phpBB 1.4 - Remote SQL Query Manipulation Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/3142/info phpBB is free, open-source, easy-to-use web forums software. An issue exists in phpBB which allows a remote attacker to manipulate SQL queries in such a way as to gain an administrative account with the service...

TopperMod 2.0 - Remote SQL Injection Vulnerability

No description provided by source. Author: GiReX mySite: girex.altervista.org CMS: TopperMod v2.0 Site: rtcw.ch/mio/index.php Bug: SQL Injection Type: 1 - Priviledge Escalation from user to mod 2 - Remote user password change File: /account/index.php Var : $localita Need: magicquotesgpc = Off You...

MDPro Module CWGuestBook <= 2.1 - Remote SQL Injection Vulnerability

No description provided by source. Author: Dante90, WaRWolFz Crew Title: 0-Day MDPRO CWGuestBook = v2.1 Mod Remote SQL Injection By Dante90 MSN: [email protected] Web: www.warwolfz.org 0-Day MDPRO CWGuestBook = v2.1 Mod Remote SQL Injection By Dante90 code...

Joomla Component QuickTime VR 0.1 - Remote SQL Injection Exploit

No description provided by source. !/usr/bin/perl -w Joomla Component QuickTime VR v 0.1 Remote SQL Injection Found by : Houssamix From H-T Team H-T Team HouSSaMix + ToXiC350 Greetz : Mr.Al3FrItE & Islamic Security Team & Mounita20 & CoNaN and all musulmans hackers ComponentName: QuickTime VR...

Modern Script <= 5.0 (index.php s) SQL Injection Vulnerability

No description provided by source. / / / || |/ | / | | / | / / / | / / | / / / / | / | | / / / /| | / /\ // ============================================================================== » Note : Hacker R0x Lamerz Sux !...

Link Bid Script 1.5 - Multiple Remote SQL Injection Vulnerabilities

No description provided by source. + Link Bid Script 1.5 Multiple Remote SQL Injection + Discovered By SirGod + wWw.MorTal-TeaM.OrG + Greetz : E.M.I.N.E.M,Ras,Puscasmarin,ToxicBlood,HrN,kemrayz,007m,Raven,Nytr0gen,str0ke + Remote SQL Injection - Note : For PoC 2 you need administrative rights. Po...

ScriptMagix Photo Rating <= 2.0 - Remote SQL Injection Exploit

No description provided by source. !/usr/bin/perl Script Name: ScriptMagix Photo Rating = 2.0 viewcomments.php Remote Blind SQL Injection Exploit Coded by : ajann Author : ajann Contact : : S.Page : http://www.scriptmagix.com $$ : 75$ .. : ajann,Turkey use IO::Socket; if@ARGV 1 print...

WebStudio CMS - (pageid) Remote Blind SQL Injection Vulnerability (mil mixup)

No description provided by source. submitted: 09/01/2008 10:01 AM ----------------------------------------------------------------------------------- Scr!pt : WebStudio CMS V3rs!0n : ! S!t3 : http://www.bdigital.biz/?pageid=214 Dork : Powered by WebStudio Auth0r : BorN To K!LL...

Islam Sound IV2 - (details.php) Remote SQL Injection

No description provided by source. Lab : ZxH-Lab's Locate : Jordan - Amman City Exploit Title : Islam Sound IV2 details.php Remote SQL Injection Date : 2-2-2011 Author : ZxH-Labs HomeScript : http://www.emides.com/ Version : 2.0 Tested On : Windows Server 2003 IIS...

PHPMyRing <= 4.2.1 (cherche.php) Remote SQL Injection Vulnerability

No description provided by source. Title : PHP My Ring = 4.2.1 cherche.php Remote SQL Injection Vulnerability Author : ajann http://target/path/cherche.php?limite=-1%20union%20select%200,pseudo,0,mdp,0,0%20from%20webring/&mots=%20&where=description ajann,Turkey ... Im not Hacker! milw0rm.com...

OpenBB 1.0/1.1 Member.PHP Remote SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/7405/info It has been reported that OpenBB does not properly check input passed via the 'member.php' script. Because of this, an attacker may be able to inject arbitrary commands to the database in the context of the...

XOOPS Flashgames Module 1.0.1 - Remote SQL Injection Vulnerability

No description provided by source...

CMS Frogss <= 0.4 (podpis) Remote SQL Injection Exploit

No description provided by source...

WoltLab Burning Book <= 1.1.2 - Remote SQL Injection

No description provided by source. !/usr/bin/perl woltlab.de burning book =1.1.2 SQL and PHP injection PoC use /index.php?q=phpinfo;exit; ShAnKaR secAshankar.antichat.ru http://antichat.ru/ use LWP; dieuse ./burn-book.pl http://localhost/wbbook/ 1number book db, default 1\n if !$ARGV0;$ARGV1='' i...

elkagroup Image Gallery 1.0 - Remote SQL Injection Vulnerability

No description provided by source. --==+================================================================================+==-- --==+ Image Gallery 1.0 SQL Injection Vulnerbilitys +==-- --==+================================================================================+==-- AUTHOR: t0pP8uZz & xpr...

CzarNews <= 1.20 (Account Hijacking) Remote SQL Injection Vuln

首先登陆一个CzarNews 1.20 版本的网站。 2. 打开登陆页面,然后在地址栏中输入 javascript:document.cookie="recook=' or ''=',' or ''='";void0; 随后刷新页面，接下来见证奇迹，你会惊奇的发现你处于了登陆状态。 3. 如果你输入以下代码在URL当中 javascript:c=document.cookie;p=c.substrc.lastIndexOf'='+1.split/%../;a lert"Login: " + p0 + "\nPass: " + p1;void0;...

PHP-Nuke My_eGallery <= 2.7.9 - Remote SQL Injection Vulnerability

No description provided by source. Aria-Security Team http://Aria-Security.Net ----------------------------- Shoutz: Aura, Null, imm02tal, Kinglet, and our staff PHP-Nuke MyeGallery gid Remote SQL Injection Dork: inurl:modules.php?name=MyeGallery...

ArcadeBuilder Game Portal Manager 1.7 - Remote SQL Injection Vuln

No description provided by source. --==+================================================================================+==-- --==+ Game Portal Manager v1.7 SQL Injection Vulnerability +==-- --==+================================================================================+==-- AUTHOR: t0pP8uZ...

Mambo Component Ricette 1.0 - Remote SQL Injection Vulnerability

No description provided by source. joomla SQL Injectioncomricette AUTHOR : S@BUN HOME : http://www.milw0rm.com/author/1334 MAİL : [email protected] DORK 1 : allinurl: comricette DORK 2 : allinurl: comricetteid EXPLOIT :...

Particle Wiki <= 1.0.2 (version) Remote SQL Injection Vulnerability

No description provided by source. Particle wiki = 1.0.2 Remote SQLInjection - Username/Passwordhash Extractor Thanks to UNSECURED SYSTEMS : http://pridels.blogspot.com/2006/06/particle-wiki-sql-inj.html Exploited by FarhadKey from http://www.kapda.ir Username :...