249 matches found
CommodityRentals 2.0 - SQL Injection
source: https://www.securityfocus.com/bid/15552/info CommodityRentals is prone to an SQL injection vulnerability. Successful exploitation could result in a compromise of the application, disclosure or modification of data, or may permit an attacker to exploit vulnerabilities in the underlying...
CommodityRentals 2.0 - SQL Injection
CommodityRentals 2.0 - SQL Injection source: https://www.securityfocus.com/bid/15552/info CommodityRentals is prone to an SQL injection vulnerability. Successful exploitation could result in a compromise of the application, disclosure or modification of data, or may permit an attacker to exploit...
Commodity Rentals 2.x "user_id" Sql inj.
Vuln. dicovered by : r0t Date: 23 nov. 2005 Orginal advisory:http://pridels.blogspot.com/2005/11/commodity-rentals-2x-userid-sql-inj.html Vendor:http://www.commodityrentals.com/ affected version: 2.x and prior Product Description: CommodityRentals is the most comprehensive Online Rental Business...
PHP-Nuke 7.8 - 'modules.php' SQL Injection
/ PHP-Nuke 4.0 coded by 1dt.w0lf RST/GHC http://rst.void.ru http://ghc.ru / // tested on 7.8 include include include include include include include define START 47 define END 103 define SZ 1024 define PORT 80 define PREFIX "nuke" define SQL...
CVE-2005-2312
Realnode Emilda 1.2.2 and earlier are affected by a vulnerability in management.php that allows remote attackers to perform actions as other users by modifying the user_id parameter. This represents a user-privilege escalation through parameter tampering, enabling potential unauthorized access to...
CVE-2005-2312
management.php in Realnode Emilda 1.2.2 and earlier allows remote attackers to perform actions as other users by modifying the userid parameter...
CVE-2005-2312
management.php in Realnode Emilda 1.2.2 and earlier allows remote attackers to perform actions as other users by modifying the userid parameter...
CVE-2002-1659
CVE-2002-1659 affects PortalApp 2.2 where user_profile.asp allows local users to gain privileges by modifying the user_id variable. The root cause is manipulating a user_id parameter in the profile page, enabling local privilege escalation with complete impact on confidentiality, integrity, and a...
phpBB 2.0.13 - 'downloads.php' mod Get Hash
!/usr/bin/perl -w use IO::Socket; Example: C:\phpbb.pl www.site.com /phpBB2/ 2 downloads.php mod in phpBB \n"; print " e.g.: phpbb.pl www.site.com /phpBB2/ 2 \n"; print " - site address\n"; print " - forum folder\n"; print " - user id 2 default for phpBB admin\n"; print "||\n"; print "\n\n"; exit...