CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

seebug.org•added 2014/07/01 12:0 a.m.•27 views

Ultrastats <= 0.2.142 (players-detail.php) Blind SQL Injection Exploit

No description provided by source. !/usr/bin/perl use LWP::UserAgent; use Getopt::Long; ! Discovered.: DNX ! Vendor.....: http://www.shooter-szene.de | http://www.ultrastats.org ! Detected...: 29.06.2008 ! Reported...: 04.07.2008 ! Response...: xx.xx.2008 ! Background.: UltraStats is a very...

7.1AI score

Exploits0

Packet Storm•added 2008/07/15 12:0 a.m.•25 views

ultrastats-blindsql.txt

!/usr/bin/perl use LWP::UserAgent; use Getopt::Long; ! Discovered.: DNX ! Vendor.....: http://www.shooter-szene.de | http://www.ultrastats.org ! Detected...: 29.06.2008 ! Reported...: 04.07.2008 ! Response...: xx.xx.2008 ! Background.: UltraStats is a very flexable log analyzing tool for Call of...

7.4AI score

Exploits0

seebug.org•added 2008/07/15 12:0 a.m.•15 views

UltraStats 'players-detail.php' SQL注入漏洞

BUGTRAQ ID: 30212 CNCAN ID：CNCAN-2008071501 UltraStats是一款基于PHP的WEB应用程序。 UltraStats不正确处理用户提交的输入，远程攻击者可以利用漏洞进行SQL注入攻击，可能获得敏感信息或操作数据库。问题由于'players-detail.php'脚本对用户提交给WEB参数缺少过滤，构建恶意SQL查询作为参数数据，可更改原来的SQL逻辑，获得敏感信息或操作数据库。 UltraStats 0.2.142 目前没有解决方案提供：...

6.9AI score

Exploits0

seebug.org•added 2008/07/14 12:0 a.m.•17 views

Ultrastats <= 0.2.142 (players-detail.php) Blind SQL Injection Exploit

7.1AI score

Exploits0

0day.today•added 2008/07/13 12:0 a.m.•20 views

Ultrastats <= 0.2.142 (players-detail.php) Blind SQL Injection Exploit

Exploit for unknown platform in category web applications ====================================================================== Ultrastats = 0.2.142 players-detail.php Blind SQL Injection Exploit ====================================================================== !/usr/bin/perl use...

7.1AI score

Exploits0