Grandstream UCM6200 Series CTI Interface - user_password SQL Injection

Grandstream UCM6200 Series CTI Interface - userpassword SQL Injection Exploit Title: Grandstream UCM6200 Series CTI Interface - 'userpassword' SQL Injection Date: 2020-03-30 Exploit Author: Jacob Baines Vendor Homepage: http://www.grandstream.com/ Software Link:...

e107 2.1.4 - keyword Blind SQL Injection

e107 2.1.4 - keyword Blind SQL Injection !/usr/bin/perl e107 = 2.1.4 "keyword" Blind SQL Injection Exploit -------------------------------------------------------------------------- Discovered by staker - stakerathotmaildotit Discovered on 09/03/2017 Site Vendor: http://www.e107.org BUG: Blind SQ...

PHP-Fusion MG User-Fotoalbum SQL Injection Vulnerability

No description provided by source. ----------------------------Information------------------------------------------------ +Name : PHP-Fusion mg user fotoalbum 1.0.1 = SQL injection Vulnerability Proof of Concept +Autor : Easy Laster +Date : 10.10.2010 +Script : PHP-Fusion mg user fotoalbum 1.0.1...

ASMAX AR 1004g Authentication Bypass Vulnerability

Exploit for hardware platform in category web applications Exploit Title: ASMAX AR 1004g Authentication Bypass Date: 30.01.2013 Exploit Author: lucyoa Vendor Homepage: asmax.pl ASMAX AR 1004g is the most popular router device from asmax. ------------------- Device Info --------------------------...

jbShop SQL Injection

Exploit Title: jbShop - e107 v7 CMS plugin - SQL Injection vulnerability Author: Robert Cooper adminatwebsiteauditing.org Software Link: http://sourceforge.net/projects/jbshop/ Tested on: Linux/Windows 7 Vulnerable Parameter: itemid= PoC:...

Dcore(lightweight CMS)backend to get the SHELL method and repair method-vulnerability warning-the black bar safety net

Author: Mr. DzY Increase the style with the site table of the Association; Background: admin/login. asp if does not exist, the self-guess solution. Injection point:http://www. xxxx. net/index. asp? subsite=1 In tool to increase the table name: dcoreuser column name: useradmin userpassword If not...

PHP-Fusion 4.01 - SQL Injection

Exploit Title: PHP-Fusion v4.01 SQL INJECTION Vulnerabilities Date: 17/05/2010 Author: Ma3sTr0-Dz Software Link: http://www.php-fusion.co.uk Version: 4.01 CVE : N/A Code : exploit code =======================================================PHP-Fusion v4.01 SQL INJECTION...

PHP-Fusion <= 6.01.15.4 (downloads.php) SQL Injection Vulnerability

=================================================================== PHP-Fusion = 6.01.15.4 downloads.php SQL Injection Vulnerability =================================================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' /' / /' 0 0 /,...

PHP-Fusion 6.01.15.4 SQL Injection

=================================================================== PHP-Fusion Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 0 -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-1 + Discovered By : Inj3ct0r + Site : Inj3ct0r.com + support e-mai...

PHP-Fusion Mod Book Panel - 'bookid' SQL Injection

/+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++\ + + + |----------------------------------------------------------------| + + | PHP-Fusion Mod - Book Panel Remote SQL Injection Vulnerability | + +...

CVE-2008-3101

Multiple cross-site scripting XSS vulnerabilities in vtiger CRM 5.0.4 allow remote attackers to inject arbitrary web script or HTML via 1 the parenttab parameter in an index action to the Products module, as reachable through index.php; 2 the userpassword parameter in an Authenticate action to th...

DreamNews Manager (id) Remote SQL Injection Vulnerability

No description provided by source. dreamnews rss Remote SQL Injection Vulnerability ======================================================== Author: Hussin X = = Home : www.tryag.cc/cc = = email: darkangelg85atYahooDoTcom = = ========================================================= script :...

dreamnews-sql.txt

dreamnews rss Remote SQL Injection Vulnerability ======================================================== Author: Hussin X = = Home : www.tryag.cc/cc = = email: darkangelg85atYahooDoTcom = = ========================================================= script : http://dreamlevels.com/dreamnews.php Do...

PHP-Nuke Platinium 7.6.b.5 - Remote Code Execution

PHP-Nuke Platinium 7.6.b.5 - Remote Code Execution Date: 02/07/08 Note I modified a bit phpsploit for this exploit, because PHP Nuke plays with REQUESTURI var ... Requirements registerglobals=On phpreter phpreter is really easy to use: You can change mode using "mode=", with = sql, php or cmd If...

seportal-sql.txt

Viva IslaM Viva IslaM Remote SQL Injection Vulnerability SePortal V2.4 poll.php pollid staticpages.php spid AuTh0r : Mr.SQL H0ME : WwW.PaL-HaCkEr.CoM & WwW.ATsDp.CoM Email : [email protected] !! SYRIAN HaCkErS !! Script : SePortal V2.4 site : www.seportal.org Download :...

@CMS 2.1.1 - SQL Injection

Viva IslaM Viva IslaM Remote SQL Injection Vulnerability @CMS 2.1.1 readarticle.php articleid AuTh0r : Mr.SQL H0ME : WwW.PaL-HaCkEr.CoM & WwW.ATsDp.CoM Email : [email protected] !! SYRIAN HaCkErS !! Script : @CMS 2.1.1 site : www.atcode.net -:: SQL ::-...

AllMyGuests 0.4.1 - 'AMG_id' SQL Injection

Found by : -=Player=- Contacts : 282-246-419 ICQ Greatz to: LidlosesAuge, Suicide, enco, Free-Hack Script : AllMyGuests Site : http://www.php-resource.net/ Dork : "powered by AllMyGuests" Valnu : index.php Parameter: AMGid Injection:...

Fully Modded phpBB - 'kb.php' SQL Injection

Powered by phpBB © 2001, 2006 phpBB Group Modified by Fully Modded phpBB © 2002, 2006 AUTHOR : TurkishWarriorr HOME : http://www.1923turk.org DORKS 1 : allinurl :kb.php?mode=article&k DORKS 2 : article&k= DORKS 3 : "Powered by phpBB © 2001, 2006 phpBB Group" "Modified by Fully Modded phpBB ©...

EsForum 3.0 (forum.php idsalon) Remote SQL Injection Vulnerability

No description provided by source. ------------------------------------------------------------------------------------------------------------------- AYYILDIZ.ORG PreSents... Script: EsForum 3.0 Script Download: http://www.editeurscripts.com/scripts/dl-esforum-3.html Contact: ilker Kandemir...

EsForum 3.0 - forum.php?idsalon SQL Injection

EsForum 3.0 - forum.php?idsalon SQL Injection ------------------------------------------------------------------------------------------------------------------- AYYILDIZ.ORG PreSents... Script: EsForum 3.0 Script Download: http://www.editeurscripts.com/scripts/dl-esforum-3.html Contact: ilker...