Dokeos <= 1.8.0 (my_progress.php course) Remote SQL Injection Exploit

No description provided by source...

WoltLab Burning Book <= 1.1.2 - Remote SQL Injection

No description provided by source. !/usr/bin/perl woltlab.de burning book =1.1.2 SQL and PHP injection PoC use /index.php?q=phpinfo;exit; ShAnKaR secAshankar.antichat.ru http://antichat.ru/ use LWP; dieuse ./burn-book.pl http://localhost/wbbook/ 1number book db, default 1\n if !$ARGV0;$ARGV1='' i...

phpShop <= 0.8.1 - Remote SQL injection / Filter Bypass Vulnerabilities

No description provided by source. Vendor : PHPShop Webiste : http://www.phpshop.org Version : v0.8.1 Author: the redc0ders / theredc0dersatgmaildotcom Condition: magicquotegpc = off , in php.ini setting Details : ========== Vulnerable Code in index.php near lines 98 - 128 code // basic SQL injec...

vKios <= 2.0.0 (products.php cat) Remote SQL Injection Exploit

No description provided by source. !/usr/bin/perl Indonesian Newhack Security Advisory ------------------------------------ vKios = 2.0.0 products.php cat Remote SQL Injection Exploit Waktu : Feb 8 2008 10:00PM Software : vKios Versi : = 2.0.0 Vendor : http://www.vkios.com/...

Link Bid Script 1.5 - Multiple Remote SQL Injection Vulnerabilities

No description provided by source. + Link Bid Script 1.5 Multiple Remote SQL Injection + Discovered By SirGod + wWw.MorTal-TeaM.OrG + Greetz : E.M.I.N.E.M,Ras,Puscasmarin,ToxicBlood,HrN,kemrayz,007m,Raven,Nytr0gen,str0ke + Remote SQL Injection - Note : For PoC 2 you need administrative rights. Po...

eWebquiz 8 - (Auth Bypass) Remote SQL Injection Vulnerability

No description provided by source. ----------------------------بسم الله الرحمن الرحيم------------------------------ وما أوتيتم من العلم الا قليلا -------------------------------صدق الله العظيم------------------------------- Tybe:Auth Bypass Remote SQL Injection Vulnerability Vendor:...

itechbids 7.0 gold (xss/sql) Multiple Vulnerabilities

No description provided by source. !R4Q!4N H4CK3R ITechBids 7.0 Gold Multiple Remote Vulnerabilities Website : http://www.itechscripts.com Founded By : Encrypt3d.M!nd NOTE:I Didn't Search The Script Well,So Maybe There is other Vulnerabilities. 1- Cross-site scripting XSS: Affected File :...

Avlc Forum (vlc_forum.php id) - Remote SQL Injection Vulnerability

No description provided by source. ==================================================================== Avlc Forum vlcforum.php id Remote SQL Injection Vulnerability ==================================================================== ,--^----------,--------,-----,-------^--, | ||||||||| --------...

TriO <= 2.1 (browse.php id) Remote SQL Injection Vulnerability

No description provided by source. :::::::-. ... ::::::. :::. ;;, ';, ;; ;;;;;;;, ;;; ' . ' $$, $$$$ $$$ $$$ Y$c$$ 888,o8P'88 .d888 888 Y88 MMMMP YmmMMMM MMM YM Discovered by dun \ dunatstrcpy.pl TriO = 2.1 Remote SQL Injection Vulnerability Script: TriO, iO's new web-based module, enables you to...

TotalCalendar <= 2.402 (view_event.php) Remote SQL Injection Vulns

No description provided by source. !/usr/bin/env python coding: utf-8 from pocsuite.net import req from pocsuite.poc import POCBase, Output from pocsuite.utils import register import re class TestPOCPOCBase: vulID = '64776' ssvid version = '1.0' author = 'kikay' vulDate = '2007-07-03' createDate ...

Kartli Alisveris Sistemi 1.0 - Remote SQL Injection Vulnerability

No description provided by source. Discovered by: kerem125 & gsy Website: http://www.kerem125.com/ & http://www.by-gsy.org/ Script download: http://download.asprehberi.net/dosyalar/kategoriler/alisveris/freepaypalshoppingcarttr.zip Exploit:...

MailMachine Pro 2.2.4 - Remote SQL Injection Vulnerability

No description provided by source. --------------------------------------------------------------- / | |\ \ / | / |/ | | |/ \ | | / \ \ | \ \ | | | \ | |/ \ | | // | || | ||| /| / /\ | |||| /| / / --------------------------------------------------------------- Http://www.inj3ct-it.org...

Joomla AJAX Shoutbox <= 1.6 - Remote SQL Injection Vulnerability

Exploit for php platform in category web applications + Details: - include "helper.php"; - parameter: jallastID - Code: 113 $jallastID = JRequest::getVar 'jallastID', 0 ; 114 115 $query = 'SELECT FROM shoutbox WHERE id '.$jallastID.' ORDER BY id DESC'; - Exploit:...

DEBIAN-CVE-2014-1471

SQL injection vulnerability in the StateGetStatesByType function in Kernel/System/State.pm in Open Ticket Request System OTRS 3.1.x before 3.1.19, 3.2.x before 3.2.14, and 3.3.x before 3.3.4 allows remote attackers to execute arbitrary SQL commands via vectors related to a ticket search URL...

Barracuda CudaTel 2.6.02.040 - Remote SQL Injection Vulnerability

Title: ====== Barracuda CudaTel 2.6.02.040 - Remote SQL Injection Vulnerability Date: ===== 2013-07-20 References: =========== http://vulnerability-lab.com/getcontent.php?id=775 BARRACUDA NETWORK SECURITY ID: BNSEC-723 VL-ID: ===== 775 Common Vulnerability Scoring System:...

phpLiteAdmin v1.8.x->1.9.x (SQLi/FD) <= Multiple Vulnerabilities

phpLiteAdmin is suffer from multiple vulnerabilities / bugs in v1.8.x to- 1.9.x , the attacker can use some bug in the Script to inject some remote SQL command/code , and Disclosure the Full Path. Bugs : Authentication Bypass SQL Injection/Exec Full Path Disclosure...

DEBIAN-CVE-2012-6496

SQL injection vulnerability in the Active Record component in Ruby on Rails before 3.0.18, 3.1.x before 3.1.9, and 3.2.x before 3.2.10 allows remote attackers to execute arbitrary SQL commands via a crafted request that leverages incorrect behavior of dynamic finders in applications that can use...

WordPress Plugin - W3 Total Cache Remote Sql Injection Exploit

Exploit for php platform in category web applications From the developers' description 1, W3 Total Cache is: The most complete WordPress performance framework. Recommended by web hosts like: MediaTemple, Host Gator, Page.ly and WP Engine and countless more. Trusted by countless sites like:...

FocusAbacus Estate - Remote SQL Injection Vulnerability

Exploit for php platform in category web applications FocusAbacus Estate - Remote SQL Injection Vulnerability 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by...

CVE-2011-5111

Multiple SQL injection vulnerabilities in Kajian Website CMS Balitbang 3.x allow remote attackers to execute arbitrary SQL commands via the hal parameter to 1 the data module in alumni.php; or the 2 lihbuku, 3 artikel, 4 album, or 5 berita module in index.php...