14 matches found
EUVD-2007-1954
Malware in sbrugna...
EUVD-2007-2102
Malware in sbrugna...
Sql injection
SQL injection vulnerability in visit.php in the Rha7 Downloads rha7downloads 1.0 module for XOOPS allows remote attackers to execute arbitrary SQL commands via the cid parameter, a different vector than CVE-2007-1960. NOTE: the provenance of this information is unknown; the details are obtained...
CVE-2007-2107
SQL injection vulnerability in visit.php in the Rha7 Downloads rha7downloads 1.0 module for XOOPS allows remote attackers to execute arbitrary SQL commands via the cid parameter, a different vector than CVE-2007-1960. NOTE: the provenance of this information is unknown; the details are obtained...
CVE-2007-2107
CVE-2007-2107 describes an SQL injection in the Rha7 Downloads (rha7downloads) 1.0 module for XOOPS, triggered via the cid parameter in visit.php. The vulnerability arises from processing user-supplied input without proper sanitization, allowing remote attackers to potentially modify or exfiltrat...
CVE-2007-2107
SQL injection vulnerability in visit.php in the Rha7 Downloads rha7downloads 1.0 module for XOOPS allows remote attackers to execute arbitrary SQL commands via the cid parameter, a different vector than CVE-2007-1960. NOTE: the provenance of this information is unknown; the details are obtained...
XOOPS Rha7 Downloads Module Visit.PHP SQL注入漏洞
XOOPS Rha7 Downloads是一款基于PHP的WEB应用程序。 XOOPS Rha7 Downloads不正确过滤用户提交的输入,远程攻击者可以利用漏洞进行SQL注入攻击,可获得敏感信息。 问题是'Visit.PHP'脚本对用户提交的'postid'参数缺少过滤,提交恶意SQL代码作为参数数据,可导致更改原来的SQL逻辑,获得敏感信息。 Xoops Rha7 Downloads Module 1.0 目前没有解决方案提供: http://www.xoops.org/ !/usr/bin/perl Script Name: XOOPS Module Rha7 Downloads...
CVE-2007-1960
SQL injection vulnerability in visit.php in the Rha7 Downloads rha7downloads 1.0 module for XOOPS, and possibly other versions up to 1.10, allows remote attackers to execute arbitrary SQL commands via the lid parameter...
CVE-2007-1960
SQL injection vulnerability in visit.php in the Rha7 Downloads rha7downloads 1.0 module for XOOPS, and possibly other versions up to 1.10, allows remote attackers to execute arbitrary SQL commands via the lid parameter...
CVE-2007-1960
The CVE-2007-1960 entry describes an SQL injection in the Rha7 Downloads (rha7downloads) 1.0 module for XOOPS (and possibly versions up to 1.10). The vulnerability occurs in visit.php via the lid parameter, allowing remote attackers to execute arbitrary SQL commands. The available connected docum...
CVE-2007-1960
SQL injection vulnerability in visit.php in the Rha7 Downloads rha7downloads 1.0 module for XOOPS, and possibly other versions up to 1.10, allows remote attackers to execute arbitrary SQL commands via the lid parameter...
XOOPS Module Rha7 Downloads 1.0 - visit.php SQL Injection
XOOPS Module Rha7 Downloads 1.0 - visit.php SQL Injection !/usr/bin/perl Script Name: XOOPS Module Rha7 Downloads 1.0 visit.php Remote BLIND SQL Injection Exploit Coded by : ajann Author : ajann Contact : : S.Page : http://www.rha7.com/ ,...
XOOPS Module Rha7 Downloads 1.0 (visit.php) SQL Injection Exploit
No description provided by source. !/usr/bin/perl Script Name: XOOPS Module Rha7 Downloads 1.0 visit.php Remote BLIND SQL Injection Exploit Coded by : ajann Author : ajann Contact : : S.Page : http://www.rha7.com/ , www.xoops.org/modules/repository/singlefile.php?cid=92&lid=1525 $$ : Free .. :...
XOOPS Module Rha7 Downloads 1.0 (visit.php) SQL Injection Exploit
Exploit for unknown platform in category web applications ================================================================= XOOPS Module Rha7 Downloads 1.0 visit.php SQL Injection Exploit ================================================================= !/usr/bin/perl Script Name: XOOPS Module Rh...