Cross site request forgery (csrf)

PHPKIT 1.6.4 PL1 includes the session ID in the URL, which allows remote attackers to conduct cross-site request forgery CSRF attacks by reading the PHPKITSID parameter from the HTTP Referer and using it in a request to 1 modify the user profile via uploadfiles/include.php or 2 create a new...

CVE-2008-7193

PHPKIT 1.6.4 PL1 includes the session ID in the URL, which allows remote attackers to conduct cross-site request forgery CSRF attacks by reading the PHPKITSID parameter from the HTTP Referer and using it in a request to 1 modify the user profile via uploadfiles/include.php or 2 create a new...

CVE-2008-7193

PHPKIT 1.6.4 PL1 is vulnerable to Cross-Site Request Forgery (CSRF) because the session ID is included in the URL. An attacker can read the PHPKITSID parameter from the HTTP Referer and reuse it to perform actions on behalf of a user, specifically (1) modify the user profile via upload_files/incl...

phpkit-xsrf.txt

PHPKIT 1.6.4 PL1 2 XSRF Vulnerabilites founded by NBBN Vendor: http://www.phpkit.de/ PHPKIT sends in all link in the forum the sessionid via GET. So if an attacker send a link to a victim, for example in a private message, he have the sessionid if he filter the Referer: ::Vulnerabilites: There ar...

PHPKIT 1.6.4 PL1 2 XSRF Vulnerabilities

PHPKIT 1.6.4 PL1 2 XSRF Vulnerabilites founded by NBBN Vendor: http://www.phpkit.de/ PHPKIT sends in all link in the forum the sessionid via GET. So if an attacker send a link to a victim, for example in a private message, he have the sessionid if he filter the Referer: ?php $ref =...

PHPkit 1.6.1 (include.php?path=) Remote File Inclusion

PHPkit 1.6.1 include.php?path= Remote File Inclusion Download: http://www.webmasternet.de/ Bug found by Jose Luis Gongora Fernandez / JosS! Contact: sys-projectathotmail.com Spanish Hackers Team www.spanish-hackers.com /server irc.freenode.net /join fullsecure d0rk: "PHPKIT Version 1.6.1" Stop...

phpkit-rfi.txt

PHPkit 1.6.1 include.php?path= Remote File Inclusion Download: http://www.webmasternet.de/ Bug found by Jose Luis Góngora Fernández / JosS! Contact: sys-projectathotmail.com Spanish Hackers Team www.spanish-hackers.com /server irc.freenode.net /join fullsecure d0rk: "PHPKIT Version 1.6.1" Stop...

CVE-2007-6134

SQL injection vulnerability in pkinc/public/article.php in PHPKIT 1.6.4pl1 allows remote attackers to execute arbitrary SQL commands via the contentid parameter in an article action to include.php, a different vector than CVE-2006-1773...

Sql injection

SQL injection vulnerability in pkinc/public/article.php in PHPKIT 1.6.4pl1 allows remote attackers to execute arbitrary SQL commands via the contentid parameter in an article action to include.php, a different vector than CVE-2006-1773...

CVE-2007-6134

CVE-2007-6134 is an SQL injection vulnerability affecting PHPKIT 1.6.4pl1 where the contentid parameter in an article action to include.php (via pkinc/public/article.php) can allow remote attackers to execute arbitrary SQL. This is a separate vector from CVE-2006-1773. The connected sources confi...

CVE-2007-6134

SQL injection vulnerability in pkinc/public/article.php in PHPKIT 1.6.4pl1 allows remote attackers to execute arbitrary SQL commands via the contentid parameter in an article action to include.php, a different vector than CVE-2006-1773...

phpkit-sql.txt

!/usr/bin/perl Vulnerability found & exploit written by $h4d0wl33t shadowleet Contact: [email protected] Phpkit 1.6.4pl1 Non Public Exploit by $hadowleet, Description: Vulnerability in file pkinc/public/article.php On line 71: $contentid=!$contentid && isset$REQUEST'contentid' &&...

PHPKIT 1.6.4pl1 - article.php SQL Injection

PHPKIT 1.6.4pl1 - article.php SQL Injection !/usr/bin/perl Vulnerability found & exploit written by $h4d0wl33t shadowleet Contact: [email protected] Phpkit 1.6.4pl1 Non Public Exploit by $hadowleet, Description: Vulnerability in file pkinc/public/article.php On line 71:...

PHPKIT 1.6.4pl1 - 'article.php' SQL Injection

!/usr/bin/perl Vulnerability found & exploit written by $h4d0wl33t shadowleet Contact: [email protected] Phpkit 1.6.4pl1 Non Public Exploit by $hadowleet, Description: Vulnerability in file pkinc/public/article.php On line 71: $contentid=!$contentid && isset$REQUEST'contentid' &&...

PHPKIT 1.6.4pl1 article.php Remote SQL Injection Exploit

Exploit for unknown platform in category web applications ======================================================== PHPKIT 1.6.4pl1 article.php Remote SQL Injection Exploit ======================================================== !/usr/bin/perl Vulnerability found & exploit written by $h4d0wl33t...

PHPKIT 1.6.4pl1 article.php Remote SQL Injection Exploit

No description provided by source. !/usr/bin/perl Vulnerability found & exploit written by $h4d0wl33t shadowleet Contact: [email protected] Phpkit 1.6.4pl1 Non Public Exploit by $hadowleet, Description: Vulnerability in file pkinc/public/article.php On line 71: $contentid=!$contentid &&...

CVE-2006-7115

SQL injection vulnerability in PHPKit 1.6.1 RC2 allows remote attackers to inject arbitrary SQL commands via the catid parameter to include.php when the path parameter is set to faq/faq.php, and other unspecified vectors involving guestbook/print.php...

CVE-2006-7115

SQL injection vulnerability in PHPKit 1.6.1 RC2 allows remote attackers to inject arbitrary SQL commands via the catid parameter to include.php when the path parameter is set to faq/faq.php, and other unspecified vectors involving guestbook/print.php...

CVE-2006-7115

The CVE-2006-7115 entry documents a SQL injection in PHPKit 1.6.1 RC2. The vulnerability is triggered via the catid parameter passed to include.php when the path parameter is set to faq/faq.php, with additional unspecified vectors involving guestbook/print.php. Affected software is PHPKit 1.6.1 R...

PHPKit Comment.PHP SQL注入漏洞

PHPKit是一款基于PHP的WEB应用程序。 PHPKit不正确过滤用户提交的输入，远程攻击者可以利用漏洞进行SQL注入攻击，获得敏感信息。 问题是'Comment.PHP'脚本对用户提交的'subid'参数缺少过滤，提交恶意脚本代码作为参数数据，可导致获得敏感信息。 PHPKIT 1.6.1 R2 目前没有解决方案提供： http://phpkit.de/include.php?path=start.php...