888 888 888.8' 888.8' 888 88b ooo 888' 888' o888o...
phpBazar 'classified.php' SQL Injection Vulnerability
The host is running phpBazar and is prone to SQL Injection vulnerability. OpenVAS Vulnerability Test $Id: gbphpbazarsqlinjvuln.nasl 5323 2017-02-17 08:49:23Z teissa $ phpBazar 'classified.php' SQL Injection Vulnerability Authors: Antu Sanadi Copyright: Copyright c 2010 Greenbone Networks GmbH,...
phpBazar <= 2.1.1 SQLi Vulnerability - Active Check
phpBazar is prone to an SQL injection SQLi vulnerability. Copyright C 2010 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you...
phpBazar Detection (HTTP)
HTTP based detection of phpBazar. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.800464";...
CVE-2009-4221
SQL injection vulnerability in classified.php in phpBazar 2.1.1fix and earlier allows remote attackers to execute arbitrary SQL commands via the catid parameter, a different vector than CVE-2008-3767...
Sql injection
SQL injection vulnerability in classified.php in phpBazar 2.1.1fix and earlier allows remote attackers to execute arbitrary SQL commands via the catid parameter, a different vector than CVE-2008-3767...
Design/Logic Flaw
phpBazar 2.1.1fix and earlier does not require administrative authentication for admin/admin.php, which allows remote attackers to obtain access to the admin control panel via a direct request...
CVE-2009-4222
phpBazar 2.1.1fix and earlier does not require administrative authentication for admin/admin.php, which allows remote attackers to obtain access to the admin control panel via a direct request...
CVE-2009-4221
CVE-2009-4221 affects phpBazar’s classified.php vulnerability in versions up to 2.1.1fix and earlier, where the catid parameter allows remote SQL injection due to unsanitized input. This enables arbitrary SQL execution as described in the vulnerability text. No explicit remediation details are pr...
CVE-2009-4221
SQL injection vulnerability in classified.php in phpBazar 2.1.1fix and earlier allows remote attackers to execute arbitrary SQL commands via the catid parameter, a different vector than CVE-2008-3767...
CVE-2009-4222
phpBazar 2.1.1fix and earlier is affected by CVE-2009-4222: it does not require administrative authentication for admin/admin.php, allowing remote attackers to access the admin control panel via a direct request. Affected versions are 2.1.1fix and earlier. The Red Hat entry confirms the same desc...
CVE-2009-4222
phpBazar 2.1.1fix and earlier does not require administrative authentication for admin/admin.php, which allows remote attackers to obtain access to the admin control panel via a direct request...
phpBazar <= 2.1.1fix (cid) SQL Injection
Exploit for unknown platform in category web applications ======================================== phpBazar = 2.1.1fix cid SQL Injection ======================================== The vulnerability is in the $GET'catid' , exploit :...
phpBazar <= 2.1.1fix (cid) SQL Injection
No description provided by source. / Author : MizoZ from MA Group : EvilWay, evilwayatmaildotcom Email : mizozxatgmaildotcom Greetz : Zuka, Dyle !! MABROOK L3IIIIIIIIIID / The vulnerability is in the $GET'catid' , exploit :...
phpBazar 2.1.1fix - cid SQL Injection
phpBazar 2.1.1fix - cid SQL Injection / Author : MizoZ from MA Group : EvilWay, evilwayatmaildotcom Email : mizozxatgmaildotcom Greetz : Zuka, Dyle !! MABROOK L3IIIIIIIIIID / The vulnerability is in the $GET'catid' , exploit :...
phpBazar 2.1.1fix - 'cid' SQL Injection
/ Author : MizoZ from MA Group : EvilWay, evilwayatmaildotcom Email : mizozxatgmaildotcom Greetz : Zuka, Dyle !! MABROOK L3IIIIIIIIIID / The vulnerability is in the $GET'catid' , exploit : http://server/classified.php?catid=2+and+1=0+union+all+select+1,2,3,4,5,6,7--...
phpBazar 2.1.1fix SQL Injection
/ Author : MizoZ from MA Group : EvilWay, evilwayatmaildotcom Email : mizozxatgmaildotcom Greetz : Zuka, Dyle !! MABROOK L3IIIIIIIIIID / The vulnerability is in the $GET'cid' , exploit : HOST/PATH/classified.php?catid=2+and+1=0+union+all+select+1,2,3,4,5,6,7-- Live Demo :...
phpBazar 2.1.1fix Remote Administration-Panel Vulnerability
Exploit for unknown platform in category web applications =========================================================== phpBazar-2.1.1fix Remote Administration-Panel Vulnerability =========================================================== =======================================================...