Lucene search
K

110 matches found

seebug.org
seebug.org
added 2008/08/01 12:0 a.m.24 views

PHPX 3.5.16 Cookie Poisoning and Login Bypass Vulnerability

No description provided by source. ======================================================================= = gnix = gnixmail at gmail dot com http://gnix.netsons.org Application: phpx http://www.phpx.org/project.php stable version Versions: 3.5.16 Platforms: All Bug: Cookie poisoning / Login bypa...

7.1AI score
Exploits0
0day.today
0day.today
added 2008/07/31 12:0 a.m.30 views

PHPX 3.5.16 Cookie Poisoning and Login Bypass Vulnerability

Exploit for unknown platform in category web applications =========================================================== PHPX 3.5.16 Cookie Poisoning and Login Bypass Vulnerability =========================================================== Application: phpx http://www.phpx.org/project.php stable...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2008/07/31 12:0 a.m.21 views

phpx-cookie.txt

======================================================================= = gnix = gnixmail at gmail dot com http://gnix.netsons.org Application: phpx http://www.phpx.org/project.php stable version Versions: 3.5.16 Platforms: All Bug: Cookie poisoning / Login bypass Date: 31 July 2008...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2008/07/31 12:0 a.m.25 views

PHPX 3.5.16 - Cookie Poisoning Authentication Bypass

PHPX 3.5.16 - Cookie Poisoning Authentication Bypass ======================================================================= = gnix = gnixmail at gmail dot com http://gnix.netsons.org Application: phpx http://www.phpx.org/project.php stable version Versions: 3.5.16 Platforms: All Bug: Cookie...

0.7AI score
Exploits0
Exploit DB
Exploit DB
added 2008/07/31 12:0 a.m.43 views

PHPX 3.5.16 - Cookie Poisoning / Authentication Bypass

======================================================================= = gnix = gnixmail at gmail dot com http://gnix.netsons.org Application: phpx http://www.phpx.org/project.php stable version Versions: 3.5.16 Platforms: All Bug: Cookie poisoning / Login bypass Date: 31 July 2008...

7AI score
Exploits0
Prion
Prion
added 2007/03/20 10:19 p.m.18 views

Sql injection

Multiple SQL injection vulnerabilities in phpx 3.5.15 allow remote attackers to execute arbitrary SQL commands via the 1 imageid or 2 catid parameter to a gallery.php; the 3 newsid parameter to b news.php or c print.php; 4 the newscatid parameter to news.php; the 5 catid, 6 topicid, or 7 postid...

7.5CVSS9.2AI score0.02049EPSS
Exploits0References11Affected Software1
Cvelist
Cvelist
added 2007/03/20 10:0 p.m.20 views

CVE-2007-1551

Multiple cross-site scripting XSS vulnerabilities in phpx 3.5.15 allow remote attackers to inject arbitrary web script or HTML via 1 the signature in "dans profile," or 2 search.php...

5.8AI score0.01528EPSS
Exploits0References9
Cvelist
Cvelist
added 2007/03/20 10:0 p.m.21 views

CVE-2007-1550

Multiple SQL injection vulnerabilities in phpx 3.5.15 allow remote attackers to execute arbitrary SQL commands via the 1 imageid or 2 catid parameter to a gallery.php; the 3 newsid parameter to b news.php or c print.php; 4 the newscatid parameter to news.php; the 5 catid, 6 topicid, or 7 postid...

8.5AI score0.02049EPSS
Exploits0References11
CVE
CVE
added 2007/03/20 10:0 p.m.51 views

CVE-2007-1551

CVE-2007-1551 affects phpx 3.5.15 with multiple cross-site scripting (XSS) vulnerabilities. The issues allow remote attackers to inject arbitrary web script or HTML via (1) the signature in "dans profile" and (2) search.php. The affected software is phpx 3.5.15; root cause details are not spelled...

4.3CVSS5.8AI score0.01528EPSS
Exploits0References9Affected Software1
CVE
CVE
added 2007/03/20 10:0 p.m.56 views

CVE-2007-1549

CVE-2007-1549 affects phpx 3.5.15 where gallery.php’s addImage action allows unrestricted file upload. An attacker can upload arbitrary PHP scripts, which are placed under gallery/shelties/ and could be executed remotely. The CVE details focus on the unrestricted upload vulnerability and its abil...

6.8CVSS7.4AI score0.01165EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2007/03/20 10:0 p.m.69 views

CVE-2007-1550

CVE-2007-1550 affects phpx 3.5.15, introducing multiple SQL injection weaknesses in gallery.php, news.php/print.php (via image_id, cat_id, news_id), news.php (news_cat_id), forums.php (cat_id, topic_id, post_id), and users.php (user_id). The underlying issue is unsafely concatenated SQL queries t...

7.5CVSS8.5AI score0.02049EPSS
Exploits0References11Affected Software1
exploitpack
exploitpack
added 2007/03/19 12:0 a.m.14 views

PHPX 3.5.153.5.16 - users.php SQL Injection

PHPX 3.5.153.5.16 - users.php SQL Injection source: https://www.securityfocus.com/bid/23033/info PHPX is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. Exploiting these issues could allow an attacker to steal cookie-based...

0.1AI score
Exploits0
exploitpack
exploitpack
added 2007/03/19 12:0 a.m.15 views

PHPX 3.5.153.5.16 - forums.php SQL Injection

PHPX 3.5.153.5.16 - forums.php SQL Injection source: https://www.securityfocus.com/bid/23033/info PHPX is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. Exploiting these issues could allow an attacker to steal cookie-base...

0.1AI score
Exploits0
exploitpack
exploitpack
added 2007/03/19 12:0 a.m.11 views

PHPX 3.5.153.5.16 - news.php SQL Injection

PHPX 3.5.153.5.16 - news.php SQL Injection source: https://www.securityfocus.com/bid/23033/info PHPX is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. Exploiting these issues could allow an attacker to steal cookie-based...

0.2AI score
Exploits0
exploitpack
exploitpack
added 2007/03/19 12:0 a.m.13 views

PHPX 3.5.153.5.16 - gallery.php SQL Injection

PHPX 3.5.153.5.16 - gallery.php SQL Injection source: https://www.securityfocus.com/bid/23033/info PHPX is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. Exploiting these issues could allow an attacker to steal cookie-bas...

0.1AI score
Exploits0
exploitpack
exploitpack
added 2007/03/19 12:0 a.m.16 views

PHPX 3.5.153.5.16 - print.php SQL Injection

PHPX 3.5.153.5.16 - print.php SQL Injection source: https://www.securityfocus.com/bid/23033/info PHPX is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. Exploiting these issues could allow an attacker to steal cookie-based...

0.1AI score
Exploits0
Exploit DB
Exploit DB
added 2007/03/19 12:0 a.m.46 views

PHPX 3.5.15/3.5.16 - 'gallery.php' SQL Injection

source: https://www.securityfocus.com/bid/23033/info PHPX is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, execute arbitra...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2007/03/19 12:0 a.m.21 views

PHPX 3.5.15/3.5.16 - 'news.php' SQL Injection

source: https://www.securityfocus.com/bid/23033/info PHPX is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, execute arbitra...

7AI score
Exploits0
Exploit DB
Exploit DB
added 2007/03/19 12:0 a.m.57 views

PHPX 3.5.15/3.5.16 - 'users.php' SQL Injection

source: https://www.securityfocus.com/bid/23033/info PHPX is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, execute arbitra...

7AI score
Exploits0
Exploit DB
Exploit DB
added 2007/03/19 12:0 a.m.33 views

PHPX 3.5.15/3.5.16 - 'forums.php' SQL Injection

source: https://www.securityfocus.com/bid/23033/info PHPX is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, execute arbitra...

7AI score
Exploits0
Rows per page
Query Builder