WordPress Ajax Store Locator 1.2 SQL Injection

Exploit Title : Wordpress Ajax Store Locator = 5.0.12 AND time-based blind SELECT' injectable for the remaining tests, do you want to include all tests for 'MySQL' extending pr...

WordPress Plugin Ajax Store Locator 1.2 - SQL Injection

Exploit Title : Wordpress Ajax Store Locator = 5.0.12 AND time-based blind SELECT' injectable for the remaining tests, do you want to include all tests for 'MySQL' extending...

WordPress Ajax Store Locator 1.2 SQL Injection Vulnerability

WordPress Ajax Store Locator versions 1.2 and below suffer from a remote SQL injection vulnerability. Exploit Title : Wordpress Ajax Store Locator = 5.0.12 AND time-based blind SE...

嘉挚科技短信通sql注入

简要描述： rt 详细说明： http://sms.finereason.com/ 首先注册一个用户，登陆。然后在 http://sms.finereason.com/member/ComSms.asp?tid=1 存在在注入。用burp抓包，然后保存。 GET /member/ComSms.asp?tid=1 HTTP/1.1 Host: sms.finereason.com Proxy-Connection: keep-alive Accept:...

MallMold 2.5 app/action/newsletterAction.php SQL注入漏洞

/app/action/newsletterAction.phppublic function statistics //create a image header'Content-type:image/gif'; echo base64decode'R0lGODlhAQABAIAAAAAAAAAAACH5BAEAAAAALAAAAAABAAEAAAICRAEAOw=='; $sn = trim$GET'sn'; $email = trim$GET'ue'; $this-model'newsletter'-statistics$sn, $email;...

Fiyo CMS 2.0.1.8 - Multiple Vulnerabilities

Exploit for php platform in category web applications Exploit Title: FiyoCMS Multiple Vulnerabilities Date: 29 March 2015 Exploit Author: Mahendra Vendor Homepage: www.fiyo.org Software Link: http://sourceforge.net/projects/fiyo-cms/ Version: 2.0.1.8, other version might be vulnerable. Tested :...

Fiyo CMS 2.0.1.8 - Multiple Vulnerabilities

Fiyo CMS 2.0.1.8 - Multiple Vulnerabilities Exploit Title: FiyoCMS Multiple Vulnerabilities Date: 29 March 2015 Exploit Author: Mahendra Vendor Homepage: www.fiyo.org Software Link: http://sourceforge.net/projects/fiyo-cms/ Version: 2.0.1.8, other version might be vulnerable. Tested : Kali Linux...

Joomla! Component com_simplephotogallery 1.0 - SQL Injection

====================================================================================== Title : Joomla Simple Photo Gallery - SQL injection Author : Mr.Moneer Dork Google 1: inurl:/comsimplephotogallery site:com Dork Google 2: inurl:/comsimplephotogallery site:org Dork Google 3:...

WordPress SEO by Yoast 1.7.3.3 SQL Injection Vulnerability

WordPress SEO by Yoast plugin versions 1.7.3.3 and below suffer from a remote blind SQL injection vulnerability. Title: WordPress SEO by Yoast = 1.7.3.3 - Blind SQL Injection Version/s Tested: 1.7.3.3 Patched Version: 1.7.4 CVSSv2 Base Score: 9 AV:N/AC:L/Au:S/C:C/I:C/A:C/E:POC/RL:OF/RC:C CVSSv2...

WordPress SEO By Yoast 1.7.3.3 SQL Injection

Title: WordPress SEO by Yoast = 1.7.3.3 - Blind SQL Injection Version/s Tested: 1.7.3.3 Patched Version: 1.7.4 CVSSv2 Base Score: 9 AV:N/AC:L/Au:S/C:C/I:C/A:C/E:POC/RL:OF/RC:C CVSSv2 Temporal Score: 7 AV:N/AC:L/Au:S/C:C/I:C/A:C/E:POC/RL:OF/RC:C WPVULNDB: https://wpvulndb.com/vulnerabilities/7841...

LebiShop系统sql注入四（四处注入）

简要描述： LebiShop商城系统最新版SQL注入 四处 demo站点测试成功 详细说明： 注入一 二 主要漏洞代码一样 http://demo.lebi.cn/onlinepay/95epay/PayNotify.aspx http://demo.lebi.cn/onlinepay/95epay/PayResult.aspx 共同源码如下 protected void PageLoadobject sender, EventArgs e this.MerNo = HttpContext.Current.Request.Params"MerNo".ToString; this.Bill...

某政务系统一处POST注入漏洞

简要描述： RT 详细说明： 案例如下: http://wssp.jiangxi.gov.cn:8008/outportal/licenseManage/newLicenseManage.jsp http://117.40.187.175:8008/outportal/licenseManage/newLicenseManage.jsp http://wssp.jdz.gov.cn/outportal/licenseManage/newLicenseManage.jsp...

eTouch SamePage 4.4.0.0.239 - Multiple Vulnerabilities

eTouch SamePage v4.4.0.0.239 multiple vulnerabilities http://www.etouch.net/products/samepage/index.html Enterprise trial was installed in an Ubuntu virtual machine with MySQL. By default, the listening port is 18080. Required on the Ubuntu machine to install the SamePage binary successfully: sud...

eTouch Samepage 4.4.0.0.239 SQL Injection / File Read

Couldn’t find anyone to contact regarding this, so dropping it. eTouch SamePage v4.4.0.0.239 multiple vulnerabilities http://www.etouch.net/products/samepage/index.html Enterprise trial was installed in an Ubuntu virtual machine with MySQL. By default, the listening port is 18080. Required on the...

Dirs3arch v0.3.0 - HTTP(S) Directory/File Brute Forcer

dirs3arch is a simple command line tool designed to brute force hidden directories and files in websites. It's written in python3 3 and all thirdparty libraries are included. Operating Systems supported Windows XP/7/8 GNU/Linux MacOSX Features Multithreaded Keep alive connections Support for...

用友NC综合办公系统前台再次SQL注入

简要描述： RT 详细说明： 用友NC综合办公系统SQL注入漏洞，可同时影响多个办公系统HR资源管理系统、UFO报表系统等的数据库 注入链接：/epp/detail/publishinfomore.jsp?pkinfotype= 注入参数：pkinfotype 必须先访问/epp/index.jsp后产生cookie才能进行SQL注入 漏洞证明： 测试案例： http://nc.xhlbdc.com 访问首页产生cookie： http://nc.xhlbdc.com/epp/index.jsp...

Iconium Phoenix Theme - SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Iconium Phoenix Theme - SQL İnjection vulnerability Google Dork: intext:Powered by İconium Mühendislik Date: 03.02.2015 Exploit Author: Herdem Vendor Homepage: http://iconiummuhendislik.com Software Link:...

Iconium Ekonomik Theme - Multiple Vulnerabilities

Exploit for php platform in category web applications Exploit Title: Iconium Ekonomik Theme - Multiple Vulnerabilites Google Dork: intext:Powered by İconium Mühendislik Date: 03.02.2015 Exploit Author: Herdem Vendor Homepage: http://iconiummuhendislik.com Software Link:...

ThinkPHP 3.0~3.2 SQL injection vulnerability in detail and use-vulnerability and early warning-the black bar safety net

! ThinkPHP 3.03.2 a target=SQL injection vulnerability in detail with the use of" style="border: 0px;" onload="return imgzoomthis,5 5 0;" onclick="javascript:window. openthis. src;" style="cursor:pointer;"/ 0x00 background thinkphp recent vulnerability frequency, this exploit belongs to the...

LebiShop商城系统最新版SQL注入五

简要描述： LebiShop商城系统最新版SQL注入五 详细说明： LebiShop商城系统最新版SQL注入一处 文件Shop.supplier.Ajax.Ajaxproduct // Shop.supplier.Ajax.Ajaxproduct public void ProductBatchPriceUpdate if !base.Power"supplierproductbatchprice", "批量调价" base.AjaxNoPower; return; string step = RequestTool.RequestString"step"; string dateFro...