CVE-2016-8582

A vulnerability exists in gauge.php of AlienVault OSSIM and USM before 5.3.2 that allows an attacker to execute an arbitrary SQL query and retrieve database information or read local system files via MySQL's LOADFILE...

Design/Logic Flaw

A vulnerability exists in gauge.php of AlienVault OSSIM and USM before 5.3.2 that allows an attacker to execute an arbitrary SQL query and retrieve database information or read local system files via MySQL's LOADFILE...

CVE-2016-8582

A vulnerability exists in gauge.php of AlienVault OSSIM and USM before 5.3.2 that allows an attacker to execute an arbitrary SQL query and retrieve database information or read local system files via MySQL's LOADFILE...

Microsoft SQL Server 2012 11.0.x.x < 11.0.3460.0 Multiple Vulnerabilities (2977325)

Binary data 9704.prm...

Microsoft SQL Server 2014 12.0.x.x < 12.0.2381.0 Multiple Vulnerabilities (2977316)

Binary data 9705.prm...

Microsoft SQL Server 2008 10.00.x.x < 10.00.5869.00 Multiple Vulnerabilities (2984340)

Binary data 9702.prm...

Student Information System (SIS) 0.1 - Authentication Bypass

Student Information System SIS 0.1 - Authentication Bypass Exploit Title............... Student Information System SIS Auth Bypass Google Dork................. N/A Date........................ 14/10/2016 Exploit Author.............. lahilote Vendor Homepage...

Contrexx CMS egov Module 1.0.0 - SQL Injection

Contrexx CMS egov Module 1.0.0 - SQL Injection Exploit Title: Contrexx CMS:egov moudle SQL injection Google Dork: inurl:?section=egov Date: 12/9/2016 Exploit Author: hamidreza borghei Software Link: https://www.cloudrexx.com/de/index.php?section=downloads&cmd=7&category=8 Version: 1.0.0 Tested on...

Unsafe Query Generation Risk in Active Record

There is a vulnerability when Active Record is used in conjunction with JSON parameter parsing. This vulnerability is similar to CVE-2012-2660, CVE-2012-2694 and CVE-2013-0155. Impact ------ Due to the way Active Record interprets parameters in combination with the way that JSON parameters are...

Nextcloud: Bookmarks: Delete all existing bookmarks of a user

A logical bug in the bookmark app makes it possible to delete all the existing bookmarks of the user. Here are the steps to reproduce: - Create couple of valid bookmarks - Import a bookmark.html file that contains the line Bookmark. All the bookmarks of the user is replaced with blank url and...

WordPress Ultimate Membership Pro 3.3 Plugin - SQL Injection

Exploit for php platform in category web applications Vendor Homepage: http://wpindeed.com/ Software Link: http://codecanyon.net/item/ultimate-membership-pro-wordpress-plugin/12159253 Version: 3.3 Tested on: Debian 8, PHP 5.6.17-3 Type: Unauthenticated Blind SQLi, Unauthenticated Payment Bypass...

BigTree CMS 4.2.11 SQL Injection

ADVISORY INFORMATION ======================================== Title: BigTree CMS substr$page,1; else // It's an existing page $type = "EDIT"; $pending = false; $existingpage = BigTreeCMS::getPage$page; $existingpendingchange = sqlfetchsqlquery"SELECT id FROM bigtreependingchanges WHERE table =...

BigTree CMS 4.2.11 - SQL Injection

Exploit for php platform in category web applications 1. ADVISORY INFORMATION ======================================== Title: BigTree CMS substr$page,1; else // It's an existing page $type = "EDIT"; $pending = false; $existingpage = BigTreeCMS::getPage$page; $existingpendingchange =...

BigTree CMS 4.2.11 - SQL Injection

ADVISORY INFORMATION ======================================== Title: BigTree CMS substr$page,1; else // It's an existing page $type = "EDIT"; $pending = false; $existingpage = BigTreeCMS::getPage$page; $existingpendingchange = sqlfetchsqlquery"SELECT id FROM bigtreependingchanges WHERE table =...

phpMyAdmin 4.5.x < 4.5.5.1 Multiple Vulnerabilities (PMASA-2016-10, PMASA-2016-13)

Binary data 9355.prm...

miniMySQLAdmin 1.1.3 - Cross-Site Request Forgery (SQL Execution)

miniMySQLAdmin 1.1.3 - Cross-Site Request Forgery SQL Execution document.forms.csrfpoc.submit; select from user order by User asc limit 20 Host User % exploituser1 --...

miniMySQLAdmin 1.1.3 - Cross-Site Request Forgery (Execute SQL Query)

Exploit for php platform in category web applications document.forms.csrfpoc.submit; select from user order by User asc limit 20 Host User % exploituser1 -- 0day.today 2018-03-14...

miniMySQLAdmin 1.1.3 - Cross-Site Request Forgery (SQL Execution)

document.forms.csrfpoc.submit; select from user order by User asc limit 20 Host User % exploituser1 --...

miniMySQLAdmin 1.1.3 Cross Site Request Forgery

Exploit Title: miniMySQLAdmin 1.1.3 - CSRFExecute SQL Query Date: 2016-06-10 Exploit Author: HaHwul Exploit Author Blog: www.hahwul.com Vendor Homepage: http://xdsoft.net/minimysqladmin.html Software Link: https://github.com/xdan/miniMySQLAdmin/archive/master.zip Version: v1.1.3 Tested on: Debian...

LogicalDoc Document Managment System CE: source code security analysis report

Several vulnerabilities were discovered in LogicalDOC 'LogicalDoc Document Managment System CE' software: Утечка пользовательских данных между сессиями Использование XSL трансформации для исполнения произвольного кода Отсутствие верификации цифровой подписи исполняемых файлов, полученных из...