GLPI 0.71.3 - Multiple Remote SQL Injection VUlnerabilities

No description provided by source. + Application : GLPI v 0.71.3 + App'z URI : http://glpi-project.org + Bug : Multiple Remote SQL Injections + Author : Zigma + Home : http://NullArea.Net Let's have a look on the Security System GLPI uses : --- \inc\includes.php --- // Security system if isset$PO...

LDU <= 8.x (avatarselect id) Remote SQL Injection Vulnerability

No description provided by source. LDU = 8.x Remote SQL Injection avatarselect id Vulnerability Discovered by: nukedx Contacts: ICQ: 10072 MSN/Mail: [email protected] web: http://www.nukedx.com Original advisory can be found at: http://www.nukedx.com/?viewdoc=51 ---- GET -...

jPORTAL <= 2.3.1 articles.php Remote SQL Injection Vulnerability

No description provided by source. Title:jPORTAL = 2.3.1 and Remote SQL Injection Vulnerability Dork: intext:jPORTAL 2 & inurl:articles.php?topic= Autor: Alexsize E-Mail: [email protected] Site: Antichat.ru articles.php?topic=-3+union+select+1,pass,3,4,5+from+admins/ Vuln code: function topicname$...

zBlog 1.2 - Remote SQL Injection Vulnerability

No description provided by source. zBlog v1.2 Remote SQL Injection Exploit AUTHOR : H-T Team HouSSamix ToXiC350 CoNaN HOME : http://no-hack.net Script : zBlog Version : 1.2 Site : http://kaxz01.free.fr/ Download : http://kaxz01.free.fr/fichiers/zBlog.zip EXPLOITS : 1...

Py-Membres 4.x Pass_done.PHP Remote SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8500/info A vulnerability has been reported for Py-Membres that allows remote attackers to modify the logic of SQL queries. It has been reported that an input validation error exists in the passdone.php file included with...

TLM CMS 3.2 - Multiple Remote SQL Injection Vulnerabilities

No description provided by source. TLM CMS v3.2 - Multiple Remote SQL Injection Vulnerabilities Vendor : http://tlm.hebserv.fr/ Download : http://tlm.hebserv.fr/modfile/upload/tlmcms32.zip Ditemukan oleh : k1tk4t - k1tk4t4tnewhack.org Lokasi : Indonesia -- newhackdotorg @ irc.dal.net Kutu pada...

MailMachine Pro 2.2.4 - Remote SQL Injection Vulnerability

No description provided by source. --------------------------------------------------------------- / | |\ \ / | / |/ | | |/ \ | | / \ \ | \ \ | | | \ | |/ \ | | // | || | ||| /| / /\ | |||| /| / / --------------------------------------------------------------- Http://www.inj3ct-it.org...

E.Z. Poll 2 - (Auth Bypass) Remote SQL Injection Vulnerability

No description provided by source. Description: E.Z. Poll = v.2 script Remote SQL injection Exploit discovered by t0fx aka xtof69 vendor : E.Z. vulnerable page : http://www.site.com/admin/login.asp exploit : Username : 'or' '=' Password : 'or' '=' Add, modify user : /admin/admin-users.asp...

CMS MAXSITE <= 1.10 (category) Remote SQL Injection Vulnerability

No description provided by source. CMS MAXSITE Remote SQL Injection Exploit = 1.10 + Author: Tesz @ THD + Home: http://www.thaishadow.com + Forum: http://www.thaishadow.com/board/index.php + Download: http://maxsite.geniuscyber.com/index.php?name=index + Dork: MAXSITE or intitle:MAXSITE + Exploit...

proManager <= 0.73 (note.php) Remote SQL Injection Vulnerability

No description provided by source. / + + - - - DEVIL TEAM THE BEST POLISH TEAM - - + + + - proManager = 0.73 Add Admin SQL Injection Vulnerabilities + + + - Script name: proManager v.0.73 - Script site: http://sourceforge.net/projects/promanager/ + + + - Find by: Kacper a.k.a Rahim + - Contact:...

Joomla Component GameQ <= 4.0 - Remote SQL injection Vulnerability

No description provided by source. /---------------------------------------------------------------\ \ / / Joomla Component GameQ Remote SQL injection \ \ / ---------------------------------------------------------------/ Author : His0k4 ALGERIAN HaCkEr POC :...

GalleryPal FE 1.5- Auth Bypass

No description provided by source. ------------------------------------------------------------ GalleryPal FE v1.5Auth Bypass TYPE:Remote SQL Injection Vulnerability ---------------------------------------------------------- author: R3d-D3v!L Date: 15.11.2008 Home: www.ahacker.net contact: N/A...

paBugs <= 2.0 Beta 3 (main.php cid) Remote SQL Injection Exploit

No description provided by source. !/usr/bin/perl use LWP::UserAgent; use HTTP::Cookies; if@ARGV 4 usage; exit; $host = $ARGV0; Host $path = $ARGV1; Path to paBugs directory $pref = $ARGV2; prefix for admin tables $usid = $ARGV3; user id $www = new LWP::UserAgent; $sql =...

QuickTicket <= 1.5 (qti_usr.php id) SQL Injection Vulnerability

No description provided by source. Script name: QuickTicket Site: http://www.qt-cute.org Vulnerability: remote sql injection at qtiusr.php Download: v 1.4: http://www.qt-cute.org/download/qti14.zip v 1.5.0.3: http://www.qt-cute.org/download/qti15.zip Vulnerable code: 1.4 ; 1.5 is pretty the same ...

exV2 <= 2.0.4.3 - (sort) Remote SQL Injection Exploit

No description provided by source. !/usr/bin/php -q -d shortopentag=on ? printr' ------------------------------------------------------------------------------- exV2 = 2.0.4.3 sort SQL injection / administrative credentials disclosure exploit mail: [email protected] site:...

SFS EZ Webstore (where) Remote SQL Injection Vulnerability

No description provided by source. SFS EZ WEBSTORE remote sql inj SearchResults.php where ---------------------------------------------------------- Discovered By: ZoRLu Date: 01.11.2008 Home: www.z0rlu.blogspot.com contact: [email protected] N0T: YALNIZLIK, YiTiRDi ANLAMINI YALNIZLIGIMDA : N0...

unclassified newsboard 1.6.4 - Multiple Vulnerabilities

No description provided by source. Author girex Homepage girex.altervista.org Date 31/05/2009 CMS Unclassified NewsBoard 1.6.4 and maybe lower Dork This board is powered by the Unclassified NewsBoard software, 1.6.4 Multiple remote vulnerabilities 1 Remote SQL Injection php.ini regardless 2 Logs...

Mlffat 2.2 - Remote Blind SQL Injection Exploit

No description provided by source. ?php inisetmaxexecutiontime,0; printr' || || | || o,7 || . o7 || q||| o///, : / / . /QQQQQQQQQQQQQQQQQQQ\ q Mlffat 2.2 Blind SQL Inj. /QQQ/\QQQ\ /QQQQQ/ \QQQQQQ\ q Cookie 3 /QQQQ/ QQQQ\ /QQQQ/ \QQQQ\ q http://www.mlffat.com |QQQQ/ By Qabandi \QQQQ| |QQQQ| |QQQQ|...

T.G.S. CMS <= 0.1.7 (logout.php) Remote SQL Injection Exploit

No description provided by source. ? print ' ::::::::: :::::::::: ::: ::: ::::::::::: ::: :+: :+: :+: :+: :+: :+: :+: +:+ +:+ +:+ +:+ +:+ +:+ +:+ ++ +:+ +++:++ ++ +:+ ++ ++ ++ ++ ++ ++ ++ ++ ++ + + + +++ + + ::::::::::: :::::::::: ::: :::: :::: :+: :+: :+: :+: +:+:+: :+:+:+ +:+ +:+ +:+ +:+ +:+...

5 star review (xss/sql) Multiple Vulnerabilities

No description provided by source. Viva IslaM Viva IslaM XSS / Remote SQL Injection Five Star Review recommend.php itemid http://review-script.com/ AuTh0r : Mr.SQL H0ME : WwW.PaL-HaCkEr.CoM & WwW.ReaL-HaCk.NeT Email : [email protected] SYRIAN Arab HACkErS -: Exploites :- User Exploite...