24 matches found
EUVD-2006-6825
Malware in sbrugna...
phpBB2 Plus 1.53 'kb.php' SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/38828/info phpBB2 Plus is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise t...
PHPBB2 Plus 1.5 Portal.PHP Multiple Cross-Site Scripting Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/13151/info phpBB2 Plus is affected by multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to...
PHPBB2 Plus 1.5 GroupCP.PHP Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/13149/info phpBB2 Plus is affected by a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary...
PHPBB2 Plus 1.5 ViewTopic.PHP Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/13153/info phpBB2 Plus is affected by a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary...
PHPBB2 Plus 1.5 Index.PHP Multiple Cross-Site Scripting Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/13150/info phpBB2 Plus is affected by multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to...
phpBB2 Plus 1.53 (kb.php?mode) SQL Injection Vulnerability
Exploit for unknown platform in category web applications ========================================================== phpBB2 Plus 1.53 kb.php?mode SQL Injection Vulnerability ========================================================== Author : Gamoscu Homepage : http://www.1923turk.com Blog :...
PHPBB2 Plus 1.53 - 'kb.php' SQL Injection
source: https://www.securityfocus.com/bid/38828/info phpBB2 Plus is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify...
phpBB2 Plus 1.53 SQL Injection
phpBB2 Plus 1.53 kb.php?mode SQL Injection Vulnerability Author : Gamoscu Homepage : http://www.1923turk.com Blog : http://gamoscu.wordpress.com/ Dork : inurl:kb.php?mode=cat&cat= Vulnerable File kb.php?mode=cat&cat= SQL XpL -1+union+select+1,concatuserid,char58,username,...
PHPBB2 Plus 1.53 - kb.php SQL Injection
PHPBB2 Plus 1.53 - kb.php SQL Injection source: https://www.securityfocus.com/bid/38828/info phpBB2 Plus is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to...
phpBB2-Plus 1.52 跨站脚本漏洞
No description provided by source...
CVE-2006-6842
The CVE-2006-6842 entry describes an SQL injection vulnerability in admin/admin_acronyms.php of Acronym Mod 0.9.5 for phpBB2 Plus 1.53, allowing remote attackers to execute arbitrary SQL commands via the id parameter. Public references (e.g., Exploit-DB 3033) indicate known exploits. Affected com...
CVE-2006-6842
SQL injection vulnerability in admin/adminacronyms.php in the Acronym Mod 0.9.5 for phpBB2 Plus 1.53 allows remote attackers to execute arbitrary SQL commands via the id parameter...
phpBB2 Plus 1.53 (Acronym Mod) Remote SQL Injection Vulnerability
No description provided by source. Acronym Mod v0.9.5 Remote SQL Injection Vulnerability Download: http://www.codemonkeyx.net Found By: the master exploit:...
phpBB2 Plus 1.53 - Acronym Mod SQL Injection
Acronym Mod v0.9.5 Remote SQL Injection Vulnerability Download: http://www.codemonkeyx.net Found By: the master exploit: http://Target/Path/admin/adminacronyms.php?mode=edit&id=-1%20UNION%20SELECT%20null,userpassword,null%20FROM%20phpbbusers%20where%20userid=2&sid=AdminHash Greetz: str0ke , Dr Ma...
phpBB2 Plus 1.53 - Acronym Mod SQL Injection
phpBB2 Plus 1.53 - Acronym Mod SQL Injection Acronym Mod v0.9.5 Remote SQL Injection Vulnerability Download: http://www.codemonkeyx.net Found By: the master exploit:...
phpBB2 Plus 1.53 (Acronym Mod) Remote SQL Injection Vulnerability
Exploit for unknown platform in category web applications ================================================================= phpBB2 Plus 1.53 Acronym Mod Remote SQL Injection Vulnerability ================================================================= Acronym Mod v0.9.5 Remote SQL Injection...
phpBB2 Plus <= 1.52 Multiple XSS
The remote host is running a version of phpBB2 Plus that suffers from multiple cross-site scripting flaws due to a general failure of the application and associated modules to sanitize user-supplied input. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc';...
PHPBB2 Plus 1.5 - GroupCP.php Cross-Site Scripting
PHPBB2 Plus 1.5 - GroupCP.php Cross-Site Scripting source: https://www.securityfocus.com/bid/13149/info phpBB2 Plus is affected by a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue ...
PHPBB2 Plus 1.5 - Portal.php Multiple Cross-Site Scripting Vulnerabilities
PHPBB2 Plus 1.5 - Portal.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/13151/info phpBB2 Plus is affected by multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. ...