1026 matches found
CVE-2011-4672
Multiple SQL injection vulnerabilities in Valid tiny-erp 1.6 and earlier allow remote attackers to execute arbitrary SQL commands via the SearchField parameter in a search action to 1 partnerlist.php, 2 proioncategorylist.php, 3 rantevoulist.php, 4 syncategorylist.php, 5 synallasomenoslist.php, 6...
CVE-2011-4672
CVE-2011-4672 affects Valid tiny-erp
Valid Tiny-Erp 1.6 SQL Injection
------------------------------------------------------------------------ Valid tiny-erp = 1.6 SQL Injection Vulnerability ------------------------------------------------------------------------ author............: muuratsalo Revshell.com contact...........: muuratsaloatgmaildotcom...
Valid tiny-erp 1.6 - SQL Injection
------------------------------------------------------------------------ Valid tiny-erp = 1.6 SQL Injection Vulnerability ------------------------------------------------------------------------ author............: muuratsalo Revshell.com contact...........: muuratsaloatgmaildotcom...
Valid tiny-erp 1.6 - SQL Injection
Valid tiny-erp 1.6 - SQL Injection ------------------------------------------------------------------------ Valid tiny-erp = 1.6 SQL Injection Vulnerability ------------------------------------------------------------------------ author............: muuratsalo Revshell.com contact...........:...
CVE-2010-4888
SQL injection vulnerability in the Tiny Market hmtinymarket extension 0.5.4 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors...
CVE-2010-4889
Unspecified vulnerability in the Tiny Market hmtinymarket extension 0.5.4 and earlier for TYPO3 allows attackers to execute arbitrary code via unknown vectors...
Design/Logic Flaw
Unspecified vulnerability in the Tiny Market hmtinymarket extension 0.5.4 and earlier for TYPO3 allows attackers to execute arbitrary code via unknown vectors...
Sql injection
SQL injection vulnerability in the Tiny Market hmtinymarket extension 0.5.4 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors...
CVE-2010-4889
Unspecified vulnerability in the Tiny Market hmtinymarket extension 0.5.4 and earlier for TYPO3 allows attackers to execute arbitrary code via unknown vectors...
CVE-2010-4888
SQL injection vulnerability in the Tiny Market hmtinymarket extension 0.5.4 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors...
CVE-2010-4889
CVE-2010-4889 affects the TYPO3 Tiny Market (hm_tinymarket) extension, versions 0.5.4 and earlier. The vulnerability is described as unspecified, allowing attackers to execute arbitrary code via unknown vectors. The connected sources consistently cite the same vulnerability without detailing root...
CVE-2010-4888
CVE-2010-4888 describes an SQL injection in the TYPO3 Tiny Market (hm_tinymarket) extension, affected up to version 0.5.4. The vulnerability allows remote attackers to execute arbitrary SQL commands via unspecified vectors, with a demonstrated high-severity impact (CVSSv2 base score 7.5, Confiden...
RuubikCMS < v1.0.3 Shell Upload Vulnerability
Exploit for php platform in category web applications Exploit Title : RuubikCMS v1.0.3 Shell Upload Vulnerability Google Dork : Powered by RuubikCMS Date : 2011-03-06 Author : Alexander Software Link : http://www.ruubikcms.com Version : v1.0.3 Test On : Linux/php CVE : Web Applications === Exploi...
CastRipper 2.50.70 (.pls) Stack buffer Overflow Exploit WinXP SP3
No description provided by source. !/usr/bin/perl CastRipper 2.50.70 .plsStack buffer Overflow Exploit WinXP SP3 Exploite By : d3b4g my webpage www.d3b4g.info From tiny islands of maldivies Tested on Windows XP SP3 24.12.2009 I used Adress from SHELL32.dll.You can change it to your desired...
CVE-2009-1453
SQL injection vulnerability in class.eport.php in Tiny Blogr 1.0.0 rc4, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the txtUsername parameter aka the Username field. NOTE: some of these details are obtained from third party information...
Sql injection
SQL injection vulnerability in class.eport.php in Tiny Blogr 1.0.0 rc4, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the txtUsername parameter aka the Username field. NOTE: some of these details are obtained from third party information...
CVE-2009-1453
SQL injection vulnerability in class.eport.php in Tiny Blogr 1.0.0 rc4, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the txtUsername parameter aka the Username field. NOTE: some of these details are obtained from third party information...
CVE-2009-1453
CVE-2009-1453 : A SQL injection vulnerability exists in Tiny Blogr 1.0.0 rc4, specifically in class.eport.php. When magic_quotes_gpc is disabled, an attacker can manipulate the txtUsername parameter (the Username field) to execute arbitrary SQL commands remotely. This is a classic input-validatio...
Tiny Blogr 1.0.0 rc4 Authentication Bypass
Salvatore "drosophila" Fresta + Application: Tiny Blogr + Version: 1.0.0 rc4 + Website: http://tinyblogr.sourceforge.net + Bugs: A Authentication Bypass + Exploitation: Remote + Date: 17 Apr 2009 + Discovered by: Salvatore "drosophila" Fresta + Author: Salvatore "drosophila" Fresta + Contact:...