6 matches found
Authentication flaw
uyepaneli.php in phPortal 1.0 allows remote attackers to bypass authentication and obtain administrative access by setting the kulladi cookie to a valid username...
CVE-2009-2098
SQL injection vulnerability in topicler.php in phPortal 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter...
Sql injection
SQL injection vulnerability in topicler.php in phPortal 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter...
CVE-2009-2098
CVE-2009-2098 affects phPortal 1.0: SQL injection in topicler.php via the id parameter, enabling remote arbitrary SQL commands. CVSS v2 base score 7.5 HIGH; attack vector NETWORK, complexity LOW, no authentication required; impacts partial confidentiality, integrity, and availability. Connected d...
PHPortal 1.0 - Insecure Cookie Handling
PHPortal 1.0 - Insecure Cookie Handling PhpPortal v1 Insecure Cookie Handling Vulnerability Author : KnocKout Special Thankz : CW All users Script : http://phportal.mertindualari.com Exploit; javascript:document.cookie="kulladi=Username;path=/"; Enter.. Go To;...
PHPortal 1.0 - Insecure Cookie Handling
PhpPortal v1 Insecure Cookie Handling Vulnerability Author : KnocKout Special Thankz : CW All users Script : http://phportal.mertindualari.com Exploit; javascript:document.cookie="kulladi=Username;path=/"; Enter.. Go To; http://target.com/uyepaneli.php?islem=bilgilerim milw0rm.com 2009-06-17...