22 matches found
EUVD-2008-1555
Malware in sbrugna...
EUVD-2008-1554
Malware in sbrugna...
TopperMod 2.0 - Remote SQL Injection Vulnerability
No description provided by source. Author: GiReX mySite: girex.altervista.org CMS: TopperMod v2.0 Site: rtcw.ch/mio/index.php Bug: SQL Injection Type: 1 - Priviledge Escalation from user to mod 2 - Remote user password change File: /account/index.php Var : $localita Need: magicquotesgpc = Off You...
CVE-2008-1554
SQL injection vulnerability in account/index.php in TopperMod 2.0, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via a non-alphanumeric first character the localita parameter, which bypasses a protection mechanism...
Directory traversal
Directory traversal vulnerability in mod.php in TopperMod 1.0 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the to parameter...
Sql injection
SQL injection vulnerability in account/index.php in TopperMod 2.0, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via a non-alphanumeric first character the localita parameter, which bypasses a protection mechanism...
CVE-2008-1553
Directory traversal vulnerability in mod.php in TopperMod 1.0 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the to parameter...
CVE-2008-1554
SQL injection vulnerability in account/index.php in TopperMod 2.0, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via a non-alphanumeric first character the localita parameter, which bypasses a protection mechanism...
CVE-2008-1553
Directory traversal vulnerability in mod.php in TopperMod 1.0 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the to parameter...
CVE-2008-1554
CVE-2008-1554 refers to a SQL injection vulnerability in the TopperMod 2.0 package, specifically in account/index.php . The issue arises when magic_quotes_gpc is disabled and allows remote attackers to inject arbitrary SQL through the localita parameter by using a non-alphanumeric first character...
CVE-2008-1553
Directory traversal vulnerability in mod.php of TopperMod 1.0 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the to parameter. CVSS2 base score 6.8 (MEDIUM); attack vector NETWORK, no authentication, no user interaction required; impacts partial confide...
TopperMod 2.0 Remote SQL Injection Vulnerability
Author: GiReX mySite: www.r57shell.in CMS: TopperMod v2.0 Site: www.wikipediatr.com Bug: SQL Injection Type: 1 - Priviledge Escalation from user to mod 2 - Remote user password change File: /account/index.php Var : $localita Need: magicquotesgpc = Off You must be logged in Vuln Code:...
toppermod10-lfi.txt
Author: GiReX mySite: girex.altervista.org CMS: TopperMod v1.0 Site: rtcw.ch/mio/index.php Bug: Local File Inclusion File: mod.php Var : $to Bug explanation - Vuln Code: if isset$GET'mod' $mod = stripslashes$GET'mod'; else header"location index.php"; Die; if isset$GET'to' $to =...
toppermod20-sql.txt
Author: GiReX mySite: girex.altervista.org CMS: TopperMod v2.0 Site: rtcw.ch/mio/index.php Bug: SQL Injection Type: 1 - Priviledge Escalation from user to mod 2 - Remote user password change File: /account/index.php Var : $localita Need: magicquotesgpc = Off You must be logged in Vuln Code:...
TopperMod 2.0 Remote SQL Injection Vulnerability
No description provided by source. Author: GiReX mySite: girex.altervista.org CMS: TopperMod v2.0 Site: rtcw.ch/mio/index.php Bug: SQL Injection Type: 1 - Priviledge Escalation from user to mod 2 - Remote user password change File: /account/index.php Var : $localita Need: magicquotesgpc = Off You...
TopperMod 2.0 Remote SQL Injection Vulnerability
Exploit for unknown platform in category web applications ================================================ TopperMod 2.0 Remote SQL Injection Vulnerability ================================================ Author: GiReX CMS: TopperMod v2.0 Site: rtcw.ch/mio/index.php Bug: SQL Injection Type: 1 -...
TopperMod 1.0 - 'mod.php' Local File Inclusion
Author: GiReX mySite: girex.altervista.org CMS: TopperMod v1.0 Site: rtcw.ch/mio/index.php Bug: Local File Inclusion File: mod.php Var : $to Bug explanation - Vuln Code: if isset$GET'mod' $mod = stripslashes$GET'mod'; else header"location index.php"; Die; if isset$GET'to' $to =...
TopperMod 2.0 - SQL Injection
TopperMod 2.0 - SQL Injection Author: GiReX mySite: girex.altervista.org CMS: TopperMod v2.0 Site: rtcw.ch/mio/index.php Bug: SQL Injection Type: 1 - Priviledge Escalation from user to mod 2 - Remote user password change File: /account/index.php Var : $localita Need: magicquotesgpc = Off You must...
TopperMod 1.0 (mod.php) Local File Inclusion Vulnerability
Exploit for unknown platform in category web applications ========================================================== TopperMod 1.0 mod.php Local File Inclusion Vulnerability ========================================================== Author: GiReX CMS: TopperMod v1.0 Site: rtcw.ch/mio/index.php Bu...
TopperMod 2.0 - SQL Injection
Author: GiReX mySite: girex.altervista.org CMS: TopperMod v2.0 Site: rtcw.ch/mio/index.php Bug: SQL Injection Type: 1 - Priviledge Escalation from user to mod 2 - Remote user password change File: /account/index.php Var : $localita Need: magicquotesgpc = Off You must be logged in Vuln Code:...