1352 matches found
eXV2 Module eblog 1.2 (blog_id) Remote SQL Injection Vulnerability
Exploit for unknown platform in category web applications ================================================================== eXV2 Module eblog 1.2 blogid Remote SQL Injection Vulnerability ================================================================== Powered by eXV2 eblog 1.2 SQL Injection...
eXV2 Module MyAnnonces (lid) Remote SQL Injection Vulnerability
Exploit for unknown platform in category web applications =============================================================== eXV2 Module MyAnnonces lid Remote SQL Injection Vulnerability =============================================================== Powered by eXV2 MyAnnonces 1.8 SQL Injection DORK...
exv2myannonces-sql.txt
Powered by eXV2 MyAnnonces 1.8 SQL Injection AUTHOR : S@BUN HOME : http://www.milw0rm.com/author/1334 MAİL : [email protected] DORK 1 : eXV2 MyAnnonces EXPLOIT :...
exv2viso-sql.txt
Powered by eXV2 Viso 2.03 SQL Injection AUTHOR : S@BUN HOME : http://www.milw0rm.com/author/1334 MAİL : [email protected] DORKS 1 : allinurl :"modules/viso" EXPLOIT 1 :...
Unfixed XSS vulnerability at www.killamtrusts.ca
Security researcher CCC, has submitted on 22/11/2007 a cross-site-scripting XSS vulnerability affecting www.killamtrusts.ca, which at the time of submission ranked 0 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 26/11/2007. It is currently...
Unfixed XSS vulnerability at www.lalogotheque.com
Security researcher unkn0wn @ toxcrew.com, has submitted on 26/10/2007 a cross-site-scripting XSS vulnerability affecting www.lalogotheque.com, which at the time of submission ranked 77076 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on...
Unfixed Redirect vulnerability at www.pkkgercegi.net
Security researcher st@rext, has submitted on 28/09/2007 a Redirect vulnerability affecting www.pkkgercegi.net, which at the time of submission ranked 561691 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 04/10/2007. It is currently unfixed. I...
Article Directory - 'index.php' Remote File Inclusion
dork:inurl:index.php%"Submit%Articles"%"Member%Login"%"Top%Authors" dork:inurl:index.php?pagedb=rss expl:index.php?page=shell? original post:http://darkcode.ath.cx/f0rum/ind3x.php?action=vthread&forum=12&topic=114 author:[email protected] greetz:d3hydr8, whoami pace milw0rm.com 2007-07-24...
Unfixed XSS vulnerability at pg.sitebase.net
Security researcher Darkster, has submitted on 07/08/2007 a cross-site-scripting XSS vulnerability affecting pg.sitebase.net, which at the time of submission ranked 102131 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 07/08/2007. It is...
XOOPS Module icontent 1.0 Remote File Inclusion Exploit
No description provided by source. html head meta http-equiv="Content-Type" content="text/html; charset=windows-1254" titleXOOPS Module icontent v.1.0 Remote File Inclusion Exploit/title script language="JavaScript"...
Buffer overflow
Buffer overflow in the receive function in submit/submitcommon.c in the submit daemon in DOMjudge before 2.0.0RC1 allows remote attackers to cause a denial of service or have other unspecified impact. NOTE: some of these details are obtained from third party information...
CVE-2007-2977
Buffer overflow in the receive function in submit/submitcommon.c in the submit daemon in DOMjudge before 2.0.0RC1 allows remote attackers to cause a denial of service or have other unspecified impact. NOTE: some of these details are obtained from third party information...
CVE-2007-2977
CVE-2007-2977 affects the DOMjudge submit daemon: the receive function in submit/submitcommon.c has a buffer overflow before version 2.0.0RC1. This condition allows remote attackers to cause a denial of service and potentially other unspecified impact. The description notes that some details are ...
CVE-2007-2977
Buffer overflow in the receive function in submit/submitcommon.c in the submit daemon in DOMjudge before 2.0.0RC1 allows remote attackers to cause a denial of service or have other unspecified impact. NOTE: some of these details are obtained from third party information...
TutorialCMS <= 1.01 Authentication Bypass Vulnerability
No description provided by source. TutorialCMS = 1.01 Authentication Bypass Discovered by: Silentz Payload: Authentication Bypass Website: http://www.w4ck1ng.com Vulnerability: Variables $loggedIn & $activated are not predefined. Vulnerable Files: login.php headerLinks.php submit1.php myFav.php...
S-Gastebuch <= 1.5.3 (gb_pfad) Remote File Include Exploit
No description provided by source. S-G鋝tebuch //'=============================================================================================== //'Script Name: S-G鋝tebuch //'Dork Ex. : http://www.google.com.tr/search?q=VS-G%C3%A4stebuch+V.+%C2%A9&hl=tr&start=10&sa=N //'S.Page :...
Unfixed Redirect vulnerability at www.ngsoft.it
Security researcher Renoized, has submitted on 01/10/2007 a Redirect vulnerability affecting www.ngsoft.it, which at the time of submission ranked 0 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 05/10/2007. It is currently unfixed. If you...
AllMyGuests <= 0.3.0 (AMG_serverpath) Remote Inclusion Vulnerabilities
No description provided by source. AllMyGuests 3.0 Remote File Inclusion Vulnerability Software: AllMyGuests Version: 3.0 Download: http://download.php-resource.net/AllMyGuests/AllMyGuests0.3.0.zip Found By: beks Bug In: /include/submit.inc.php /admin/index.php /include/cmsubmit.inc.php...
CVE-2006-6452
Multiple cross-site scripting XSS vulnerabilities in the MyArticles module before 0.6 beta 1, for RunCMS, allow remote attackers to inject arbitrary web script or HTML via unspecified parameters to 1 topics.php, 2 submit.php, and 3 class/calendar.class.php...
E Annu 1.0 Login Bypass SQL Injection Exploit
No description provided by source. html head meta http-equiv="Content-Type" content="text/html; charset=windows-1254" titleE Annu 1.0 Login Bypass SQL Injection Exploit/title script language="JavaScript"...