PHPJabbers Vacation Rental Script 4.0 Cross Site Request Forgery

Exploit Title: PHPJabbers Vacation Rental Script 4.0 - CSRF Date: 05/08/2023 Exploit Author: Hasan Ali YILDIR Vendor Homepage: https://www.phpjabbers.com/ Software Link: https://www.phpjabbers.com/vacation-rental-script/ Version: 4.0 Tested on: Windows 10 Pro Description The attacker can send to...

PHPJabbers Vacation Rental Script 4.0 - CSRF Vulnerability

Exploit Title: PHPJabbers Vacation Rental Script 4.0 - CSRF Exploit Author: Hasan Ali YILDIR Vendor Homepage: https://www.phpjabbers.com/ Software Link: https://www.phpjabbers.com/vacation-rental-script/ Version: 4.0 Tested on: Windows 10 Pro Description The attacker can send to victim a link...

Vacation Rental Script 4.0 - Arbitrary File Upload Vulnerability

No description provided by source. Script Name: Vacation Rental Script = 4.0 Site: http://www.vacationrentalscript.com/ Bug: Upload Shell Found: Br0ly google dork: 2006 - 2009 Vacation Rental Script BraZIL!! You need register a account first so: Signup: http://server/signup Cheek your email for...

Vacation Rental Script 4.0 Cross Site Request Forgery

Exploit Title: Vacation Rental Script v4.0 XSRF VULNERABILTY Google Dork: "2006 - 2009 Vacation Rental Script" Date: 24.12.2010 Author: OnurTURKESHAN Software Link: http://www.vacationrentalscript.com/ Version: v.4.0 Tested on: v4.0 TEsted +WorKs ResPecT My FrienDz :...

Vacation Rental Script 4.0 - Arbitrary File Upload

Vacation Rental Script 4.0 - Arbitrary File Upload Script Name: Vacation Rental Script = 4.0 Site: http://www.vacationrentalscript.com/ Bug: Upload Shell Found: Br0ly google dork: "2006 - 2009 Vacation Rental Script" BraZIL!! You need register a account first so: Signup: http://server/signup Chee...

Design/Logic Flaw

Mole Group Lastminute Script 4.0 and earlier stores passwords in cleartext, which allows context-dependent attackers to obtain sensitive information. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

CVE-2008-6817

CVE-2008-6817 affects Mole Group Lastminute Script 4.0 and earlier, where passwords are stored in cleartext. This indicates improper credential storage (cleartext) and can allow context-dependent attackers to obtain sensitive information. The description notes provenance is uncertain and informat...

CVE-2008-4090

CVE-2008-4090 : Affects PHP Coupon Script 4.0. The vulnerability is in index.php and allows SQL injection via the id parameter in an addtocart action, enabling remote arbitrary SQL execution.

Coupon Script 4.0 (id) Remote SQL Injection Vulnerability

No description provided by source. || | | Coupon Script 4.0 id Remote SQL Injection Vulnerability | | |---------------------Hussin X----------------------| | | Author: Hussin X | | Home : WwW.Hussin-X.CoM | WwW.tryag.CoM | | email: darkangelg85atYahooDoTcom | | | | | | | script :...

coupon-sql.txt

|| | | Coupon Script 4.0 id Remote SQL Injection Vulnerability | | |---------------------Hussin X----------------------| | | Author: Hussin X | | Home : WwW.Hussin-X.CoM | WwW.tryag.CoM | | email: darkangelg85atYahooDoTcom | | | | | | | script : http://www.couponscript.com/ | | DorK :...

Coupon Script 4.0 (id) Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications ========================================================= Coupon Script 4.0 id Remote SQL Injection Vulnerability ========================================================= || | | Coupon Script 4.0 id Remote SQL Injection Vulnerability | |...

Coupon Script 4.0 - 'id' SQL Injection

|| | | Coupon Script 4.0 id Remote SQL Injection Vulnerability | | |---------------------Hussin X----------------------| | | Author: Hussin X | | Home : WwW.Hussin-X.CoM | WwW.tryag.CoM | | email: darkangelg85atYahooDoTcom | | | | | | | script : http://www.couponscript.com/ | | DorK :...

Coupon Script 4.0 - id SQL Injection

Coupon Script 4.0 - id SQL Injection || | | Coupon Script 4.0 id Remote SQL Injection Vulnerability | | |---------------------Hussin X----------------------| | | Author: Hussin X | | Home : WwW.Hussin-X.CoM | WwW.tryag.CoM | | email: darkangelg85atYahooDoTcom | | | | | | | script :...

CVE-2008-3125

CVE-2008-3125 describes an SQL injection in Mole Group Lastminute Script 4.0, exploitable via the cid parameter in index.php. The vulnerability allows remote attackers to execute arbitrary SQL commands. The NVD entry notes a CVSSv2 base score of 7.5 (High) with network access, low attack complexi...