iGaming CMS 1.5 - Cross-Site Request Forgery

NeX of the HackTalk team has found a CSRF Vulnerability in iGaming CMS v 1.5 that allows an attacker to make new administrative account, and run SQL queries. Pentest Information: ============ NeX has discovered a Cross Site Request ForgeryCSRF vulnerability in iGaming CMS 1.5 Details ============...

iGaming CMS v1.5 CSRF Vulnerability

No description provided by source. NeX of the HackTalk team has found a CSRF Vulnerability in iGaming CMS v 1.5 that allows an attacker to make new administrative account, and run SQL queries. Pentest Information: ============ NeX has discovered a Cross Site Request ForgeryCSRF vulnerability in...

Flashlight Free Edition <= 1.0 SQLi and Directory Traversal Vulnerability

Flashlight Free Edition is prone to SQL injection SQLi and directory traversal vulnerabilities. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Invision Power Board 2.3.6/3.0.4 - Local File Inclusion / SQL Injection

============================================= - Severity: Moderately High ============================================= I. VULNERABILITY ------------------------- Invision Power Board = 3.0.4 Local PHP File Inclusion and SQL Injection Invision Power Board = 2.3.6 SQL Injection II. BACKGROUND...

Invision Power Board &lt;= 3.0.4 LFI and &lt;=3.0.4 and &lt;=2.3.6 SQL Injection

No description provided by source. ============================================= - Severity: Moderately High ============================================= I. VULNERABILITY ------------------------- Invision Power Board = 3.0.4 Local PHP File Inclusion and SQL Injection Invision Power Board = 2.3....

Oracle Database Server ctxsys.driload Access Validation (CVE-2004-0637)

Stored procedures are a powerful feature of an Oracle database server. They are essentially a set of SQL statements that are stored server-side, which are called by name and optionally passed a set of parameters. Stored procedures provide improved performance, because only data specific to the...

cP Creator 'tickets' Cookie SQL Injection Vulnerability

cP Creator is prone to an SQL injection SQLi vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

FreeBSD : mybb -- multiple vulnerabilities (beb6f4a8-add5-11de-8b55-0030843d3802)

mybb team reports : Input passed via avatar extensions is not properly sanitised before being used in SQL queries. This can be exploited to manipulate SQL queries by uploading specially named avatars. The script allows to sign up with usernames containing zero width space characters, which can be...

mybb -- multiple vulnerabilities

mybb team reports: Input passed via avatar extensions is not properly sanitised before being used in SQL queries. This can be exploited to manipulate SQL queries by uploading specially named avatars. The script allows to sign up with usernames containing zero width space characters, which can be...

Snitz Forums 2000 <= 3.4.07 register.asp 'Email' Parameter SQL Injection

The remote version of Snitz Forums 2000 is vulnerable to a SQL injection attack. The domain name of the email address passed to the 'Email' parameter of 'register.asp' is not sanitized before being used in a SQL query. A remote attacker could exploit this to execute arbitrary SQL queries. Note th...

phpMyAdmin Installation Not Password Protected

The version of phpMyAdmin installed on the remote web server allows unrestricted, unauthenticated access. This is likely due to setting the 'authtype' to 'config' and storing login credentials in the configuration file. A remote attacker could exploit this to execute arbitrary SQL queries, delete...

NullLogic Groupware Multiple Vulnerabilities

The host is installed with NullLogic Groupware and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbnulllogicgroupwaremultvulnwin.nasl 7573 2017-10-26 09:18:50Z cfischer $ NullLogic Groupware Multiple Vulnerabilities Authors: Nikita MR Copyright: Copyright c 2009 Greenbone...

NullLogic Groupware <= 1.2.7 Multiple Vulnerabilities

NullLogic Groupware is prone to multiple vulnerabilities. Copyright C 2009 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you...

phpWebThings 1.5.2 MD5 Hash Retrieval

!/usr/bin/perl phpWebThings = 1.5.2 MD5 Hash Retrieve / File Disclosure Remote Exploit by staker ------------------------------ mail: stakerathotmaildotit url: http://phpwebthings.nl ------------------------------ NOTE: 1. it works regardless of php.ini settings 2. wtconfig.php contains mysql log...

phpWebThings 1.5.2 - MD5 Hash RetrieveFile Disclosure

phpWebThings 1.5.2 - MD5 Hash RetrieveFile Disclosure !/usr/bin/perl phpWebThings = 1.5.2 MD5 Hash Retrieve / File Disclosure Remote Exploit by staker ------------------------------ mail: stakerathotmaildotit url: http://phpwebthings.nl ------------------------------ NOTE: 1. it works regardless ...

Oracle Database password weakness

Added: 05/12/2009 Background Oracle Database is a relational database solution available for multiple platforms. Problem The Oracle Database service has accounts with default or easily guessed passwords, which could allow an attacker to make unauthorized SQL queries. Resolution Set a strong...

Oracle Database password weakness

Added: 05/12/2009 Background Oracle Database is a relational database solution available for multiple platforms. Problem The Oracle Database service has accounts with default or easily guessed passwords, which could allow an attacker to make unauthorized SQL queries. Resolution Set a strong...

SA-CONTRIB-2009-023 - News Page - SQL injection

The News Page module provides a node content type which displays feed items from an aggregator category, filtered by keywords entered into the 'Include Words' field of the node. Unfortunately the News Page module uses keywords directly in SQL queries without being sanitized, allowing SQL injectio...

Community CMS 'index.php' and 'view.php' SQL Injection Vulnerabilities

Community CMS is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in SQL queries. Exploiting these issues could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in...

AdaptBB 1.0 - &#039;topic_id&#039; SQL Injection / Credentials Disclosure

!/usr/bin/perl -w AdaptBB 1.0 topicid SQL Injection / Credentials Disclosure Exploit Description ----------- AdaptBB contains a flaw that allows an attacker to carry out an SQL injection attack. The issue is due to the inc/bb/topic.php script not properly sanitizing user-supplied input to the...