Lucene search
K

58 matches found

seebug.org
seebug.org
added 2008/08/05 12:0 a.m.55 views

sablog 1.6 trackback.php转码函数注入漏洞

Sablog-X是一个采用PHP和MySQL构建的博客系统.作为Sablog的后继产品,Sablog-X在代码质量,运行效率,负载能力,安全等级,功能可操控性和权限严密性等方面都在原有的基础上,更上一层楼.凭借Sablog-X作者7年多的安全技术经验,4年的PHP开发经验,强于创新,追求完美的设计理念,使得Sablog-X已获得业内越来越多专家和用户的认可.但是80sec在其中的代码里发现一个安全漏洞,导致远程用户通过SQL注射获得数据库权限,甚至获得管理员权限。 在sablog的trackback.php中的转码函数 function iconv2utf$chs global...

7.1AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2007/04/12 10:19 a.m.2 views

CVE-2007-1989

Multiple cross-site scripting XSS vulnerabilities in DotClear before 1.2.6 allow remote attackers to inject arbitrary web script or HTML via the 1 postid parameter to ecrire/trackback.php or the 2 toolurl parameter to tools/thememng/index.php. NOTE: some of these details are obtained from third...

4.3CVSS5.5AI score0.02044EPSS
Exploits0References9
OSV
OSV
added 2007/01/13 2:28 a.m.2 views

DEBIAN-CVE-2007-0233

wp-trackback.php in WordPress 2.0.6 and earlier does not properly unset variables when the input data includes a numeric parameter with a value matching an alphanumeric parameter's hash value, which allows remote attackers to execute arbitrary SQL commands via the tbid parameter. NOTE: it could b...

7.5CVSS8.3AI score0.11044EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2007/01/13 2:0 a.m.70 views

CVE-2007-0233

wp-trackback.php in WordPress 2.0.6 and earlier does not properly unset variables when the input data includes a numeric parameter with a value matching an alphanumeric parameter's hash value, which allows remote attackers to execute arbitrary SQL commands via the tbid parameter. NOTE: it could b...

7.5CVSS5.5AI score0.11044EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2007/01/12 12:0 a.m.299 views

WordPress Trackback 'wp-trackback.php' 'tb_id' Parameter SQL Injection

The version of WordPress on the remote host fails to properly sanitize input to the 'tbid' parameter of the 'wp-trackback.php' script before using it in database queries. An unauthenticated, remote attacker can leverage this issue to launch SQL injection attacks against the affected application,...

7.5CVSS5.9AI score0.11044EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2007/01/12 12:0 a.m.526 views

WordPress Trackback Charset Decoding SQL Injection

The version of WordPress on the remote host supports trackbacks in alternate character sets and decodes them after escaping SQL parameters. By specifying an alternate character set and encoding input with that character set while submitting a trackback, an unauthenticated, remote attacker can...

6.8CVSS5.7AI score0.07357EPSS
Exploits1References4
seebug.org
seebug.org
added 2007/01/09 12:0 a.m.31 views

WordPress Charset解抹SQL注入漏洞

WordPress是一款流行的网络日记程序。 WordPress处理字符集解码存在问题,远程攻击者可以利用漏洞进行SQL注入攻击,获得敏感信息。 在当PHP的mbstring扩展激活时,WordPress支持使用不同字符集解码Trackback,因为解码发送在数据库为输入数据执行选择正确的字符集之前,因此允许绕过针对SQL注入的保护。 为了演示需要,Stefan Esser建议使用UTF-7字符集来利用,因为其他的多字节字符集允许多字节序列以''结尾。...

7AI score
Exploits0
Exploit DB
Exploit DB
added 2007/01/07 12:0 a.m.80 views

WordPress Core 2.0.5 - Trackback UTF-7 SQL Injection

!/usr/bin/python | || | | | | | | | || || \ | |/ || '|/ |/ -| ' \ / -/ |||| /| || / ||||,||| ,|||||||,| || |||||| Proof of concept code from the Hardened-PHP Project NOT FOR DISTRIBUTION PLEASE DO NOT SPREAD THIS CODE -= Wordpress 2.0.5 =- Trackback UTF-7 SQL injection exploit beware of...

7AI score
Exploits0
exploitpack
exploitpack
added 2007/01/07 12:0 a.m.13 views

WordPress 2.0.5 - Trackback UTF-7 SQL Injection

WordPress 2.0.5 - Trackback UTF-7 SQL Injection !/usr/bin/python | || | | | | | | | || || \ | |/ || '|/ |/ -| ' \ / -/ |||| /| || / ||||,||| ,|||||||,| || |||||| Proof of concept code from the Hardened-PHP Project NOT FOR DISTRIBUTION PLEASE DO NOT SPREAD THIS CODE -= Wordpress 2.0.5 =-...

0.2AI score
Exploits0
0day.today
0day.today
added 2007/01/07 12:0 a.m.60 views

Wordpress 2.0.5 Trackback UTF-7 Remote SQL Injection Exploit

Exploit for unknown platform in category web applications ============================================================ Wordpress 2.0.5 Trackback UTF-7 Remote SQL Injection Exploit ============================================================ !/usr/bin/python | || | | | | | | | || || \ | |/ || '|/...

7.1AI score
Exploits0
NVD
NVD
added 2006/12/14 2:28 a.m.17 views

CVE-2006-6540

SQL injection vulnerability in bt-trackback.php in Bluetrait before 1.2.0, when trackback is enabled, allows remote attackers to execute arbitrary SQL commands via unspecified parameters. NOTE: some of these details are obtained from third party information...

6.8CVSS8.4AI score0.00999EPSS
Exploits0References4
Cvelist
Cvelist
added 2006/12/14 2:0 a.m.21 views

CVE-2006-6540

SQL injection vulnerability in bt-trackback.php in Bluetrait before 1.2.0, when trackback is enabled, allows remote attackers to execute arbitrary SQL commands via unspecified parameters. NOTE: some of these details are obtained from third party information...

8.4AI score0.00999EPSS
Exploits0References4
Packet Storm
Packet Storm
added 2006/08/18 12:0 a.m.25 views

mybloggie214.txt

!/usr/bin/php -q -d shortopentag=on = 4.1 allowing subs / if $argctrackbackreply1, "Sorry, Trackback failed.. Reason : No title"; if!empty$REQUEST'url' $url=urldecode$REQUEST'url'; if validateurl$url==false $tback-trackbackreply1, "Sorry, Trackback failed.. Reason : URL not valid"; else $tback-tr...

7.4AI score
Exploits0
CVE
CVE
added 2005/12/01 11:0 a.m.47 views

CVE-2005-3957

Technical details for CVE-2005-3957 are not publicly available in the provided documents. No concrete affected products, versions, or impact are specified here. Monitor for updates.

10CVSS7AI score0.01647EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2005/12/01 11:0 a.m.16 views

CVE-2005-3957

Unspecified vulnerability in the Trackback functionality in DotClear 1.2.1 has unknown impact and attack vectors...

6.5AI score0.01647EPSS
Exploits0References3
NVD
NVD
added 2005/12/01 6:3 a.m.14 views

CVE-2005-3957

Unspecified vulnerability in the Trackback functionality in DotClear 1.2.1 has unknown impact and attack vectors...

10CVSS6.5AI score0.01647EPSS
Exploits0References3
Cvelist
Cvelist
added 2005/06/20 4:0 a.m.19 views

CVE-2005-2010

Cross-site scripting XSS vulnerability in trackback.asp in Ublog Reload 1.0.5 allows remote attackers to inject arbitrary web script or HTML via the btitle parameter...

5.7AI score0.03617EPSS
Exploits1References4
OSV
OSV
added 2005/05/20 4:0 a.m.5 views

DEBIAN-CVE-2005-1687

SQL injection vulnerability in wp-trackback.php in Wordpress 1.5 and earlier allows remote attackers to execute arbitrary SQL commands via the tbid parameter...

7.5CVSS8.4AI score0.02299EPSS
Exploits0References1
Rows per page
Query Builder