CVE-2021-47954

LayerBB 1.1.4 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the searchquery parameter. Attackers can send POST requests to /search.php with malicious searchquery values using CASE WHEN statements to extra...

EUVD-2008-5105

Malware in sbrugna...

LayerBB 1.1.4 - (search_query) SQL Injection Vulnerability

Exploit Title: LayerBB 1.1.4 - 'searchquery' SQL Injection Exploit Author: Görkem Haşin Version: 1.1.4 Tested on: Linux/Windows POST /search.php HTTP/1.1 Host: Target Payload: searchquery=Lffd' AND 8460=SELECT CASE WHEN 8460=8460 THEN 8460 ELSE SELECT 1560 UNION SELECT 2122 END--...

LayerBB SQL Injection Vulnerability

LayerBB is a small set of forum software. A SQL injection vulnerability exists in LayerBB version 1.1.1. A remote attacker can exploit this vulnerability by sending the 'searchquery' parameter to the search.php file to execute SQL commands...

Sql injection

LayerBB 1.1.1 and 1.1.3 has SQL Injection via the search.php searchquery parameter...

CVE-2018-17988

LayerBB 1.1.1 and 1.1.3 has SQL Injection via the search.php searchquery parameter...

just4medical.co.uk XSS vulnerability

Open Bug Bounty ID: OBB-655825 Description| Value ---|--- Affected Website:| just4medical.co.uk Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

CVE-2015-5148

SQL injection vulnerability in LivelyCart 1.2.0 allows remote attackers to execute arbitrary SQL commands via the searchquery parameter to product/search...

Cross site scripting

Cross-site scripting XSS vulnerability in search.php in BoutikOne CMS allows remote attackers to inject arbitrary web script or HTML via the searchquery parameter...