Lucene search
K

4 matches found

CVE
CVE
added 2010/03/22 6:17 p.m.43 views

CVE-2010-1046

CVE-2010-1046 affects Rostermain 1.1 and earlier, where multiple SQL injection vulnerabilities exist in index.php. The underlying issue is improper input handling in the (1) userid (username) and (2) password parameters, enabling remote attackers to inject and execute arbitrary SQL commands. The ...

7.5CVSS8.9AI score0.00973EPSS
Exploits1References4Affected Software1
Packet Storm
Packet Storm
added 2010/02/08 12:0 a.m.16 views

Rostermain 1.1 SQL Injection

Rostermain + Download : http://scripts.ringsworld.com/games-and-entertainment/rostermain/ + Vuln Code : index.php if $POST'userid' && $POST'password' // if the user has just tried to log in $logquery = "select from users " ."where username='$userid' " ." and passwd='$password' "; + PoC : username...

0.1AI score
Exploits0
exploitpack
exploitpack
added 2010/02/07 12:0 a.m.13 views

Rostermain 1.1 - Authentication Bypass

Rostermain 1.1 - Authentication Bypass + Rostermain + Download : http://scripts.ringsworld.com/games-and-entertainment/rostermain/ + Vuln Code : index.php if $POST'userid' && $POST'password' // if the user has just tried to log in $logquery = "select from users " ."where username='$userid' " ." a...

0.8AI score
Exploits0
0day.today
0day.today
added 2010/02/07 12:0 a.m.15 views

Rostermain <= 1.1 (Auth Bypass) SQL Injection Vulnerability

Exploit for unknown platform in category web applications =========================================================== Rostermain = 1.1 Auth Bypass SQL Injection Vulnerability =========================================================== + Rostermain = 1.1 Auth Bypass SQL Injection Vulnerability +...

7.1AI score
Exploits0
Rows per page
Query Builder