23 matches found
EUVD-2008-3766
Malware in sbrugna...
EUVD-2008-3765
Malware in sbrugna...
Meeplace Business Review Script - id SQL Injection
Meeplace Business Review Script - id SQL Injection Exploit Title: Meeplace Business Review Script - 'id' SQL Injection Date: 22.03.2019 Dork: Exploit Author: Ahmet Ümit BAYRAM Vendor Homepage: http://www.meeplace.com Demo Site: http://demo.meeplace.com Version: Lastest Tested on: Kali Linux CVE:...
Consumer Review Script 1.0 SQL Injection
Exploit Title: Consumer Review Script v1.0 - SQL Injection Date: 2017-09-12 Exploit Author: 8bitsec Vendor Homepage: http://www.phpscriptsmall.com/product/consumer-review-script/ Software Link: http://www.phpscriptsmall.com/product/consumer-review-script/ Version: 1.0 Tested on: Kali Linux 2.0 |...
Consumer Review Script 1.0 - SQL Injection
Consumer Review Script 1.0 - SQL Injection Exploit Title: Consumer Review Script v1.0 - SQL Injection Date: 2017-09-12 Exploit Author: 8bitsec Vendor Homepage: http://www.phpscriptsmall.com/product/consumer-review-script/ Software Link: http://www.phpscriptsmall.com/product/consumer-review-script...
Mambo Component Comments <= 0.5.8.5g SQL Injection Vulnerability
No description provided by source. Mambo SQL Injection comcomments Version Affected: = 0.5.8.5g Author: CheebaHawk215 Home page: http://www.always420forum.com Dork: Review Script, Phil Taylor Vulnerable Code: $ptquery = SELECT FROM moscontentcomments where articleid=$id AND published=1 order by i...
Five Star Review Script 0 index2.php sort Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/18390/info Five Star Review Script is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker can exploit these issues to run arbitrary HTML a...
5 star review (xss/sql) Multiple Vulnerabilities
No description provided by source. Viva IslaM Viva IslaM XSS / Remote SQL Injection Five Star Review recommend.php itemid http://review-script.com/ AuTh0r : Mr.SQL H0ME : WwW.PaL-HaCkEr.CoM & WwW.ReaL-HaCk.NeT Email : [email protected] SYRIAN Arab HACkErS -: Exploites :- User Exploite...
Open Review Script Cross Site Scripting
. . || || || | \ \ / | |/ // /\ \ \ |/ \ / / | |/ | | \ |\ \ \ \ / | | / \ / \ \ /| /| // /| ||\ | / / / / / / / www.janissaries.org ===================================================================== xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx...
reviewscript-xss.txt
--------------------------------------------------------- Portal Name: Review Script Vendor : http://review-script.com Vulnerable File : Search Dork: Powered by Five Star Review Author : PouyaServer , [email protected] Vulnerability : XSS Cross site scripting...
CVE-2008-3780
SQL injection vulnerability in recommend.php in Five Star Review Script allows remote attackers to execute arbitrary SQL commands via the itemid parameter...
CVE-2008-3780
SQL injection vulnerability in recommend.php in Five Star Review Script allows remote attackers to execute arbitrary SQL commands via the itemid parameter...
CVE-2008-3779
CVE-2008-3779 describes a cross-site scripting (XSS) vulnerability in Five Star Review Script, exposed via search/index.php. The flaw allows remote attackers to inject arbitrary web script or HTML through the words parameter in a search action. Affected component is the search functionality (inde...
CVE-2008-3780
The CVE-2008-3780 entry describes an SQL injection in the Five Star Review Script, specifically in recommend.php via the item_id parameter, enabling remote arbitrary SQL execution. The vulnerability affects the web application component and has a high severity (CVSS v2 base score 7.5). Public ref...
5 star review - Cross-Site Scripting SQL Injection
5 star review - Cross-Site Scripting SQL Injection Viva IslaM Viva IslaM XSS / Remote SQL Injection Five Star Review recommend.php itemid http://review-script.com/ AuTh0r : Mr.SQL H0ME : WwW.PaL-HaCkEr.CoM & WwW.ReaL-HaCk.NeT Email : [email protected] SYRIAN Arab HACkErS -: Exploites :- User Exploit...
CVE-2008-0773
The CVE-2008-0773 entry describes a SQL injection in Phil Taylor Comments (com_comments, aka Review Script) for Mambo, affecting version 0.5.8.5g and earlier. The vulnerability allows remote attackers to execute arbitrary SQL commands via the id parameter, due to improper input handling in the af...
mambocom-sql.txt
Mambo SQL Injection comcomments Version Affected: = 0.5.8.5g Author: CheebaHawk215 Home page: http://www.always420forum.com Dork: "Review Script", "Phil Taylor" Vulnerable Code: $ptquery = "SELECT FROM moscontentcomments where articleid=$id AND published=1 order by id DESC"; Exploit:...
Mambo Component Comments 0.5.8.5g - SQL Injection
Mambo SQL Injection comcomments Version Affected: = 0.5.8.5g Author: CheebaHawk215 Home page: http://www.always420forum.com Dork: "Review Script", "Phil Taylor" Vulnerable Code: $ptquery = "SELECT FROM moscontentcomments where articleid=$id AND published=1 order by id DESC"; Exploit:...
Mambo Component Comments 0.5.8.5g - SQL Injection
Mambo Component Comments 0.5.8.5g - SQL Injection Mambo SQL Injection comcomments Version Affected: = 0.5.8.5g Author: CheebaHawk215 Home page: http://www.always420forum.com Dork: "Review Script", "Phil Taylor" Vulnerable Code: $ptquery = "SELECT FROM moscontentcomments where articleid=$id AND...
Mambo Component Comments <= 0.5.8.5g SQL Injection Vulnerability
No description provided by source. Mambo SQL Injection comcomments Version Affected: = 0.5.8.5g Author: CheebaHawk215 Home page: http://www.always420forum.com Dork: "Review Script", "Phil Taylor" Vulnerable Code: $ptquery = "SELECT FROM moscontentcomments where articleid=$id AND published=1 order...