EUVD-2005-0476

Malware in sbrugna...

Tipask 2.5 /control/question.php SQL注入漏洞

No description provided by source...

Tipask v2.5 question.php 存在储存型xss漏洞

No description provided by source...

WordPress mTouch Quiz Plugin <= 3.0.6 - SQL Injection

Because of this vulnerability in question.php, the attackers can execute arbitrary SQL commands via the "quiz" parameter to wp-admin/edit.php. Solution Update the plugin...

tipask quiz system 2. 0SQL time of the blind injection vulnerability-vulnerability warning-the black bar safety net

File /model/question.php function ontag $tag = urldecode$this-get'2'; //secondary code to bypass //echo $tag; $encodeword = urlencode$tag; $navtitle = $tag . '-Tag search'; $qstatus = $status = intval$this-get3; !$ status && $qstatus = "1,2,6"; $startindex = $page - 1 $pagesize; $rownum =...

Tipask 2.0 /control/question.php SQL注入漏洞

No description provided by source...

tipask 2.0 quiz system to allow the right to exploit-vulnerability warning-the black bar safety net

0x001 frontier Tipask quiz system is an open source PHP imitation Baidu know the program. To the Chinese use habit of the design concept, the use of the MVC framework, the system has a fast speed, SEO-friendly, the interface operation is clean and clear and other characteristics. 0x002...

sX-Shop - Multiple SQL Injections

sX-Shop - Multiple SQL Injections sX-Shop SQL Injection Vulnerabilities Author : CoBRa21 Author Web Page :http://ipbul.org Dork : "powered by sX-Shop" Script Page : http://www.source-worx.de/ Sql Injection : http://localhost/path/index.php?product=513' Sql http://localhost/path/question.php?id=-5...

CVE-2009-1843

Multiple SQL injection vulnerabilities in Flash Quiz Beta 2 allow remote attackers to execute arbitrary SQL commands via the 1 quiz parameter to a numquestions.php, b answers.php, c highscore.php, d highscoreweb.php, e resultstableweb.php, and f question.php; and the 2 ordernumber parameter to g...

CVE-2009-1843

Multiple SQL injection vulnerabilities in Flash Quiz Beta 2 allow remote attackers to execute arbitrary SQL commands via the 1 quiz parameter to a numquestions.php, b answers.php, c highscore.php, d highscoreweb.php, e resultstableweb.php, and f question.php; and the 2 ordernumber parameter to g...

Sql injection

Multiple SQL injection vulnerabilities in PHPKB Knowledge Base Software 1.5 Professional allow remote attackers to execute arbitrary SQL commands via the ID parameter to 1 email.php and 2 question.php, a different vector than CVE-2008-1909...

PHPKB 1.5 Professional Multiple Remote SQL Injection Vulnerabilities

Exploit for unknown platform in category web applications ==================================================================== PHPKB 1.5 Professional Multiple Remote SQL Injection Vulnerabilities ==================================================================== PHPKB Knowledge Base Software v1...

FAQEngine &lt;= 4.16.03 (question.php questionref) SQL Injection Exploit

No description provided by source. !/usr/bin/perl -w FAQEngine = v4.16.03 SQL Injection Exploit Discovered by: Silentz Payload: Admin Username & Hash Retrieval Website: http://www.w4ck1ng.com Vulnerable Code question.php: $sql = "select from ".$tableprefix."questions where publish=1 and...