KPPW 2.2 /control/ajax/ajax_shop.php SQL注入漏洞

No description provided by source...

WEBalbum 2.0 SQL Injection Vulnerability

Attacker can inject some malicious code http://127.0.0.1/webalbum/photo.php?id=SQL ======================== Demos : http://www.shutterpoint.co.uk/webalbum/photo.php?id=2869' www.escuelacardiel.com/galeria/photo.php?id=64' http://inco.nu/webalbum/photo.php?id=646'...

PHP weby directory software 1.2 - Multiple Vulnerabilities

=========================================== Vulnerable Software: PHP Weby directory software version 1.2 Vendor: http://phpweby.com Download: htp://phpweby.com/down/phpwebydirectory.zip Vuln: Blind SQL injection && CSRF Dork: intext:Powered by PHP weby software...

myBB KingChat Plugin SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: KingChat MyBB plugin SQL Injection 0day Google Dork: inurl:"kingchat.php" Date: 13.10.2012 Exploit Author: RedHat NullSec Software Link: http://mods.mybb.com/view/kingchat Tested on: Windows & Linux. Vulnerable code : query"SELE...

Viral Membership System Multiple Vulnerabilities

Exploit for php platform in category web applications 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 +...

jaow 2.4.5 add_ons.php SQL注入漏洞

No description provided by source...

Joomla! Component com_videogallery - Local File Inclusion SQL Injection

Joomla! Component comvideogallery - Local File Inclusion SQL Injection source: https://www.securityfocus.com/bid/53237/info The Video Gallery component for Joomla! is prone to local file-include and SQL-injection vulnerabilities because it fails to properly sanitize user-supplied input. An attack...

Discuz X2.0 source-module-forum_misc.php sql注入漏洞

No description provided by source...

Lebanese Yellow Pages website database Compromised

Lebanese Yellow Pages database Compromised Lebanese Yellow Pages website https://www.yellowpages.com.lb/ database compromised by Hacking Group known as Mad HackerZ Team. Hackers manage to hack database of site and leaked it on internet. Leaked database include the usernames, Password hashes and...

Pre Studio Business Cards Designer SQL Injection

=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Exploit Title: Pre Studio Business Cards Designer SQL Injection Vulnerability =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Author: drzig Date: 20-10-2011 Software Link: http://www.preprojects.com/card.asp proof o...

jakCMS 2.01 RC1 Blind SQL Injection

!/usr/bin/python jakCMS = v2.01 RC1 Blind SQL Injection Exploit Understanding: The parameters 'JAKCOOKIENAME' and 'JAKCOOKIEPASS' are parsed via cookies to the application and are unchecked for malicious characters. The contents of these variables are directly inserted into an SQL statement,...

ibPhotohost 1.1.2 - SQL Injection

Title: ibPhotohost 1.1.2 SQL Injection + Author: fred777 - fred777.5x.to + Link: http://mods.invisionize.com/index.php/f/7609 + Vuln: index.php?autocom=photohost&CODE=04&img=SQL Injection + Greetzz to: back2hack,free-hack,hackbase,c-c + Contact: [email protected] + -- Vuln Code -- $id...

BlueCMS getip()injection vulnerability-vulnerability warning-the black bar safety net

, Description,BlueCMS is a place to classified information portal dedicated CMS system. Procedures in using the getipfunction to get the Client ip when not strictly filter the data, resulting in sql injection vulnerability. Second, the analysis //comment.php $sql = "INSERT INTO ". table'comment'....

A-Blog 2.0 - '/sources/search.php' SQL Injection

!/usr/bin/python Exploit Title: A-Blog v2.0 sources/search.php SQL Injection Exploit Date : 05 September 2010 Author : Ptrace Security Gianni Gnesa gnix Contact : researchatptrace-securitydotcom Software Link: http://sourceforge.net/projects/a-blog/ Version : 2.0 Tested on : EasyPHP 5.3.1.0 for...

CBS Solutions Remote Sql Injection Exploit

Exploit for php platform in category web applications ========================================== CBS Solutions Remote Sql Injection Exploit ========================================== Title : CBS Solutions exploit script:CBS Solutions Date : 28/07/2010 Author : Storm - North Strom Team My Home:...

Joomla! Component QuickFAQ 1.0.3 - Blind SQL Injection

----------------------------------------------------------------------------------------- Joomla Component comquickfaq BSQL-i Vulnerability ----------------------------------------------------------------------------------------- +Title Joomla Component comquickfaq BSQL-i Vulnerability +Author...

PHPaaCMS - 'list.php?id' SQL Injection

phpaaCms list.php?id SQL Injection Vulnerability Author : CoBRa21 Script Home : http://phpaa.cn Dork : null Sql Injection: http://localhost/path/list.php?id=161' SQL İnj...

Joomla! Component com_seyret - Blind SQL Injection

1 1 0 I'm RoAdKiLlEr member from Inj3ct0r Team 1 1 0 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1 +Title :Joomla Component comseyret Blind SQL Injection Exploit +Author :RoAdKiLlEr +Contact :RoAdKiLlEratKhg-CrewdotWs +Tested on :Win Xp Sp 2/3...

webERP v3.11.4 Multiple Vulnerabilities

Exploit for php platform in category web applications ======================================= webERP v3.11.4 Multiple Vulnerabilities ======================================= Title: webERP Multiple Vulnerabilities Author: ADEO Security Published: 30/06/2010 Version: 3.11.4 Possible all versions...

IPB <= 2.3.5 Improved SQL Injection Exploit

Exploit for php platform in category web applications =========================================== IPB Attention!\n"; echo "br...