254 matches found
MyBB Downloads 2.0.3 - SQL Injection
Exploit Title: MyBB Downloads 2.0.3 - SQL Injection Date: 28-10-2018 Exploit Author: Lucian Ioan Nitescu Contact: https://twitter.com/LucianNitescu Webiste: https://nitesculucian.github.io Vendor Homepage: https://github.com/vintagedaddyo/MyBBPlugin-Downloads Software Link:...
MyBB Downloads 2.0.3 - SQL Injection
MyBB Downloads 2.0.3 - SQL Injection Exploit Title: MyBB Downloads 2.0.3 - SQL Injection Date: 28-10-2018 Exploit Author: Lucian Ioan Nitescu Contact: https://twitter.com/LucianNitescu Webiste: https://nitesculucian.github.io Vendor Homepage: https://github.com/vintagedaddyo/MyBBPlugin-Downloads...
MyBB Downloads 2.0.3 SQL Injection
Exploit Title: MyBB Downloads 2.0.3 - SQL Injection Date: 28-10-2018 Exploit Author: Lucian Ioan Nitescu Contact: https://twitter.com/LucianNitescu Webiste: https://nitesculucian.github.io Vendor Homepage: https://github.com/vintagedaddyo/MyBBPlugin-Downloads Software Link:...
Security Bulletin: ClearQuest SQL Error Message Attack Vulnerability (CVE-2012-5765)
Summary IBM Rational ClearQuest Web client contains SQL Error Message Attack vulnerability. Vulnerability Details | Subscribe to My Notifications to be notified of important product support alerts like this. Follow this link for more information requires login with your IBM ID ---|--- CVE ID:...
CVE-2015-5959
Froxlor before 0.9.33.2 with the default configuration/setup might allow remote attackers to obtain the database password by reading /logs/sql-error.log...
"The specified schema name \"dbo\" either does not exist" error when upgrading
Unable to upgrade XenMobile Server from 10.3.5 to 10.5. The specified schema name "dbo" either does not exist or you do not have permission to use it.\nSQL state:42000\nSQL error code:2760"'...
MS15-086: Security update for Update Rollup 7 for System Center 2012 R2 Operations Manager: August 11, 2015
MS15-086: Security update for Update Rollup 7 for System Center 2012 R2 Operations Manager: August 11, 2015 Introduction This article describes the issues that are fixed in Update Rollup 7 for Microsoft System Center 2012 R2 Operations Manager. Additionally, this article contains the installation...
Issues that are fixed in System Center 2012 Virtual Machine Manager SP1 Update Rollup 5
Issues that are fixed in System Center 2012 Virtual Machine Manager SP1 Update Rollup 5 Introduction This article describes the issues that are fixed in Update Rollup 5 for Microsoft System Center 2012 Virtual Machine Manager Service Pack 1 SP1. Additionally, this article contains the installatio...
Joomla 3.4.3 version SQL injection vulnerability analysis-vulnerability warning-the black bar safety net
0x00 vulnerability analysis Vulnerability trigger code is located at:/administrator/components/comcontenthistory/models/history.php, the getListQueryfunction: ! 4cf1a8d2985c5601fbdeb7a9e4a09234077751bf Through the SQL and the error message, you can know that our injected payload is inserted into...
Froxlor 0.9.33.1 MySQL Login Disclosure Vulnerability
Froxlor server management panel versions 0.9.33.1 and below suffer from a MySQL login information disclosure vulnerability. ------------------------------------------------------------------------------------------ Exploit Title: Froxlor Server Management Panel - MySQL Login Information Disclosur...
Froxlor Server Management Panel 0.9.33.1 - MySQL Login Information Disclosure
Exploit for php platform in category web applications ------------------------------------------------------------------------------------------ Exploit Title: Froxlor Server Management Panel - MySQL Login Information Disclosure Date: Jul 30 2015 Exploit Author: Dustin Dörr Vendor Homepage:...
Froxlor Server Management Panel 0.9.33.1 - MySQL Login Information Disclosure
Froxlor Server Management Panel 0.9.33.1 - MySQL Login Information Disclosure ------------------------------------------------------------------------------------------ Exploit Title: Froxlor Server Management Panel - MySQL Login Information Disclosure Date: Jul 30 2015 Exploit Author: Dustin Dör...
Froxlor 0.9.33.1 MySQL Login Disclosure
------------------------------------------------------------------------------------------ Exploit Title: Froxlor Server Management Panel - MySQL Login Information Disclosure Date: Jul 30 2015 Exploit Author: Dustin Dörr Vendor Homepage: https://www.froxlor.org/ Version:...
Froxlor Server Management Panel 0.9.33.1 - MySQL Login Information Disclosure
------------------------------------------------------------------------------------------ Exploit Title: Froxlor Server Management Panel - MySQL Login Information Disclosure Date: Jul 30 2015 Exploit Author: Dustin Dörr Vendor Homepage: https://www.froxlor.org/ Version:...
White Way Systems SQL Injection
========================================================= + Title :- White Way Systems CMS - SQL Injection Vulnerability + Date :- 19 - June - 2015 + Vendor Homepage: :- http://whitewaysystems.co.za/ + Version :- All Versions + Tested on :- Nginx/1.4.5, PHP/5.2.17, Linux - Windows + Category :-...
WordPress Store Locator 3.33.1 - SQL Injection
Using a combination of GET fields, it is possible to perform a SQL Injection attack using the ‘sl-xml.php’ script. This injection is performed on the LIMIT of the SQL query, however retrieving data via this vulnerability is very easy, due to the outputting of the resulting SQL error by the script...
DigitalSellz: Verbose SQL error messages
When an SQL error occurs, a verbose error is displayed showing the full query and the path of the include file on the server. This is valuable information, revealing the structure of the database and the layout of files on the server...
MangosWeb SQL Injection Vulnerability
No description provided by source. EXPLOIT TITLE: MangosWeb SQL Vulnerability DATE: 1/7/2012 BY Hood3dRob1n AFFECTED PRODUCTS: MangosWeb Enhanced Version 3.0.3 SW LINK: http://code.google.com/p/mwenhanced/ CATEGORY: WebApp 0day DORK: intext:MangosWeb ENhanced Version 3.0.3 @2009-2011, KeysWow Dev...
Macromedia ColdFusion MX 6.0 SQL Error Message Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8840/info It has been reported that Macromedia ColdFusion MX may be prone to a cross-site scripting vulnerability due to improper handling of error messages generated by the underlying database. This problem may be...
ViArt Shop <= 3.5 (category_id) Remote SQL Injection Vulnerability
No description provided by source. GulfTech Security Research July 28, 2008 Vendor : ViArt, Ltd URL : http://www.viart.com/ Version : ViArt Shop = 3.5 Risk : SQL Injection Description: ViArt Shop is a full featured online ecommerce solution written in php. There is a high risk SQL Injection in...