EUVD-2023-57636

Malicious code in bioql PyPI...

CVE-2023-5313 phpkobo Ajax Poll Script ajax-poll.php improper enforcement of a single, unique action

A vulnerability classified as problematic was found in phpkobo Ajax Poll Script 3.18. Affected by this vulnerability is an unknown functionality of the file ajax-poll.php of the component Poll Handler. The manipulation leads to improper enforcement of a single, unique action. The attack can be...

POLLSolved 1.5.2 SQL Injection / Authentication Bypass

Exploit Title : POLLSolved Authentication Bypass Exploit Author : Persian Hack Team Vendor Homepage : http://www.usolved.net/ Google Dork : intitle:POLLSolved Date: 2015/11/12 Version : v1.5.2 PoC: To bypass the login page enter '=' 'or' for username and password input. Login And Add Your Poll D:...

phpPC <= 1.04 Multiple Remote File Inclusion Vulnerabilities

No description provided by source. phpPC 1.04 Multiples Remote File Inclusion Script : PHP Poll Creator Version : 1.04 Vendor URL : http://www.phppc.de Impact : Remote File Inclusion Discovered by : iss4m Contact : [email protected] Vulnerable code in poll.php -------------------------------- ?ph...

Evaria Content Management System 1.1 File Disclosure Vulnerability

No description provided by source. Exploit Title: local file include / File Disclosure Date: Author: khayeye shotor Software Link: http://www.evaria.com/en/?view=download&dload=1 Version: Evaria Content Management System v.1.1 Thanks: khayeye sag , kandome mivei , sinehaye amam and all amehaye...

F3Site 2009 mod/poll.php GLOBALS[nlang] Parameter Traversal Local File Inclusion

No description provided by source. source: http://www.securityfocus.com/bid/37408/info F3Site is prone to multiple local file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the application and the...

TR Newsportal <= 0.36tr1 (poll.php) Remote File Inclusion Vulnerability

No description provided by source. DEVIL TEAM THE BEST POLISH TEAM TR Newsportal - Remote File Include Find by Kacper Rahim. Greetings For ALL DEVIL TEAM members, Special DragonHeart : Contact: [email protected] or http://www.devilteam.yum.pl dork: TR Newsportal brought by TRanx...

SePortal 2.4 /poll.php SQL注入漏洞

No description provided by source...

CVE-2010-4935

SQL injection vulnerability in poll.php in Entrans 0.3.2 and earlier allows remote attackers to execute arbitrary SQL commands via the sid parameter...

Sql injection

SQL injection vulnerability in poll.php in Entrans 0.3.2 and earlier allows remote attackers to execute arbitrary SQL commands via the sid parameter...

CVE-2010-4935

CVE-2010-4935 is a SQL injection vulnerability in poll.php of Entrans 0.3.2 and earlier. The flaw allows remote attackers to execute arbitrary SQL commands via the sid parameter. Documents provide the affected application and vulnerable parameter but do not specify a patch version or remediation....

Evaria ECMS 'Poll.php' Local File Disclosure Vulnerability

Evaria ECMS is prone to a local file-disclosure vulnerability because it fails to adequately validate user-supplied input. Exploiting this vulnerability would allow an attacker to obtain potentially sensitive information from local files on computers running the vulnerable application. This may a...

Evaria Content Management System 1.1 File Disclosure Vulnerability

Exploit for php platform in category web applications ================================================================== Evaria Content Management System 1.1 File Disclosure Vulnerability ================================================================== Exploit Title: local file include / File...

Evaria Content Management System 1.1 - File Disclosure

Evaria Content Management System 1.1 - File Disclosure Exploit Title: local file include / File Disclosure Date: Author: khayeye shotor Software Link: http://www.evaria.com/en/?view=download&dload=1 Version: Evaria Content Management System v.1.1 Thanks: khayeye sag , kandome mivei , sinehaye ama...

Evaria Content Management System 1.1 - File Disclosure

Exploit Title: local file include / File Disclosure Date: Author: khayeye shotor Software Link: http://www.evaria.com/en/?view=download&dload=1 Version: Evaria Content Management System v.1.1 Thanks: khayeye sag , kandome mivei , sinehaye amam and all amehaye irani ----------- vul code:...

Evaria Content Management System 1.1 File Disclosure

Exploit Title: local file include / File Disclosure Date: Author: khayeye shotor Software Link: http://www.evaria.com/en/?view=download&dload=1 Version: Evaria Content Management System v.1.1 Thanks: khayeye sag , kandome mivei , sinehaye amam and all amehaye irani ----------- vul code:...

F3Site2009 Multiple LFI Exploit

Exploit for unknown platform in category web applications =============================== F3Site2009 Multiple LFI Exploit =============================== Exploit Title: F3Site2009 Multiple LFI Exploit Date: 18-12-2009 Author: cr4wl3r Software Link: http://code.google.com/p/f3site/ Version: N/A...

F3Site2009 Local File Inclusion

Exploit Title: F3Site2009 Multiple LFI Exploit Date: 18-12-2009 Author: cr4wl3r Software Link: http://code.google.com/p/f3site/ Version: N/A Tested on: GNU/LINUX Code poll.php : iffileexists'./cache/poll'.$GLOBALS'nlang'.'.php': include'./cache/poll'.$GLOBALS'nlang'.'.php'; 3xplo!t :...

CVE-2008-5191

Multiple SQL injection vulnerabilities in SePortal 2.4 allow remote attackers to execute arbitrary SQL commands via the 1 pollid parameter to poll.php and the 2 spid parameter to staticpages.php...

Sql injection

Multiple SQL injection vulnerabilities in SePortal 2.4 allow remote attackers to execute arbitrary SQL commands via the 1 pollid parameter to poll.php and the 2 spid parameter to staticpages.php...