4 matches found
Sql injection
SQL injection vulnerability in newspopup.php in Taboada MacroNews 1.0 allows remote authenticated users to execute arbitrary SQL commands via the id parameter...
CVE-2014-10032
CVE-2014-10032 affects the Taboada MacroNews 1.0 software, specifically the web component news_popup.php. The vulnerability is an SQL injection via the id parameter that can be exploited by remote authenticated users to execute arbitrary SQL commands. The affected product appears in public record...
CVE-2014-10032
SQL injection vulnerability in newspopup.php in Taboada MacroNews 1.0 allows remote authenticated users to execute arbitrary SQL commands via the id parameter...
Taboada Macronews 1.0 - SQL Injection
?php / Exploit Title: Taboada Macronews = 1.0 SQLi Exploit Date: 03rd January 2013 Exploit Author: WhiteCollarGroup Software Link: http://www.scriptbrasil.com.br/download/codigo/7144/ Version: 1.0 Google Dork: intext:"Powered by: joaotaboada.com" Usage: php filename.php / function puts$str echo...