22 matches found
EUVD-2008-4057
Malware in sbrugna...
EUVD-2008-3574
Malware in sbrugna...
phsBlog 0.1.1 - Multiple Remote SQL Injection Vulnerabilities
No description provided by source. Name : phsBlog v0.1.1 Multiple Remote SQL Injection Vulnerabilities Author : cOndemned Dark-Coders member Greetz : ZaBeaTy, GregStar, str0ke, 0in, suN8Hclf, ixos, TBH, Avantura : Proof of Concept : Magic Quotes = On/Off...
CVE-2008-4072
Multiple SQL injection vulnerabilities in index.php in phsBlog 0.2 allow remote attackers to execute arbitrary SQL commands via 1 the sid parameter in a pickup action or 2 the sqlcid parameter, different vectors than CVE-2008-3588...
Sql injection
Multiple SQL injection vulnerabilities in index.php in phsBlog 0.2 allow remote attackers to execute arbitrary SQL commands via 1 the sid parameter in a pickup action or 2 the sqlcid parameter, different vectors than CVE-2008-3588...
CVE-2008-4072
CVE-2008-4072 affects phsBlog 0.2 via SQL injection in index.php, exploitable through the sid parameter (pickup action) or the sql_cid parameter. The root cause, as stated, is unsafe SQL construction allowing remote attackers to insert arbitrary SQL. The connected documents do not provide concret...
CVE-2008-4072
Multiple SQL injection vulnerabilities in index.php in phsBlog 0.2 allow remote attackers to execute arbitrary SQL commands via 1 the sid parameter in a pickup action or 2 the sqlcid parameter, different vectors than CVE-2008-3588...
PhsBlog v0.2 Bypass Sql injection Filtering Exploit
!/usr/bin/perl ---------------------------------------------------------------- Script : PhsBlog v0.2 Type : Bypass Sql injection Filtering Exploit Method : GET Risk : High ---------------------------------------------------------------- Discovered by : Khashayar Fereidani a.k.a. Dr.Crash My...
phsBlog 0.2 Bypass SQL Injection Filtering Exploit
No description provided by source. !/usr/bin/perl ---------------------------------------------------------------- Script : PhsBlog v0.2 Type : Bypass Sql injection Filtering Exploit Method : GET Risk : High ---------------------------------------------------------------- Discovered by : Khashaya...
phsblog02-sql.txt
!/usr/bin/perl ---------------------------------------------------------------- Script : PhsBlog v0.2 Type : Bypass Sql injection Filtering Exploit Method : GET Risk : High ---------------------------------------------------------------- Discovered by : Khashayar Fereidani a.k.a. Dr.Crash My...
phsBlog 0.2 - Bypass SQL Injection Filtering
phsBlog 0.2 - Bypass SQL Injection Filtering !/usr/bin/perl ---------------------------------------------------------------- Script : PhsBlog v0.2 Type : Bypass Sql injection Filtering Exploit Method : GET Risk : High ---------------------------------------------------------------- Discovered by ...
phsBlog 0.2 Bypass SQL Injection Filtering Exploit
Exploit for unknown platform in category web applications ================================================== phsBlog 0.2 Bypass SQL Injection Filtering Exploit ================================================== !/usr/bin/perl ---------------------------------------------------------------- Script...
phsBlog 0.2 - Bypass SQL Injection Filtering
!/usr/bin/perl ---------------------------------------------------------------- Script : PhsBlog v0.2 Type : Bypass Sql injection Filtering Exploit Method : GET Risk : High ---------------------------------------------------------------- Discovered by : Khashayar Fereidani a.k.a. Dr.Crash My...
Sql injection
Multiple SQL injection vulnerabilities in phsBlog 0.1.1 allow remote attackers to execute arbitrary SQL commands via the 1 eid parameter to comments.php, 2 cid parameter to index.php, and the 3 urltitle parameter to entries.php...
CVE-2008-3588
Multiple SQL injection vulnerabilities in phsBlog 0.1.1 allow remote attackers to execute arbitrary SQL commands via the 1 eid parameter to comments.php, 2 cid parameter to index.php, and the 3 urltitle parameter to entries.php...
CVE-2008-3588
CVE-2008-3588 : Concrete details across connected sources show multiple SQL injection vulnerabilities in phsBlog, specifically in version 0.1.1 (and related 0.2 references) where remote attackers can inject via parameters (1) eid to comments.php, (2) cid to index.php, and (3) urltitle to entries....
CVE-2008-3588
Multiple SQL injection vulnerabilities in phsBlog 0.1.1 allow remote attackers to execute arbitrary SQL commands via the 1 eid parameter to comments.php, 2 cid parameter to index.php, and the 3 urltitle parameter to entries.php...
phsBlog 0.1.1 Multiple Remote SQL Injection Vulnerabilities
No description provided by source. Name : phsBlog v0.1.1 Multiple Remote SQL Injection Vulnerabilities Author : cOndemned Dark-Coders member Greetz : ZaBeaTy, GregStar, str0ke, 0in, suN8Hclf, ixos, TBH, Avantura : Proof of Concept : Magic Quotes = On/Off...
phsBlog 0.1.1 - Multiple SQL Injections
Name : phsBlog v0.1.1 Multiple Remote SQL Injection Vulnerabilities Author : cOndemned Dark-Coders member Greetz : ZaBeaTy, GregStar, str0ke, 0in, suN8Hclf, ixos, TBH, Avantura : Proof of Concept : Magic Quotes = On/Off...
phsBlog 0.1.1 - Multiple SQL Injections
phsBlog 0.1.1 - Multiple SQL Injections Name : phsBlog v0.1.1 Multiple Remote SQL Injection Vulnerabilities Author : cOndemned Dark-Coders member Greetz : ZaBeaTy, GregStar, str0ke, 0in, suN8Hclf, ixos, TBH, Avantura : Proof of Concept : Magic Quotes = On/Off...