Lucene search
+L

104 matches found

cve
cve
added 2007/12/01 2:0 a.m.49 views

CVE-2007-6202

CVE-2007-6202 exposes a SQL injection in Neocrome Seditio CMS (plugins/search/search.php, via plug.php) on version 121 and earlier. The vulnerability arises from unsanitized input to the pag_sub parameter used in database queries when magic_quotes_gpc is disabled, allowing remote attackers to man...

6.8CVSS8.4AI score0.02222EPSS
Exploits1References6Affected Software1
packetstorm
packetstorm
added 2007/11/30 12:0 a.m.28 views

seditio-sql.txt

= 4.1, magicquotesgpc=Off echo "------------------------------------------------------------\n"; echo "Seditio CMS - use specific prefix default sed\n"; echo "-id= - use specific user id default 1\n\n"; echo "examples:\n"; echo "php $argv0 http://site.com/ -p=cms\n"; echo "php $argv0...

7.4AI score
Exploits0
seebug
seebug
added 2007/11/30 12:0 a.m.25 views

Seditio CMS 121 Remote SQL Injection Exploit

No description provided by source. = 4.1, magicquotesgpc=Off echo \\\"------------------------------------------------------------\\\\n\\\"; echo \\\"Seditio CMS - use specific prefix default sed\\\\n\\\"; echo \\\"-id= &nb...

7.1AI score
Exploits0
zdt
zdt
added 2007/11/29 12:0 a.m.46 views

Seditio CMS <= 121 Remote SQL Injection Exploit

Exploit for unknown platform in category web applications =============================================== Seditio CMS = 4.1, magicquotesgpc=Off echo "------------------------------------------------------------\n"; echo "Seditio CMS - use specific prefix default sed\n"; echo "-id= - use specific...

7.1AI score
Exploits0
seebug
seebug
added 2007/11/29 12:0 a.m.22 views

Seditio CMS &lt;= 121 Remote SQL Injection Exploit

No description provided by source. ?php Seditio CMS = 121 Remote SQL Injection Exploit Software site: http://www.neocrome.net/ By InATeam http://inattack.ru/ Requirements: MySQL = 4.1, magicquotesgpc=Off echo "------------------------------------------------------------\n"; echo "Seditio CMS = 12...

7.1AI score
Exploits0
exploitdb
exploitdb
added 2007/11/29 12:0 a.m.43 views

Seditio CMS 121 - SQL Injection

= 4.1, magicquotesgpc=Off echo "------------------------------------------------------------\n"; echo "Seditio CMS - use specific prefix default sed\n"; echo "-id= - use specific user id default 1\n\n"; echo "examples:\n"; echo "php $argv0 http://site.com/ -p=cms\n"; echo "php $argv0...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2007/11/29 12:0 a.m.15 views

Seditio CMS 121 - SQL Injection

Seditio CMS 121 - SQL Injection = 4.1, magicquotesgpc=Off echo "------------------------------------------------------------\n"; echo "Seditio CMS - use specific prefix default sed\n"; echo "-id= - use specific user id default 1\n\n"; echo "examples:\n"; echo "php $argv0 http://site.com/ -p=cms\n...

0.2AI score
Exploits0
prion
prion
added 2007/07/30 5:30 p.m.13 views

Unrestricted file upload

Unrestricted file upload vulnerability in pfs.php in Neocrome Seditio 121 and earlier allows remote authenticated users to upload arbitrary PHP code via a filename ending with 1 .php.gif, 2 .php.jpg, or 3 .php.png...

6.5CVSS7.2AI score0.0207EPSS
Exploits0References4Affected Software1
nvd
nvd
added 2007/07/30 5:30 p.m.22 views

CVE-2007-4057

Unrestricted file upload vulnerability in pfs.php in Neocrome Seditio 121 and earlier allows remote authenticated users to upload arbitrary PHP code via a filename ending with 1 .php.gif, 2 .php.jpg, or 3 .php.png...

6.5CVSS6.7AI score0.0207EPSS
Exploits0References4
cvelist
cvelist
added 2007/07/30 5:0 p.m.26 views

CVE-2007-4057

Unrestricted file upload vulnerability in pfs.php in Neocrome Seditio 121 and earlier allows remote authenticated users to upload arbitrary PHP code via a filename ending with 1 .php.gif, 2 .php.jpg, or 3 .php.png...

6.7AI score0.0207EPSS
Exploits0References4
cve
cve
added 2007/07/30 5:0 p.m.59 views

CVE-2007-4057

The CVE-2007-4057 entry describes an unrestricted file upload vulnerability in Neocrome Seditio (pfs.php) affecting 121 and earlier. Remote authenticated users can upload arbitrary PHP code by supplying a filename ending in (1) .php.gif, (2) .php.jpg, or (3) .php.png, enabling code execution on t...

6.5CVSS6.7AI score0.0207EPSS
Exploits0References4Affected Software1
seebug
seebug
added 2007/07/28 12:0 a.m.25 views

Seditio CMS &lt;= v121 (pfs.php) Remote File Upload Vulnerability

No description provided by source. Seditio CMS Remote File Upload Vulnerability ReSearcher : A.D.T Script : Seditio and Ldu Cms Version : All Versions Script HomePage : http://neocrome.net/ Dork : "powered by seditio" or "powered by ldu" Risk : Very High! Usage : Firstly, you register the victim...

7.1AI score
Exploits0
packetstorm
packetstorm
added 2007/07/28 12:0 a.m.35 views

seditio-upload.txt

Seditio CMS Remote File Upload Vulnerability ReSearcher : A.D.T Script : Seditio and Ldu Cms Version : All Versions Script HomePage : http://neocrome.net/ Dork : "powered by seditio" or "powered by ldu" Risk : Very High! Usage : Firstly, you register the victim web site. After, go to "pfs.php" an...

7.4AI score
Exploits0
zdt
zdt
added 2007/07/27 12:0 a.m.38 views

Seditio CMS <= v121 (pfs.php) Remote File Upload Vulnerability

Exploit for unknown platform in category web applications ============================================================== Seditio CMS = v121 pfs.php Remote File Upload Vulnerability ============================================================== Seditio CMS Remote File Upload Vulnerability ReSearch...

7.1AI score
Exploits0
exploitdb
exploitdb
added 2007/07/27 12:0 a.m.43 views

Seditio CMS 121 - &#039;pfs.php&#039; Arbitrary File Upload

Seditio CMS Remote File Upload Vulnerability ReSearcher : A.D.T Script : Seditio and Ldu Cms Version : All Versions Script HomePage : http://neocrome.net/ Dork : "powered by seditio" or "powered by ldu" Risk : Very High! Usage : Firstly, you register the victim web site. After, go to "pfs.php" an...

7AI score
Exploits0
exploitpack
exploitpack
added 2007/07/27 12:0 a.m.29 views

Seditio CMS 121 - pfs.php Arbitrary File Upload

Seditio CMS 121 - pfs.php Arbitrary File Upload Seditio CMS Remote File Upload Vulnerability ReSearcher : A.D.T Script : Seditio and Ldu Cms Version : All Versions Script HomePage : http://neocrome.net/ Dork : "powered by seditio" or "powered by ldu" Risk : Very High! Usage : Firstly, you registe...

0.3AI score
Exploits0
nessus
nessus
added 2006/12/10 12:0 a.m.29 views

Seditio Detection

The remote host is running Seditio, a moduler website engine powered by PHP and MySQL. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include"compat.inc"; if description scriptid23785; scriptversion"1.14"; scriptsetattributeattribute:"pluginmodificationdate...

5.5AI score
Exploits0References1
nvd
nvd
added 2006/12/07 1:28 a.m.14 views

CVE-2006-6344

Multiple unspecified vulnerabilities in Neocrome Seditio 1.10 and earlier have unknown impact and attack vectors related to 1 plugins/ipsearch/ipsearch.admin.php, and 2 pfs/pfs.edit.inc.php, 3 users/users.register.inc.php in system/core. NOTE: the users.profile.inc.php vector is identified by...

7.5CVSS7.5AI score0.00925EPSS
Exploits0References3
nvd
nvd
added 2006/12/07 1:28 a.m.15 views

CVE-2006-6343

SQL injection vulnerability in polls.php in Neocrome Seditio 1.10 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter...

6.8CVSS8.4AI score0.01155EPSS
Exploits0References6
cvelist
cvelist
added 2006/12/07 1:0 a.m.18 views

CVE-2006-6344

Multiple unspecified vulnerabilities in Neocrome Seditio 1.10 and earlier have unknown impact and attack vectors related to 1 plugins/ipsearch/ipsearch.admin.php, and 2 pfs/pfs.edit.inc.php, 3 users/users.register.inc.php in system/core. NOTE: the users.profile.inc.php vector is identified by...

7.5AI score0.00925EPSS
Exploits0References3
Rows per page
Query Builder