RUPPEINVOICE 1.0 SQL Injection

Title: RUPPEINVOICE-1.0 Multiple-SQLi Author: nu11secur1ty Date: 03/09/2024 Vendor: https://www.mayurik.com/ Software: https://www.sourcecodester.com/php/14831/billing-system-project-php-source-code-free-download.html Reference: https://portswigger.net/web-security/sql-injection Description: The...

ChiKoi v1.0 - SQL Injection

Title: ChiKoi-1.0 SQLi Author: nu11secur1ty Date: 01.12.2023 Vendor: https://chikoiquan.tanhongit.com/ Software: https://github.com/tanhongit/new-mvc-shop/releases/tag/v1.0 Reference: https://github.com/nu11secur1ty/CVE-nu11secur1ty/tree/main/vendors/tanhongit/2023/ChiKoi Description: The...

Senayan Library Management System 9.1.1 SQL Injection Vulnerability

Title: Senayan Library Management System v9.1.1 a.k.a SLIMS 9 SQLi Author: nu11secur1ty Vendor: https://slims.web.id/web/ Software: https://github.com/slims/slims9bulian/releases/download/v9.1.1/slims9bulian-9.1.1.zip Reference:...

Computer And Mobile Repair Shop Management 1.0 SQL Injection Vulnerability

Title: Computer and Mobile Repair Shop Management-1.0 SQL - Injections Author: nu11secur1ty Vendor: https://www.sourcecodester.com/users/tips23 Software: https://www.sourcecodester.com/php/15108/computer-and-mobile-repair-shop-management-system-using-phpoop-free-source-code.html Description: The...

MySQL 5.1 < 5.1.41 Multiple Vulnerabilities

The version of MySQL 5.1 installed on the remote host is earlier than 5.1.41 and is, therefore, potentially affected by the following vulnerabilities : - An incomplete fix was provided in 5.1.24 for CVE-2008-2079, a symlink-related privilege escalation issue. Bug 39277 - MySQL clients linked...

MySQL 6.0.9 - SELECT Statement WHERE Clause Sub-query Denial of Service

MySQL 6.0.9 - SELECT Statement WHERE Clause Sub-query Denial of Service source: https://www.securityfocus.com/bid/37297/info MySQL is prone to multiple remote denial-of-service vulnerabilities because it fails to handle certain SQL expressions. An attacker can exploit these issues to crash the...

MySQL 6.0.9 - SELECT Statement WHERE Clause Sub-query Denial of Service

source: https://www.securityfocus.com/bid/37297/info MySQL is prone to multiple remote denial-of-service vulnerabilities because it fails to handle certain SQL expressions. An attacker can exploit these issues to crash the application, denying access to legitimate users. Versions prior to MySQL...

mambo4521.php.txt

!/usr/bin/php -q Mambo 4.5.2.1 + mysql 4.1 fetch password hash by pokleyzz fetch password hash by pokleyzz content rating using sub query to select from mosusers Requirement: PHP 4.x with curl extension Description: The problem occur because $userrating variable is not properly sanitize when for...