5 matches found
Betster SQL Injection Vulnerability
Betster aka PHP Betoffice is a suite of software for creating online casinos based on PHP, MySQL and JavaScript. A SQL injection vulnerability exists in Betster version 1.0.4, which stems from the failure of the showprofile.php or categoryedit.php scripts to adequately filter the 'id' parameter;...
wpfa-sql.txt
WordPress forumactionPAGEİDuserSQL Injection AUTHOR : S@BUN HOME : http://www.hackturkiye.com/ DORK 1 : allinurl: forumaction "showprofile" DORK 2 : allinurl: pageid user "showprofile" DORK 3 : allinurl:"forum/?forumaction" showprofile&user=SQL InjectionEXPLOİT EXPLOİT 1...
Sql injection
SQL injection vulnerability in the WP-Forum 1.7.4 plugin for WordPress allows remote attackers to execute arbitrary SQL commands via the user parameter in a showprofile action to the default URI...
CVE-2008-0388
SQL injection vulnerability in the WP-Forum 1.7.4 plugin for WordPress allows remote attackers to execute arbitrary SQL commands via the user parameter in a showprofile action to the default URI...
CVE-2006-2034
SQL injection vulnerability in function/showprofile.php in FlexBB 0.5.5 allows remote attackers to execute arbitrary SQL commands, and view all usernames and passwords, via the id parameter to the showprofile page in index.php...