A-Blog 2.0 - sourcessearch.php SQL Injection

A-Blog 2.0 - sourcessearch.php SQL Injection !/usr/bin/python Exploit Title: A-Blog v2.0 sources/search.php SQL Injection Exploit Date : 05 September 2010 Author : Ptrace Security Gianni Gnesa gnix Contact : researchatptrace-securitydotcom Software Link: http://sourceforge.net/projects/a-blog/...

Invision Power Board < 2.0.4 Multiple Vulnerabilities (SQLi, XSS)

According to its banner, the version of Invision Power Board on the remote host suffers from multiple vulnerabilities : - SQL Injection Vulnerability The application fails to sanitize user-input supplied through the 'passhash' cookie in the 'sources/login.php' script, which can be exploited to...