CVE-2010-2905

CVE-2010-2905 is a SQL injection vulnerability affecting the ScriptsFeed and BrotherScripts (BS) Scripts Directory, exploitable via the id parameter in info.php and allowing remote execution of arbitrary SQL commands. The CVE has corroborating entries in multiple sources (NVD, CVE list, PRION) de...

CVE-2010-2906

CVE-2010-2906 affects ScriptsFeed and BrotherScripts (BS) Scripts Directory: SQL injection in articlesdetails.php via the id parameter, allowing remote execution of arbitrary SQL commands. This is a separate vector from CVE-2010-2905 (info.php). Documented impact is partial confidentiality/integr...

Recipes Website 1.0 - SQL Injection

Script: | Recipes Website 1.0 | Author : Mr.ThieF Contact : [email protected] DorK : contactfrm.php Software Link : http://www.scriptsfeed.com Date : 05-23-2010 Version : 1.0 CVE : Exploit : UserName : admin ' or ' 1=1 & or & ' or 1='1' PassworD : xx Example:...

Recipes Website 1.0 SQL Injection Vulnerability

Exploit for php platform in category web applications =============================================== Recipes Website 1.0 SQL Injection Vulnerability =============================================== Script: | Recipes Website 1.0 | Author : Mr.ThieF Contact : email protected DorK : contactfrm.php...

CVE-2010-1092

Multiple SQL injection vulnerabilities in login.php in ScriptsFeed Business Directory Software allow remote attackers to execute arbitrary SQL commands via the 1 us and 2 ps parameters...

CVE-2010-1096

Multiple SQL injection vulnerabilities in searchmatch.php in ScriptsFeed Dating Software allow remote attackers to execute arbitrary SQL commands via the 1 txtgender and 2 txtlookgender parameters. NOTE: the provenance of this information is unknown; the details are obtained solely from third par...

Sql injection

Multiple SQL injection vulnerabilities in searchmatch.php in ScriptsFeed Dating Software allow remote attackers to execute arbitrary SQL commands via the 1 txtgender and 2 txtlookgender parameters. NOTE: the provenance of this information is unknown; the details are obtained solely from third par...

Sql injection

Multiple SQL injection vulnerabilities in login.php in ScriptsFeed Business Directory Software allow remote attackers to execute arbitrary SQL commands via the 1 us and 2 ps parameters...

CVE-2010-1092

CVE-2010-1092 affects ScriptsFeed Business Directory Software, specifically login.php. The vulnerability is SQL injection in the login routine via the us and ps parameters, allowing remote attackers to execute arbitrary SQL. Public references indicate there are exploits available (e.g., Exploit-D...

CVE-2010-1096

CVE-2010-1096 concerns SQL injection in ScriptsFeed Dating Software. The vulnerability is in searchmatch.php where the parameters txtgender and txtlookgender can be exploited by remote attackers to execute arbitrary SQL commands. Multiple databases (NVD, Red Hat advisory, CVE list) reference this...

CVE-2010-1096

Multiple SQL injection vulnerabilities in searchmatch.php in ScriptsFeed Dating Software allow remote attackers to execute arbitrary SQL commands via the 1 txtgender and 2 txtlookgender parameters. NOTE: the provenance of this information is unknown; the details are obtained solely from third par...

CVE-2010-1092

Multiple SQL injection vulnerabilities in login.php in ScriptsFeed Business Directory Software allow remote attackers to execute arbitrary SQL commands via the 1 us and 2 ps parameters...

Scripts Feed Dating Software SQL Injection

============================================================================== Scripts Feed Dating Software Cookie Manip/SQLi Multiple Remote Vulnerabilities ============================================================================== + My home http://hack-tech.com + Date Submitted: February 27...

Scripts Feed Dating Software (Cookie Manip/SQLi) Multiple Vulnerabilities

Exploit for unknown platform in category web applications ========================================================================= Scripts Feed Dating Software Cookie Manip/SQLi Multiple Vulnerabilities =========================================================================...

CVE-2008-6944

Unrestricted file upload vulnerability in ScriptsFeed Auto Classifieds allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a profile logo, then accessing it via a direct request to the file in carsimages/...

Unrestricted file upload

Unrestricted file upload vulnerability in ScriptsFeed Recipes Listing Portal allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a recipe photo, then accessing it via a direct request to the file in pictures/...

CVE-2008-6943

Unrestricted file upload vulnerability in ScriptsFeed Recipes Listing Portal allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a recipe photo, then accessing it via a direct request to the file in pictures/...

Unrestricted file upload

Unrestricted file upload vulnerability in ScriptsFeed Auto Classifieds allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a profile logo, then accessing it via a direct request to the file in carsimages/...

CVE-2008-6943

Unrestricted file upload vulnerability in ScriptsFeed Recipes Listing Portal allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a recipe photo, then accessing it via a direct request to the file in pictures/...

CVE-2008-6943

CVE-2008-6943 describes an Unrestricted file upload vulnerability in the ScriptsFeed Recipes Listing Portal. Remote authenticated users can upload a file with an executable extension as a recipe photo, then access it directly via a URL under pictures/ to execute arbitrary code. The NVD entry prov...