17 matches found
EUVD-2009-2307
Malware in sbrugna...
EUVD-2008-4607
Malware in sbrugna...
Sql injection
SQL injection vulnerability in the rGallery plugin 1.2.3 for WoltLab Burning Board WBB3 allows remote attackers to execute arbitrary SQL commands via the userID parameter in the RGalleryUserGallery page to index.php, a different vector than CVE-2008-4627...
CVE-2009-2311
SQL injection vulnerability in the rGallery plugin 1.2.3 for WoltLab Burning Board WBB3 allows remote attackers to execute arbitrary SQL commands via the userID parameter in the RGalleryUserGallery page to index.php, a different vector than CVE-2008-4627...
CVE-2009-2311
CVE-2009-2311 describes a SQL injection in the rGallery plugin 1.2.3 for WoltLab Burning Board (WBB3). The vulnerability allows remote attackers to execute arbitrary SQL commands via the userID parameter on the RGalleryUserGallery page to index.php, a vector distinct from CVE-2008-4627. The NVD e...
CVE-2009-2311
SQL injection vulnerability in the rGallery plugin 1.2.3 for WoltLab Burning Board WBB3 allows remote attackers to execute arbitrary SQL commands via the userID parameter in the RGalleryUserGallery page to index.php, a different vector than CVE-2008-4627...
WBB3 rGallery 1.2.3 - 'UserGallery' Blind SQL Injection
!/usr/bin/perl -w use strict; use LWP::Simple; $| = 1; print q WBB3 Blind SQL-Injector Exploit in rGallery by Invisibility \\ Special greetz to // Katharsis//nobody \\ Gunner//Cheese // Thx ; ; if @ARGV 3 print "Usage: wbb3sploit.pl url user id User Gallery userID \nExample: wbb3sploit.pl...
CVE-2008-4627
SQL injection vulnerability in the rGallery plugin 1.09 for WoltLab Burning Board WBB allows remote attackers to execute arbitrary SQL commands via the itemID parameter in the RGalleryImageWrapper page in index.php...
CVE-2008-4627
SQL injection vulnerability in the rGallery plugin 1.09 for WoltLab Burning Board WBB allows remote attackers to execute arbitrary SQL commands via the itemID parameter in the RGalleryImageWrapper page in index.php...
Sql injection
SQL injection vulnerability in the rGallery plugin 1.09 for WoltLab Burning Board WBB allows remote attackers to execute arbitrary SQL commands via the itemID parameter in the RGalleryImageWrapper page in index.php...
CVE-2008-4627
SQL injection vulnerability in the rGallery plugin 1.09 for WoltLab Burning Board WBB allows remote attackers to execute arbitrary SQL commands via the itemID parameter in the RGalleryImageWrapper page in index.php...
wbbrgallery-sql.txt
import sys, urllib2, re print "\n " print " \'/ " print " -.- " print " -------------------oOO------OOo--------------------" print " | rGallery 1.09 +- Exploit by Five-Three-Nine |" print " | Using Blind SQL Injection in 'itemID' of rGallery |" print " | |" print " | Greets and Shouts to: |" prin...
CVE-2008-4627
CVE-2008-4627 describes an SQL injection in the rGallery plugin for WoltLab Burning Board (WBB) version 1.09. The vulnerability allows remote attackers to execute arbitrary SQL commands through the itemID parameter on the RGalleryImageWrapper page (index.php). The CVE entry notes a high risk (CVS...
WBB Plugin rGallery 1.09 (itemID) Blind SQL Injection Exploit
Exploit for unknown platform in category web applications ============================================================= WBB Plugin rGallery 1.09 itemID Blind SQL Injection Exploit ============================================================= import sys, urllib2, re print "\n " print " \'/ " print...
WBB Plugin rGallery 1.09 - 'itemID' Blind SQL Injection
import sys, urllib2, re print "\n " print " \'/ " print " -.- " print " -------------------oOO------OOo--------------------" print " | rGallery 1.09 +- Exploit by Five-Three-Nine |" print " | Using Blind SQL Injection in 'itemID' of rGallery |" print " | |" print " | Greets and Shouts to: |" prin...
WBB Plugin rGallery 1.09 - itemID Blind SQL Injection
WBB Plugin rGallery 1.09 - itemID Blind SQL Injection import sys, urllib2, re print "\n " print " \'/ " print " -.- " print " -------------------oOO------OOo--------------------" print " | rGallery 1.09 +- Exploit by Five-Three-Nine |" print " | Using Blind SQL Injection in 'itemID' of rGallery |...
WBB Plugin rGallery 1.09 (itemID) Blind SQL Injection Exploit
No description provided by source. import sys, urllib2, re print "\n " print " \'/ " print " -.- " print " -------------------oOO------OOo--------------------" print " | rGallery 1.09 +- Exploit by Five-Three-Nine |" print " | Using Blind SQL Injection in 'itemID' of rGallery |" print " | |" prin...