Duyuru Scripti Goster.ASP SQL injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/22910/info Duyuru Scripti is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. Exploiting this vulnerability could permit remot...

maian weblog <= 4.0 - Remote Blind SQL Injection

No description provided by source. ?php / maian weblog = v4.0 Remote Blind SQL Injection Exploit vendor: http://www.maianscriptworld.co.uk/ Thanks to Johannes Dahse: http://bit.ly/dpQXMK Explanation: Lines 335 - 341 of the index.php we see this if statement that concerns our variable $bpost. //...

PunBB Affiliates Mod <= 1.1 - Remote Blind SQL Injection Exploit

No description provided by source. !/usr/bin/perl 0-Day PunBB Affiliations.php OUT Mod = v1.1 Remote Blind SQL Injection Exploit Coded By Dante90, WaRWolFz Crew Bug Discovered By: Dante90 & UltraSound, WaRWolFz Crew Product: http://www.punres.org/desc.php?pid=328 use strict; use LWP::UserAgent; u...

Active Business Directory 2 - Remote blind SQL Injection Vulnerability

No description provided by source. -----------------------------OffensiveTrack------------------------------ found by : OffensiveTrack Author : AlpHaNiX website : www.offensivetrack.org contact on mail & msn : [email protected] script : Active Business Directory v 2 €xploit :...

MultiCart 1.0 - Remote Blind SQL Injection Exploit

No description provided by source. Indonesian Newhack Security Advisory ------------------------------------ MultiCart 1.0 Remote Blind SQL Injection Waktu : Sep 30 2007 02:00AM Software : MultiCart 1.0 Vendor : http://www.iscripts.com/multicart/ Ditemukan oleh : k1tk4t | http://newhack.org Lokas...

E-Xoopport - Samsara <= 3.1 - (Sections Module) Remote Blind SQL Injection Exploit

No description provided by source. !/usr/bin/perl 0-Day E-Xoopport - Samsara = v3.1 Sections Module 2 Remote Blind SQL Injection Exploit Author/s: mRkZ & Dante90, WaRWolFz Crew Created: 2010.09.12 after 0 days the bug was discovered. Web Site: www.warwolfz.org use LWP::UserAgent; use HTTP::Cookie...

LinPHA <= 1.3.1 (new_images.php) Remote Blind SQL Injection Exploit

No description provided by source. ?php / LinPHA = 1.3.1 newimages.php Remote Blind SQL Injection Hash Fishing Exploit / BENCHMARK method author...: EgiX mail.....: n0b0d1esathotmaildotcom link.....: http://linpha.sourceforge.net/ dork.....: LinPHA Version 1.3.x or The LinPHA developers vulnerabl...

Danneo CMS <= 0.5.1 - Remote Blind SQL Injection Exploit

No description provided by source. ?php Danneo CMS = 0.5.1 Remote Blind SQL Injection Exploit Software site: http://www.danneo.com/ By InATeam http://inattack.ru/ Requires Referers statistics option turned ON! echo ------------------------------------------------------------\n; echo Danneo CMS =...

Joomla <= 1.0.9 (Weblinks) Remote Blind SQL Injection Exploit

No description provided by source. !/usr/bin/php -q -d shortopentag=on 126 $result.=" ."; else $result.=" ".$st...

Lingxia I.C.E CMS Remote Blind SQL Injection Exploit

No description provided by source. !/usr/bin/python ICE CMS Blind SQLi 0day. mrme@pluto ice$ python icecold.py -p localhost:8080 -t 10.3.100.25:8500 -d /ice/ | ---------------------------------------------------- | | Lingxia I.C.E CMS Remote Blind SQL Injection Exploit | | by mrme - net-ninja.net...

Joomla Component BibTeX <= 1.3 - Remote Blind SQL Injection Exploit

No description provided by source. html head titleJoomla Component BibTeX = 1.3 Remote Blind SQL Injection Vulnerability/title /head body !-- Title : Joomla Component BibTeX = 1.3 Remote Blind SQL Injection Vulnerability -- !-- Author : ajann -- !-- Contact : : -- !-- S.Page :...

Rianxosencabos CMS 0.9 - Remote Blind SQL Injection Vulnerability

No description provided by source. -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Rianxosencabos CMS 0.9 Remote Blind SQL Injection Vulnerability -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- / Script: Rianxosencabos / Version: 0.9 / File affected:...

PHP-Nuke <= 8.1.0.3.5b (Your_Account Module) Remote Blind SQL Injection (Benchmark Mode)

No description provided by source. PHP-Nuke = 8.1.0.3.5b YourAccount Module Remote Blind SQL Injection Benchmark Mode Author: yawn Contact Me: http://www.unitx.net Requirements: magicquotesgpc : off Greetings: [email protected] | [email protected] | Dante90 You will remember, Watson, how the...

Vanilla <= 1.1.3 - Remote Blind SQL Injection Exploit

No description provided by source. ?php Vanilla = 1.1.3 Remote Blind SQL Injection Exploit By InATeam http://inattack.ru/ Requirements: MySQL = 4.1, magicquotesgpc=Off Tested on versions 1.1.3, 1.1.2, 1.0.1 echo ------------------------------------------------------------\n; echo Vanilla = 1.1.3...

Ixprim CMS 1.2 - Remote Blind SQL Injection Exploit

No description provided by source. !/usr/bin/perl INFORMATIONS ============ Affected.scr..: Ixprim 1.2 Poc.ID........: 16061221 Type..........: Blind SQL Injection Risk.level....: Medium Conditions....: loadfile privilege ixp code only Src.download..: www.ixprim-cms.org Poc.link......:...

phpMyChat Plus 1.94 RC1 - Multiple Vulnerabilities

phpMyChat Plus 1.94 RC1 - Multiple Vulnerabilities Exploit Title: phpMyChat Plus v1.94 RC1 Multiple Remote Vulnerabilities Date: 04/10/2012 Author: L0n3ly-H34rT Contact: [email protected] My Site: http://se3c.blogspot.com/ Vendor Link: http://sourceforge.net/projects/phpmychat/ Software Lin...

phpMyChat Plus v1.94 RC1 Multiple Remote Vulnerabilities

Exploit for php platform in category web applications Exploit Title: phpMyChat Plus v1.94 RC1 Multiple Remote Vulnerabilities Date: 04/10/2012 Author: L0n3ly-H34rT Contact: email protected My Site: http://se3c.blogspot.com/ Vendor Link: http://sourceforge.net/projects/phpmychat/ Software Link:...

MyTickets 1.x &lt; 2.0.8 - Blind SQL Injection

count'languages',"id='".$cookies'language'."'" == 0 48. $language = $setting'defaultlanguage'; 49. 50. $language = $cookies'language'; 52. 52. 53. $languagearray = $db-fetch$db-query"SELECT FROM languages WHERE id='".$language."'"; / print...

PHP-Nuke 8.1.0.3.5b - Downloads Blind SQL Injection

PHP-Nuke 8.1.0.3.5b - Downloads Blind SQL Injection !/usr/bin/perl 0-Day PHP-Nuke newPOST = $HostName.'modules.php?name=Downloads&dop=Add'; my $Cookies = new HTTP::Cookies; my $UserAgent = new LWP::UserAgent agent = 'Mozilla/5.0', maxredirect = 0, cookiejar = $Cookies, defaultheaders =...

Maian Weblog 4.0 - Blind SQL Injection

Maian Weblog 4.0 - Blind SQL Injection ?php / maian weblog = v4.0 Remote Blind SQL Injection Exploit vendor: http://www.maianscriptworld.co.uk/ Thanks to Johannes Dahse: http://bit.ly/dpQXMK Explanation: Lines 335 - 341 of the index.php we see this if statement that concerns our variable $bpost. ...