AS3FlexDB Login Information Disclosure / SQL Execution

$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$ $$$ AS3FlexDB Database Login Information Disclosure & Remote SQL Excution $$$ $$$ || License: Free $$$ || Language: English $$$ AS3FlexDB || Cost: $0 $$$ || Platform: Flash...

AS3FlexDB Database Login Information Disclosure & Remote SQL Excution

Exploit for unknown platform in category web applications ===================================================================== AS3FlexDB Database Login Information Disclosure & Remote SQL Excution =====================================================================...

PT-2010-1396 · Maxdev · Mforum

Name of the Vulnerable Software and Affected Versions: MDForum module versions 2.x through 2.07 for MAXdev MDPro Description: The issue allows remote attackers to execute arbitrary SQL commands. This is achieved by exploiting the c parameter in the "index.php" endpoint. Recommendations: For MDFor...

Zabbix Server : Multiple remote vulnerabilities

From Wikipedia : "Zabbix is a network management system application ... designed to monitor and track the status of various network services, servers, and other network hardware." Zabbix Server : Remote command execution Impacted software : Zabbix Server Zabbix reference :...

Zabbix Server - Multiple Vulnerabilities

Zabbix Server : Multiple remote vulnerabilities From: Nicob Date: Sun, 13 Dec 2009 16:28:35 +0100 From Wikipedia : "Zabbix is a network management system application ... designed to monitor and track the status of various network services, servers, and other network hardware." Zabbix Server :...

PT-2009-6400 · Testlink Team · Testlink

Name of the Vulnerable Software and Affected Versions: TestLink versions prior to 1.8.5 Description: The issue allows remote authenticated users to execute arbitrary SQL commands. This can be achieved via the Test Case ID field to "lib/general/navBar.php" or the logLevel parameter to...

Zen Cart 1.3.8 Remote SQL Execution Exploit

Exploit for unknown platform in category web applications =========================================== Zen Cart 1.3.8 Remote SQL Execution Exploit =========================================== !/usr/bin/python ------- Zen Cart 1.3.8 Remote SQL Execution http://www.zen-cart.com/ Zen Cart Ecommerce -...

SFS EZ Career (content.php topic) SQL Injection Vulnerability

No description provided by source. Kira has decide be back after halloween Discovered by : Mountassif Moad Type Gap : Sql execution Script : SFS EZ Career Remote sql execution Home Script : http://www.scripts-for-sites.info/item.php?item=92 Greetz : Allah , All my freind Exploit :...

CVE-2008-4623

SQL injection vulnerability in the DS-Syndicate comds-syndicate component 1.1.1 for Joomla allows remote attackers to execute arbitrary SQL commands via the feedid parameter to index2.php...

CVE-2008-2774

SQL injection vulnerability in item.php in CartKeeper CKGold Shopping Cart 2.5 and 2.7 allows remote attackers to execute arbitrary SQL commands via the categoryid parameter, a different vector than CVE-2007-4736...

PT-2008-3304 · Blogator · Blogator-Script

Name of the Vulnerable Software and Affected Versions: Blogator-script version 0.95 Description: The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the id art parameter in the blogadata/include/sond result.php file. Recommendations: For Blogator-script versi...

CVE-2008-0565

CVE-2008-0565 concerns a SQL injection in DeltaScripts PHP Links 1.3 and earlier, exploitable via the id parameter in vote.php. The vulnerability is documented with affected software and root cause: unsafely constructed SQL in vote.php allows remote SQL command execution. The available connected ...

CVE-2007-6462

SQL injection vulnerability in fullnews.php in PHP Real Estate Classifieds allows remote attackers to execute arbitrary SQL commands via the id parameter...

DEBIAN-CVE-2007-3905

SQL injection vulnerability in Zoph before 0.7.0.1 might allow remote attackers to execute arbitrary SQL commands via the order parameter to 1 photos.php and 2 editphotos.php...

CVE-2007-1882

qcbin/servlet/tdservlet/TDAPIGeneralWebTreatment in HP Mercury Quality Center 9.0 build 9.1.0.4352 allows remote authenticated users to execute arbitrary SQL commands via the RunQuery method...

PT-2005-4664 · Randshop · Randshop

Name of the Vulnerable Software and Affected Versions: Randshop affected versions not specified Description: The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the kategorieid and katid parameters in the themes/kategorie/index.php file. Recommendations: At t...

PT-2005-2552 · Asp · Asp Virtual News Manager

Name of the Vulnerable Software and Affected Versions: ASP Virtual News Manager affected versions not specified Description: The issue allows remote attackers to execute arbitrary SQL commands via the password parameter in the admin login.asp file. This can be exploited by sending malicious input...

CVE-2004-1515

SQL injection vulnerability in 1 ttlast.php and 2 last10.php in vBulletin 3.0.x allows remote attackers to execute arbitrary SQL statements via the fsel parameter, as demonstrated using last.php...

CVE-2004-2062

SQL injection vulnerability in antiboard.php in AntiBoard 0.7.2 and earlier allows remote attackers to execute arbitrary SQL via the 1 threadid, 2 parentid, or 3 mode parameters...

PT-2004-2553 · Unknown · Password Protect

Name of the Vulnerable Software and Affected Versions: Password Protect affected versions not specified Description: The issue allows remote attackers to execute arbitrary SQL statements and bypass authentication. This can be achieved through various parameters and files, including 1 admin or Pas...