25 matches found
EUVD-2006-4852
Malware in sbrugna...
EUVD-2006-4821
Malware in sbrugna...
EUVD-2006-4964
Malware in sbrugna...
phpQuiz <= 0.1.2 - Remote SQL Injection / Code Execution Exploit
No description provided by source...
PHPQuiz-v.1.2.txt
Title: PHPQuiz Download File phpquiz/imgquiz/ folder is by defaut writable so after uploading a simple phpshell...
CVE-2006-4978
Multiple SQL injection vulnerabilities in Walter Beschmout PhpQuiz 1.2 and earlier allow remote attackers to execute arbitrary SQL commands via 1 the univers parameter in score.php and 2 the quizid parameter in home.php, accessed through the front/ URI...
CVE-2006-4978
CVE-2006-4978 affects Walter Beschmout PhpQuiz 1.2 and earlier, with multiple SQL injection vulnerabilities. The weaknesses allow remote attackers to inject SQL via the univers parameter in score.php or the quiz_id parameter in home.php, accessed through the front/ URI. Documented impact is arbit...
CVE-2006-4979
The CVE-2006-4979 entry concerns a Direct static code injection vulnerability in cfgphpquiz/install.php for Walter Beschmout PhpQuiz 1.2 and earlier. The underlying flaw lets remote attackers inject arbitrary PHP code into config.inc.php by submitting modified configuration settings, enabling pot...
CVE-2006-4865
Walter Beschmout PhpQuiz allows remote attackers to obtain sensitive information via a direct request to cfgphpquiz/install.php and other unspecified vectors...
CVE-2006-4865
Technical details about CVE-2006-4865 are not publicly provided in the supplied documents. No specifics on affected products, versions, or root cause are available here. Monitor for updates from official advisories and vulnerability databases.
CVE-2006-4865
Walter Beschmout PhpQuiz allows remote attackers to obtain sensitive information via a direct request to cfgphpquiz/install.php and other unspecified vectors...
PHPQuiz Multiple Remote Vulnerabilites
Title: PHPQuiz = v.1.2 Remote SQL injection/Code Execution Exploit Vendor : PHPQuiz webiste : http://www.phpquiz.com Version : = v.1.2 Severity: Critical Author: Simo64 / simo64atmorxorg MorX Security Reseach Team http://www.morx.org http://www.morx.org/phpquiz.txt Details : SQL injection univers...
phpQuiz <= 0.1.2 Remote SQL Injection / Code Execution Exploit
No description provided by source. Title: PHPQuiz = v.1.2 Remote SQL injection/Code Execution Exploit Vendor : PHPQuiz webiste : http://www.phpquiz.com Version : = v.1.2 Severity: Critical Author: Simo64 / simo64atmorxorg MorX Security Reseach Team http://www.morx.org...
phpQuiz 0.1.2 - SQL Injection Code Execution
phpQuiz 0.1.2 - SQL Injection Code Execution Title: PHPQuiz Download File phpquiz/imgquiz/ folder is by defaut writable so after uploading a simple phpshell...
phpquiz.txt
phpQuiz sensitive file install.php without authentification + Files containing interesting info passwords for sql db By : sn0oPy Risk : verry high Site : http://phpquiz.com/ Dork : intitle:"phpQuiz" | " Développé par PhpQuiz v.1.0 " | "© PhpQuiz" | inurl:"PhpQuiz" exploit :...
phpQuiz <= 0.1.2 Remote SQL Injection / Code Execution Exploit
Exploit for unknown platform in category web applications ============================================================== phpQuiz Download File input name="image" type="file...
phpQuiz 0.1.2 - SQL Injection / Code Execution
Title: PHPQuiz Download File phpquiz/imgquiz/ folder is by defaut writable so after uploading a simple phpshell w...
CVE-2006-4834
PHP remote file inclusion vulnerability in index.php in Jule Slootbeek phpQuiz 0.01 allows remote attackers to execute arbitrary PHP code via a URL in the pagename parameter...
CVE-2006-4834
PHP remote file inclusion vulnerability in index.php of phpQuiz 0.01 allows remote attackers to execute arbitrary PHP code via a URL in the pagename parameter. Affected software: phpQuiz 0.01 (index.php, pagename parameter). Root cause: inclusion of remote file via the pagename value enabling cod...
PT-2006-5592 · Phpquiz · Phpquiz
Name of the Vulnerable Software and Affected Versions: phpQuiz version 0.01 Description: The issue allows remote attackers to execute arbitrary PHP code via a URL in the pagename parameter in the index.php file. Recommendations: For phpQuiz version 0.01, consider restricting access to the pagenam...