Okul Otomasyon Portal 2.0 - Remote SQL Injection Vulnerability

No description provided by source. Dumenci v19.1 Okul Otomasyon Portal v2.0 remote sql injection AUTHOR : Okulumun sitesi Script Download : http://www.okulumunsitesi.com/ DORK: inurl:/k12.tr/?part= Injection Adress : http://site.com/default.asp?islem=1&id=sql code my COD :...

FaScript FaName 1.0 - (page.php) Remote SQL Injection Vulnerability

No description provided by source. FaScript FaName v1 Remote Sql Injection BY IRCRASH AUTHOR : IRCRASH Dr.Crash Script Download : http://www.hotscripts.com/Detailed/66472.html Injection Adress : http://Sitename/faname/page.php?id=SqL Code Help : In This Script Admin Username and Password Save in...

FaScript FaPhoto 1.0 - (show.php id) SQL Injection Vulnerability

No description provided by source. AUTHOR : IRCRASH Dr.Crash Script Download : http://en.fascript.com/en.faphoto.zip Injection Adress : http://Sitename/faname/show.php?id=SqL Code Help : In This Script Admin Username and Password Save in ./admin/pconfig.php You can open this file with loadfile...

mrcgiguy freeticket (ch/sql) Multiple Vulnerabilities

No description provided by source. MRCGIGUY FreeTicket Multiple Remote Vulnerabilities Founder: ThE g0bL!N ------ Home: http:/www.4ckx.com/dz/ ---- Download: http://www.mrcgiguy.com/cgi-bin/freedown.cgi?id=1 Vendor:http://www.mrcgiguy.com Special Thx: Snakespc His0k4 Note: Algerie 3-1 Egypt...

Joomla Component com_tickets <= 2.1 (id) SQL Injection Vuln

No description provided by source. ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Joomla Component comtickets id SQL-injection Vulnerability ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ + Author : Chip D3 Bi0s + Email :...

Joomla Component com_K2 -q 1.0.1b (category) SQL Injection Vuln

No description provided by source. ---------------------------------------------------------------------- Joomla Component comk2 sectionid SQL injection Vulnerability ---------------------------------------------------------------------- + Author : Chip D3 Bi0s + Email : chipdebiosalt+64gmail.com...

FaScript FaPersianHack 1.0 - (show.php) SQL Injection Vulnerability

No description provided by source. FaScript FaPersianHack v1 Remote Sql Injection BY IRCRASH AUTHOR : IRCRASH Dr.Crash Script Download : http://fascript.com/fapersianhack.zip Injection Adress : http://Sitename/ph/show.php?id=SqL Code Help : In This Script Admin Username and Password Save in...

Joomla Component PhotoMap Gallery 1.6.0 - Multiple Blind SQL Injection

No description provided by source. PhotoMap Gallery 1.6.0 Joomla Component Multiple Blind SQL Injection Name PhotoMap Gallery Vendor http://extensions.joomla.org/extensions/photos-a-images/photo-gallery/10658 Versions Affected 1.6.0 Author Salvatore Fresta aka Drosophila Website...

phpBB viewtopic.php URL Decoding Code Execution - ver 2 (CVE-2004-1315)

A code injection and execution vulnerability has been reported in phpBB. The vulnerability is due to lack of input validation on the highlight parameter supplied to viewtopic.php. A remote attacker can exploit this issue by injecting malicious SQL code to the target server. Successful exploitatio...

Debian Security Advisory DSA 2867-1 (otrs2 - several vulnerabilities)

Several vulnerabilities were discovered in otrs2, the Open Ticket Request System. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2014-1694 Norihiro Tanaka reported missing challenge token checks. An attacker that managed to take over the session of a logge...

Roundcube: Arbitrary code execution

Background Roundcube is a browser-based multilingual IMAP client with an application-like user interface. Description A vulnerability in steps/utils/savepref.inc allows remote attackers to use the session parameter to change configuration settings. Impact A remote attacker could possibly execute...

ISPConfig 3.0.5.* 6 SQL injection Vulnerability

Just login as client or admin : and execute your SQL code. This is private exploit. You can buy it at https://0day.today...

GLPI 0.83.8 SQL Injection Vulnerability

GLPI version 0.83.8 suffers from multiple error-based SQL injection vulnerabilities. Input passed via the POST parameter 'usersidassign' in '/ajax/ticketassigninformation.php' script, POST parameter 'filename' in '/front/document.form.php' script, and POST parameter 'table' in...

WHMCS <= 4.5.2 SQLi Vulnerability

WHMCS is prone to an SQL injection SQLi vulnerability. Copyright C 2013 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you ca...

SuSE Update for ruby openSUSE-SU-2013:0278-1 (ruby)

Check for the Version of ruby OpenVAS Vulnerability Test $Id: gbsuse201302781.nasl 8542 2018-01-26 06:57:28Z teissa $ SuSE Update for ruby openSUSE-SU-2013:0278-1 ruby Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is fre...

phpBB viewtopic.php URL Decoding Code Execution (CVE-2004-1315)

A code injection and execution vulnerability has been reported in phpBB. The vulnerability is due to lack of input validation on the highlight parameter supplied to viewtopic.php. A remote attacker can exploit this issue by injecting malicious SQL code to the target server. Successful exploitatio...

b2ePms 1.0 - Authentication Bypass

b2ePMS 1.0 Authentication Bypass Vulnerability Discovered by: Jean Pascal Pereira Vendor Information: "b2ePMS stands for Browser to Email Phone Message System. It is intended to replace the standard paper/carbon phone message slips commonly used in offices, with the capability of sending the...

ArticleSetup <= 1.11 Multiple Vulnerabilities - Active Check

ArticleSetup is prone to multiple cross-site scripting XSS and SQL injection SQLi vulnerabilities. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

Joomla 'com_easyfaq' Component Multiple SQL Injection Vulnerabilities

This host is running Joomla EasyFAQ component and is prone to multiple sql injection vulnerabilities. OpenVAS Vulnerability Test $Id: secpodjoomlacomeasyfaqsqlinjvuln.nasl 5950 2017-04-13 09:02:06Z teissa $ Joomla 'comeasyfaq' Component Multiple SQL Injection Vulnerabilities Authors: Sooraj KS...

Joomla com_x-shop 'idd' Parameter SQL Injection Vulnerability

This host is running Joomla x-shop component and is prone to SQL injection vulnerability. OpenVAS Vulnerability Test $Id: gbjoomlacomxshopsqlinjvuln.nasl 5888 2017-04-07 09:01:53Z teissa $ Joomla comx-shop 'idd' Parameter SQL Injection Vulnerability Authors: Madhuri D Copyright: Copyright c 2012...