Lucene search
K

4 matches found

Hacker One
Hacker One
added 2016/01/24 10:8 a.m.124 views

Mail.ru: [afisha.mail.ru] SQL Injection

Добрый день. Параметр id попадает в SQL запрос без фильтрации. Вектор атаки - Union Based SQLi PoC http://mmkf.afisha.mail.ru/imgview.html?id=3713444279+and0unionselectconcatws0x2c,version,@@versioncompileos вывод в сорцах страницы - 5.0.92-community-log:unknown-linux-gnu...

0.4AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.23 views

Horizon Web Builder (fshow.php) SQL Injection Vulnerability

No description provided by source. Exploit Title: Horizon SQLi Google Dork: intext:Site by Horizon : inurl:uid=HORIZON3 Date: 03/05/2011 Author: Iolo Morganwg Category: Web App Version: PHP Tested on: Windows XP Vendor: http://www.horizonsolutions.tv/ Notes: Both params are vulnerable to union...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2011/05/03 12:0 a.m.33 views

Horizon Web Builder - 'fshow.php' SQL Injection

Exploit Title: Horizon SQLi Google Dork: intext:"Site by Horizon" : inurl:"uid=HORIZON3" Date: 03/05/2011 Author: Iolo Morganwg Category: Web App Version: PHP Tested on: Windows XP Vendor: http://www.horizonsolutions.tv/ Notes: Both params are vulnerable to union based sqli Encoded URL Example...

7.4AI score
Exploits0
0day.today
0day.today
added 2011/05/03 12:0 a.m.30 views

Horizon Web Builder (fshow.php) SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Horizon SQLi Google Dork: intext:"Site by Horizon" : inurl:"uid=HORIZON3" Date: 03/05/2011 Author: Iolo Morganwg Category: Web App Version: PHP Tested on: Windows XP Vendor: http://www.horizonsolutions.tv/ Notes: Both params are...

7.1AI score
Exploits0
Rows per page
Query Builder