39 matches found
EUVD-2007-6357
Malware in sbrugna...
EUVD-2008-6626
Malware in sbrugna...
EUVD-2006-6784
Malware in sbrugna...
SH-News <= 3.1 (scriptpath) Multiple Remote File Include Vulnerabilities
No description provided by source. ================================================================== SH-News RFI ================================================================== Info:- Scripts: SH-News Download: http://www.hotscripts.com/jump.php?listingid=19561&jumptype=1 Version : 3.1 Dork &...
CVE-2008-6664
action.php in SH-News 3.0 allows remote attackers to bypass authentication and gain administrator privileges by setting the shuser and shpass cookies to non-zero values...
Authentication flaw
action.php in SH-News 3.0 allows remote attackers to bypass authentication and gain administrator privileges by setting the shuser and shpass cookies to non-zero values...
CVE-2008-6664
action.php in SH-News 3.0 allows remote attackers to bypass authentication and gain administrator privileges by setting the shuser and shpass cookies to non-zero values...
CVE-2008-6664
CVE-2008-6664 affects SH-News 3.0, where action.php can bypass authentication and grant admin privileges by setting the shuser and shpass cookies to non-zero values. The vulnerability enables remote attackers to assume administrator access due to the cookie-based check. NVD notes a base score of ...
PT-2009-2134 · Sh News · Sh-News
Name of the Vulnerable Software and Affected Versions: SH-News version 3.0 Description: The issue allows remote attackers to bypass authentication and gain administrator privileges. This is achieved by setting the shuser and shpass cookies to non-zero values in the 'action.php' file...
shnews-cookie.txt
...:::::SH-News 3.0 Insecure Cookie Handling Vulnerability ::::.... Virangar Security Team www.virangar.net www.virangar.ir -------- Discoverd By :virangar security teamhadihadi special tnx to:MR.nosrati,black.shadowes,MR.hesy,Zahra & all virangar members & all hackerz greetz:to my best friend in...
SH-News 3.0 Insecure Cookie Handling Vulnerability
Exploit for unknown platform in category web applications ================================================== SH-News 3.0 Insecure Cookie Handling Vulnerability ================================================== ...:::::SH-News 3.0 Insecure Cookie Handling Vulnerability ::::.... -------- Discoverd...
SH-News 3.0 - Insecure Cookie Handling
SH-News 3.0 - Insecure Cookie Handling ...:::::SH-News 3.0 Insecure Cookie Handling Vulnerability ::::.... Virangar Security Team www.virangar.net www.virangar.ir -------- Discoverd By :virangar security teamhadihadi special tnx to:MR.nosrati,black.shadowes,MR.hesy,Zahra & all virangar members &...
SH-News 3.0 - Insecure Cookie Handling
...:::::SH-News 3.0 Insecure Cookie Handling Vulnerability ::::.... Virangar Security Team www.virangar.net www.virangar.ir -------- Discoverd By :virangar security teamhadihadi special tnx to:MR.nosrati,black.shadowes,MR.hesy,Zahra & all virangar members & all hackerz greetz:to my best friend in...
CVE-2007-6391
SQL injection vulnerability in patch/comments.php in SH-News 3.0 allows remote attackers to execute arbitrary SQL commands via the id parameter...
CVE-2007-6391
The CVE-2007-6391 entry concerns an SQL injection in SH-News 3.0, specifically in patch/comments.php where the id parameter is vulnerable. Multiple connected documents confirm this: remote attackers can inject arbitrary SQL commands via id, indicating a server-side query construction flaw in SH-N...
CVE-2007-6391
SQL injection vulnerability in patch/comments.php in SH-News 3.0 allows remote attackers to execute arbitrary SQL commands via the id parameter...
SH-News 3.0 (comments.php id) Remote SQL Injection Vulnerability
No description provided by source. ...:::::SH-News 3.0 SQL Injection Vulnerbility ::::.... Virangar Security Team www.virangar.org www.virangar.net -------- Discoverd By : hadihadi special tnx to:MR.nosrati,black.shadowes,MR.hesy,Zahra & all virangar...
shnews-sql.txt
...:::::SH-News 3.0 SQL Injection Vulnerbility ::::.... Virangar Security Team www.virangar.org www.virangar.net -------- Discoverd By : hadihadi special tnx to:MR.nosrati,black.shadowes,MR.hesy,Zahra & all virangar members & all iranian hackerz greetz:to my best friend in the world hadiaryaie200...
SH-News 3.0 (comments.php id) Remote SQL Injection Vulnerability
Exploit for unknown platform in category web applications ================================================================ SH-News 3.0 comments.php id Remote SQL Injection Vulnerability ================================================================ ...:::::SH-News 3.0 SQL Injection Vulnerbility...
SH-News 3.0 - comments.php SQL Injection
SH-News 3.0 - comments.php SQL Injection ...:::::SH-News 3.0 SQL Injection Vulnerbility ::::.... Virangar Security Team www.virangar.org www.virangar.net -------- Discoverd By : hadihadi special tnx to:MR.nosrati,black.shadowes,MR.hesy,Zahra & all virangar members & all iranian hackerz greetz:to ...