CVE-2020-37108

PhpIX 2012 Professional contains a SQL injection vulnerability in the 'id' parameter of productdetail.php that allows remote attackers to manipulate database queries. Attackers can inject malicious SQL code through the 'id' parameter to potentially extract or modify database information...

EUVD-2008-3333

Malware in sbrugna...

CMVC SHOP LMS 2.1.0 SQL Injection

==================================================================================================================================== | Title : CMVC SHOP LMS v 2.1.0 Sql injection Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla firefox 74.032-bit ...

PhpIX 2012 Professional - (id) SQL Injection Vulnerability

Exploit for php platform in category web applications Title: PhpIX 2012 Professional - 'id' SQL Injection Author: indoushka Tested on : windows 10 Français V.Pro / browser : Mozilla firefox 69.032-bit Vendor : http://www.allhandsmarketing.com/ poc : + Dorking İn Google Or Other Search Enggine. +...

mumbaimachhli.com XSS vulnerability

Open Bug Bounty ID: OBB-654729 Description| Value ---|--- Affected Website:| mumbaimachhli.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

ultimats.com XSS vulnerability

Open Bug Bounty ID: OBB-494350 Description| Value ---|--- Affected Website:| ultimats.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

SolGens E-Commerce 'cid' And 'pid' Parameters SQLi Vulnerability

SolGens E-Commerce is prone to an SQL injection SQLi vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Unfixed XSS vulnerability at www.badairies.co.uk

Security researcher VirtualSystEm, has submitted on 22/01/2011 a cross-site-scripting XSS vulnerability affecting www.badairies.co.uk, which at the time of submission ranked 11185871 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 08/11/2011. I...

Unfixed XSS vulnerability at www.yeeongems.com

Security researcher VirtualSystEm, has submitted on 21/01/2011 a cross-site-scripting XSS vulnerability affecting www.yeeongems.com, which at the time of submission ranked 8196850 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 02/04/2012. It i...

ShopCartDx <= v4.30 (product_detail.php) Blind SQL Injection Exploit

Exploit for php platform in category web applications ==================================================================== ShopCartDx newGET = $Host; my $HTTP = new LWP::UserAgent; my $Referrer = "http://www.warwolfz.org/"; my $DefaultTime = request$Referrer; sub BlindSQLJnjection my $dec,$hex = ...

Solutive CMS - SQL Injection

-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= Gr33tz to www.Teamicw.in | www.IndiShell.in | www.AndhraHackers.com -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=...

CVE-2008-4744

SQL injection vulnerability in productdetail.php in DXShopCart 4.30mc allows remote attackers to execute arbitrary SQL commands via the pid parameter...

Sql injection

SQL injection vulnerability in productdetail.php in DXShopCart 4.30mc allows remote attackers to execute arbitrary SQL commands via the pid parameter...

CVE-2008-4744

SQL injection vulnerability in productdetail.php in DXShopCart 4.30mc allows remote attackers to execute arbitrary SQL commands via the pid parameter...

dxshopcart-sql.txt

DXShopCart V4.30mcpidRemote SQL Injection Vulnerability Author: Hussin X Home : www.tryag.cc/cc email : darkangelg85atYahooDoTcom script : http://scripts4profit.net/products.php?cid=19 DorK : Powered by - DXShopCart v4.30mc Exploit: 1...

Sql injection

SQL injection vulnerability in productdetail.php in ShopCart DX allows remote attackers to execute arbitrary SQL commands via the pid parameter...

CVE-2008-3346

SQL injection vulnerability in productdetail.php in ShopCart DX allows remote attackers to execute arbitrary SQL commands via the pid parameter...

CVE-2008-3346

SQL injection vulnerability in productdetail.php in ShopCart DX allows remote attackers to execute arbitrary SQL commands via the pid parameter...

E-topbiz Shopcart DX 'product_detail.php' SQL注入漏洞

BUGTRAQ ID: 30337 CNCAN ID：CNCAN-2008072302 E-topbiz Shopcart DX是一款基于PHP的WEB应用程序。 E-topbiz Shopcart DX不正确处理用户提交的输入，远程攻击者可以利用漏洞进行SQL注入攻击，可能获得敏感信息或操作数据库。 问题由于'productdetail.php'脚本对用户提交给'cid'参数缺少过滤，构建恶意SQL查询作为参数数据，可更改原来的SQL逻辑，获得敏感信息或操作数据库。 E-topbiz Shopcart DX 4.30 目前没有解决方案提供：...

shopcartdx-sql.txt

ShopcartDX Remote Sql Injection All Version By Cr@zyKing / sqL Lov3r'Z Crew Co. 2008 Downlod: http://webscripts.softpedia.com/script/E-Commerce/Shopping-Carts/ShopcartDX-1-1421.html Sql : http://localhost/patch/productdetail.php?cid=9&pid=-1 UNION SELECT...