Sql injection

SQL injection vulnerability in index.php in the slownik module in SmodCMS 2.10 and earlier allows remote attackers to execute arbitrary SQL commands via the ssid parameter...

CVE-2007-1931

CVE-2007-1931 affects SmodCMS 2.10 and earlier: SQL injection in index.php (slownik module) via the ssid parameter. This allows remote attackers to execute arbitrary SQL commands. CVSSv2 base score 7.5 (HIGH; AV:N/AC:L/Au:N/C:P/I:P/A:P). Exploitation appears in public references (e.g., exploit-db...

smodcms-sql.txt

126 $result.=" ."; else $result.=" ".$string$i; if strlendechexord$string$i==2 $exa.=" ".dechexord$string$i; else $exa.=" 0".dechexord$string$i; $cont++;if $cont==15 $cont=0; $result.="\r\n"; $exa.="\r\n"; return $exa."\r\n".$result; $proxyreg...

SmodCMS <= 2.10 (Slownik ssid) Remote SQL Injection Exploit

No description provided by source. ? / Autor: Kacper Contact: [email protected] Homepage: http://www.rahim.webd.pl/ Irc: irc.milw0rm.com:6667 devilteam Pozdro dla wszystkich z kanalu IRC oraz forum DEVIL TEAM. //dork: "SmodCMS" & "S.ownik" SmodCMS = 2.10 Slownik ssid Remote SQL Injection...

SmodCMS 2.10 - Slownik ssid SQL Injection

SmodCMS 2.10 - Slownik ssid SQL Injection 126 $result.=" ."; else $result.=" ".$string$i; if strlendechexord$string$i==2 $exa.=" ".dechexord$string$i; else $exa.=" 0".dechexord$string$i; $cont++;if $cont==15 $cont=0; $result.="\r\n"; $exa.="\r\n"; return $exa."\r\n".$result; $proxyregex = '...