CVE-2009-0324

Multiple SQL injection vulnerabilities in BibCiter 1.4 allow remote attackers to execute arbitrary SQL commands via the 1 idp parameter to reports/projects.php, the 2 idc parameter to reports/contacts.php, and the 3 idu parameter to reports/users.php...

Sql injection

Multiple SQL injection vulnerabilities in BibCiter 1.4 allow remote attackers to execute arbitrary SQL commands via the 1 idp parameter to reports/projects.php, the 2 idc parameter to reports/contacts.php, and the 3 idu parameter to reports/users.php...

CVE-2008-2834

CVE-2008-2834 affects the Scientific Image DataBase 0.41. The vulnerability is in the file projects.php, where the id parameter is not properly handled, allowing a SQL injection. This enables remote attackers to execute arbitrary SQL commands via the id input. No remediation or patch information ...

Scientific Image DataBase 0.41 - Blind SQL Injection

!/usr/bin/perl use strict; use warnings; use LWP::UserAgent; Download: http://sidb.sourceforge.net/ Dork: "Scientific Image DataBase" This exploit retrives the admin username/password via blind mysql injection. print ; my $substr, $done, $chr, $res = 1, 1, 48, ""; my $ua = LWP::UserAgent-new agen...

CVE-2007-0904

SQL injection vulnerability in projects.php in LightRO CMS 1.0 allows remote attackers to execute arbitrary SQL commands via the ID parameter to index.php...