11 matches found
LiteNews <= 0.1 (id) Remote SQL Injection Vulnerability
No description provided by source. litenews-01 = 1.2 Remote sql injection Download : http://webscripts.softpedia.com/scriptDownload/LiteNews-Download-43228.htmldownloadlocations Injection Adress : http://Sitename/litenew//index.php?mode=view&id= code sql you need to crypt the directory of...
Nmap NSE net: oracle-brute
Performs brute force password auditing against Oracle servers. SYNTAX: brute.firstonly: stop guessing after first password is found default: false oracle-brute.sid: the instance against which to perform password guessing brute.retries: the number of times to retry if recoverable failures occurs...
ECshop payment methods 0day manual injection EXP-vulnerability warning-the black bar safety net
ECshop payment methods 0day manual injection of the study The original EXP: respond. php? code=tenpay&attach=voucher&spbillno=1 andselect 1 fromselect count,concatselect select SELECT concat0x7e,0x27,count,0x27,0x7e FROM ecs. ecsadminuser from the informationschema. tables limit 0,1,floorrand02x...
S40 CMS 0.4.1 Cross Site Request Forgery
In The Name Of GOD + Exploit Title:remote change user and password exploit + Date: 2010 + script:S40 CMS v.0.4.1 beta + Software: http://s40.biz/?p=download + Author : pentesters.ir +discovered by:ahmadbady + Contact : [email protected] + Website : WwW.PenTesters.IR expl: coded by ahmadbady...
Cisco Security Advisory: Multiple Vulnerabilities in Cisco Unified MeetingPlace
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Multiple Vulnerabilities in Cisco Unified MeetingPlace Advisory ID: cisco-sa-20100127-mp Revision 1.0 For Public Release 2010 Jan 27 1600 UTC GMT +--------------------------------------------------------------------- Summary...
OpenForum 'profile.php' Authentication Bypass Vulnerability
This host is installed with OpenForum and is prone to Authentication Bypass vulnerability. OpenVAS Vulnerability Test $Id: secpodopenforumauthbypassvuln.nasl 5122 2017-01-27 12:16:00Z teissa $ OpenForum 'profile.php' Authentication Bypass Vulnerability Authors: Nikita MR Copyright: Copyright c 20...
czarnewsaccount-sql.txt
czarNews Account Hijacking = 1.20 user and password Leak ---------------------------------------------------------- Author: Maycon Maia Vitali 0ut0fBound Contact: mayconmaia at yahoo dot com dot br http://maycon.gsec.com.br Original Xploit by StAkeR http://www.milw0rm.com/exploits/6462 Gerenal...
Galatolo Web Manager 1.0 - SQL Injection
!/usr/bin/perl -w Portal : Galatolo WebManager 1.0 exploit aported password crypted exploit tatjibe password mcrypté :d mgharba :d:d:d:d Founded & Exploited by : Stack Contact: Ev!L = see down Greetz : Houssamix & Djekmani & Jadi & Simo64 & iuoisn & All muslims HaCkeRs :...
bpblog-sql.txt
--==+=================== Spanish Hackers Team www.spanish-hackers.com =================+==-- --==+ bp blog = 0 Exploit2: http://localhost/path/templatepermalink.asp?id=78 and exists select from TABLE Example: http://localhost/path/templatepermalink.asp?id=78 AND SELECT Count FROM tblauthor = 0...
domphp081-sql.txt
--==+================================================================================+==-- --==+ DomPHP v0.81 Remote Sql Injection +==-- --==+================================================================================+==-- Author: MhZ91 Title: DomPHP v0.81 Remote Sql Injection Download:...
CVE-2005-4849
Apache Derby before 10.1.2.1 exposes the 1 user and 2 password attributes in cleartext via a the RDBNAM parameter of the ACCSEC command and b the output of the DatabaseMetaData.getURL function, which allows context-dependent attackers to obtain sensitive information...