22 matches found
EUVD-2008-4331
Malware in sbrugna...
EUVD-2007-3675
Malware in sbrugna...
Gr8 Tutorial Script - SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Gr8 Tutorial Script - SQL Injection Google Dork: N/A Date: 24.03.2017 Vendor Homepage: http://gr8script.com/ Software: http://gr8script.com/gr8tutorialscript.php Demo: http://www.gr8script.com/gr8tutorial/ Version: N/A Tested on...
Gr8 Tutorial Script SQL Injection
Exploit Title: Gr8 Tutorial Script - SQL Injection Google Dork: N/A Date: 24.03.2017 Vendor Homepage: http://gr8script.com/ Software: http://gr8script.com/gr8tutorialscript.php Demo: http://www.gr8script.com/gr8tutorial/ Version: N/A Tested on: Win7 x64, Kali Linux x64 Exploit Author: Ihsan Senca...
Gr8 Tutorial Script - SQL Injection
Gr8 Tutorial Script - SQL Injection Exploit Title: Gr8 Tutorial Script - SQL Injection Google Dork: N/A Date: 24.03.2017 Vendor Homepage: http://gr8script.com/ Software: http://gr8script.com/gr8tutorialscript.php Demo: http://www.gr8script.com/gr8tutorial/ Version: N/A Tested on: Win7 x64, Kali...
Gr8 Tutorial Script - SQL Injection
Exploit Title: Gr8 Tutorial Script - SQL Injection Google Dork: N/A Date: 24.03.2017 Vendor Homepage: http://gr8script.com/ Software: http://gr8script.com/gr8tutorialscript.php Demo: http://www.gr8script.com/gr8tutorial/ Version: N/A Tested on: Win7 x64, Kali Linux x64 Exploit Author: Ihsan Senca...
CVE-2008-4350
SQL injection vulnerability in main.php in vbLOGIX Tutorial Script 1.0 and earlier allows remote attackers to execute arbitrary SQL commands via the catid parameter in a list action...
Sql injection
SQL injection vulnerability in main.php in vbLOGIX Tutorial Script 1.0 and earlier allows remote attackers to execute arbitrary SQL commands via the catid parameter in a list action...
CVE-2008-4350
The CVE-2008-4350 entry concerns vbLOGIX Tutorial Script 1.0 (and earlier) with a SQL injection in main.php. The vulnerable component is the list action that uses the cat_id parameter, enabling remote attackers to execute arbitrary SQL commands. This is caused by unsanitized input in the paramete...
CVE-2008-4350
SQL injection vulnerability in main.php in vbLOGIX Tutorial Script 1.0 and earlier allows remote attackers to execute arbitrary SQL commands via the catid parameter in a list action...
vbLOGIX Tutorial Script <= 1.0 (cat_id) SQL Injection Vulnerability
No description provided by source. ===================================================================================================== vbLOGIX Tutorial Script = v1.0 catid Remote SQL Injection Exploit...
vbLOGIX Tutorial Script 1.0 - 'cat_id' SQL Injection
===================================================================================================== vbLOGIX Tutorial Script = v1.0 catid Remote SQL Injection Exploit ===================================================================================================== Venedor site :...
vbLOGIX Tutorial Script 1.0 - cat_id SQL Injection
vbLOGIX Tutorial Script 1.0 - catid SQL Injection ===================================================================================================== vbLOGIX Tutorial Script = v1.0 catid Remote SQL Injection Exploit...
vbLOGIX Tutorial Script <= 1.0 (cat_id) SQL Injection Vulnerability
Exploit for unknown platform in category web applications =================================================================== vbLOGIX Tutorial Script = 1.0 catid SQL Injection Vulnerability ===================================================================...
Sql injection
Multiple SQL injection vulnerabilities in changePW.php in AV Tutorial Script avtutorial 1.0, when magicquotesgpc is disabled, allow remote attackers to execute arbitrary SQL commands via the 1 id and 2 userid parameters, a different issue than CVE-2007-3630...
CVE-2007-3691
Multiple SQL injection vulnerabilities in changePW.php in AV Tutorial Script avtutorial 1.0, when magicquotesgpc is disabled, allow remote attackers to execute arbitrary SQL commands via the 1 id and 2 userid parameters, a different issue than CVE-2007-3630...
CVE-2007-3691
Multiple SQL injection vulnerabilities in changePW.php in AV Tutorial Script avtutorial 1.0, when magicquotesgpc is disabled, allow remote attackers to execute arbitrary SQL commands via the 1 id and 2 userid parameters, a different issue than CVE-2007-3630...
CVE-2007-3691
CVE-2007-3691 affects AV Tutorial Script (avtutorial) 1.0. The changePW.php file is vulnerable to SQL injection via the parameters (1) id and (2) userid when magic_quotes_gpc is disabled, enabling remote attackers to execute arbitrary SQL commands. This is a direct vulnerability in the applicatio...
Default credentials
changePW.php in AV Tutorial Script avtutorial 1.0 does not require authentication or knowledge of an old password for password changes, which allows remote attackers to change passwords for arbitrary users via a modified password parameter...
CVE-2007-3630
changePW.php in AV Tutorial Script avtutorial 1.0 does not require authentication or knowledge of an old password for password changes, which allows remote attackers to change passwords for arbitrary users via a modified password parameter...