Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

49 matches found

securityvulns
securityvulnsadded 2007/05/22 12:0 a.m.30 views

SimpGB v1.46.0 Remote File Include Exploit

""""""""""""""""""""""""""""""""""""""""""""""" """ :: :: ::::: :::: """ """ :: :: :: : :: """ """ :::: :: :: ::::: ::::: :::: """ """ :: :: ::: ::: :: :: :: :: :: """ """ :: :: :: : : ::::: :: :: :::: """ """ """ """"""""""""""""""""""""""""""""""""""""""""""" Xmor$ Security Vulnerability Resear...

0.5AI score
Exploits0
CVE
CVEadded 2005/03/20 5:0 a.m.39 views

CVE-2005-0786

CVE-2005-0786 is a SQL injection vulnerability in SimpGB where the quote parameter of guestbook.php is unsafely used in queries via gb_new.inc. The issue allows unauthenticated remote attackers to manipulate queries, reading or modifying data and potentially executing commands on the web server. ...

7.5CVSS8.4AI score0.01042EPSS
Exploits1References4Affected Software1
Cvelist
Cvelistadded 2005/03/20 5:0 a.m.15 views

CVE-2005-0786

SQL injection vulnerability in gbnew.inc in SimpGB allows remote attackers to execute arbitrary SQL commands via the quote parameter to guestbook.php...

8.3AI score0.01042EPSS
Exploits1References4
Packet Storm
Packet Stormadded 2005/03/17 12:0 a.m.34 views

simpgbSQL.txt

Hi, The PHP guestbook SimpGB 1, written by Boesch IT-Consulting 2 can be exploited to gain userdata. The quote variable isn't checked carefully in simpgb/include/gbnew.inc called by guestbook.php. I wrote a proof of concept which shows a md5 hash and the username, read from the database...

7.4AI score
Exploits0
securityvulns
securityvulnsadded 2005/03/16 12:0 a.m.57 views

SimpGB SQL Injection Vulnerability

Hi, The PHP guestbook SimpGB 1, written by Boesch IT-Consulting 2 can be exploited to gain userdata. The quote variable isn't checked carefully in simpgb/include/gbnew.inc called by guestbook.php. I wrote a proof of concept which shows a md5 hash and the username, read from the database...

7AI score
Exploits0
Tenable Nessus
Tenable Nessusadded 2005/03/15 12:0 a.m.91 views

SimpGB guestbook.php quote Parameter SQL Injection

The remote host is running SimpGB, a web-based guestbook application written in PHP. The version of SimpGB installed on the remote host fails to sanitize user input to the 'quote' parameter of the 'guestbook.php' script before using it in SQL queries. An unauthenticated, remote attacker can...

7.5CVSS5.9AI score0.01042EPSS
Exploits1References2
NVD
NVDadded 2005/03/14 5:0 a.m.9 views

CVE-2005-0786

SQL injection vulnerability in gbnew.inc in SimpGB allows remote attackers to execute arbitrary SQL commands via the quote parameter to guestbook.php...

7.5CVSS8.3AI score0.01042EPSS
Exploits1References4
exploitpack
exploitpackadded 2005/03/14 12:0 a.m.38 views

SimpGB 1.0 - Guestbook.php SQL Injection

SimpGB 1.0 - Guestbook.php SQL Injection source: https://www.securityfocus.com/bid/12801/info SimpGB is reportedly affected by an SQL injection vulnerability. This issue is due to the application failing to properly sanitize user-supplied input passed to the 'guestbook.php' script before using it...

Exploits0
Tenable Nessus
Tenable Nessusadded 2005/03/14 12:0 a.m.48 views

SimpGB < 1.35.2 guestbook.php quote Parameter SQL Injection

Binary data 2706.prm...

7.5CVSS7.3AI score0.01042EPSS
Exploits1References2
Rows per page
Query Builder