BuInteractive Web Design 1.0 SQL Injection

Exploit Title : BuAdegnteractive Web Design 1.0 SQL Injection Author Discovered By : KingSkrupellos Date : 30/12/2018 Vendor Homepage : buinteractive.com Tested On : Windows and Linux Category : WebApps Exploit Risk : Medium Version Information : 1.0 - Microsoft ASP.NET - IIS 6.0 + Windows Server...

BEM Search Server Doesn't Remove Successfully

Challenge When trying to remove a Search Server from BEM by clicking the remove button, the server being removed is stuck in a "Removing" state. Cause Solution Veeam encourages backing up your SQL DB before making any changes. 1. Go to Microsoft SQL Server Management Studio May need to be install...

XSS, SQL Injection и SQL DB Structure Extraction уязвимости в Cetera eCommerce

Здравствуйте 3APA3A! Сообщаю вам о найденных мною новых Cross-Site Scripting, SQL Injection и SQL DB Structure Extraction уязвимостях в Cetera eCommerce. XSS WASC-08 также работают в версии 15.0: http://site/catalog/3Cscript3Ealertdocument.cookie3C/script3E/...

W-Agora 4.2.1 Cross Site Scripting / Denial Of Service / SQL Injection

Hello Packet Storm! I want to warn you about Cross-Site Scripting, SQL DB Structure Extraction, SQL Injection and Denial of Service vulnerabilities in W-Agora. SecurityVulns ID: 11324. ------------------------- Affected products: ------------------------- Vulnerable are W-Agora 4.2.1 and previous...

Многочисленные уязвимости в W-Agora

Здравствуйте 3APA3A! Сообщаю вам о найденных мною многочисленных Cross-Site Scripting, SQL DB Structure Extraction, SQL Injection и Denial of Service уязвимостях в W-Agora. XSS WASC-08:...

Новые уязвимости в Cetera eCommerce

Здравствуйте 3APA3A! Сообщаю вам о найденных мною новых Cross-Site Scripting и SQL DB Structure Extraction уязвимостях в Cetera eCommerce. XSS WASC-08: http://site/cms/templates/banner.php?bannerId=3Cscript3Ealertdocument.cookie3C/script3E SQL DB Structure Extraction WASC-13:...

New vulnerabilities in Cetera eCommerce

Здравствуйте 3APA3A! Сообщаю вам о найденных мною Cross-Site Scripting, SQL Injection и SQL DB Structure Extraction уязвимостях в Cetera eCommerce. XSS: http://site/cms/templates/search.php?q=111&sobject=223E3Cscript3Ealertdocument.cookie3C/script3E...

Cetera eCommerce 14.0 Cross Site Scripting / SQL Injection

============================================================= I want to warn you about security vulnerabilities in Cetera eCommerce. Which I disclosed already in December 2009 SecurityVulns ID: 10489. ----------------------------- Advisory: Vulnerabilities in Cetera eCommerce...

Vulnerabilities в W-Agora

Здравствуйте 3APA3A! Сообщаю вам о найденных мною 22.11.2006 уязвимостях в W-Agora 4.1.5 = 4.1.5. Это Cross-Site Scripting, SQL DB Structure Extraction та Full path disclosure уязвимости. Уязвимости в скрипте search.php3. XSS:...

phpquiz.txt

phpQuiz sensitive file install.php without authentification + Files containing interesting info passwords for sql db By : sn0oPy Risk : verry high Site : http://phpquiz.com/ Dork : intitle:"phpQuiz" | " Développé par PhpQuiz v.1.0 " | "© PhpQuiz" | inurl:"PhpQuiz" exploit :...