WooCommerce Beta Tester < 2.2.4 - Admin+ SQLi

Description The plugin does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by high privilege users such as admin...

AiOPMSD Final 1.0.0 - q SQL Injection

AiOPMSD Final 1.0.0 - q SQL Injection Exploit Title: AiOPMSD Final 1.0.0 - 'q' SQL Injection Dork: N/A Date: 2018-10-24 Exploit Author: Ihsan Sencan Vendor Homepage: https://aiopmsd.sourceforge.io/ Software Link: https://sourceforge.net/projects/aiopmsd/files/latest/download Version: 1.0.0...

A-Blog 2.0 - (sources/search.php) SQL Injection Exploit

No description provided by source. !/usr/bin/python Exploit Title: A-Blog v2.0 sources/search.php SQL Injection Exploit Date : 05 September 2010 Author : Ptrace Security Gianni Gnesa gnix Contact : researchatptrace-securitydotcom Software Link: http://sourceforge.net/projects/a-blog/ Version : 2....

Upload command to Startup folder

Added: 01/20/2009 Background Each user's Startup folder on Windows systems contains programs which run at start-up time. This tool attempts to upload a command connection to a user's Startup folder. If successful, the connection will be established the next time the computer starts. Limitations A...

Mutant 0.9.2 - &#039;mutant_functions.php&#039; Remote File Inclusion

phpBB mutant 0.9.2 phpbbrootpath Remote File Inclusion Exploit //'Bug found and Exploit coded by bd0rk //'Vendor: http://ie.archive.ubuntu.com/sourceforge/p/ph/phpbb22-mutant/mutant-092.tar.gz //'Contact: bd0rkathackermail.com //'Vulnerable Code: includeonce$phpbbrootpath...