6 matches found
VicBlog - Multiple SQL Injections
source: https://www.securityfocus.com/bid/56307/info VicBlog is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit may allow an attacker to compromise the application, access ...
VicBlog - Multiple SQL Injections
VicBlog - Multiple SQL Injections source: https://www.securityfocus.com/bid/56307/info VicBlog is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit may allow an attacker to...
VicBlog Path Disclosure / SQL Injection
Author : Geek Title : Vicblog Multiple Vulnerabilities Date : 10/25/2012 Dork : allintext: "Powered by VicBlog" Tested On : Winxp Multiple Sql Injection x File : passwordforgotten x Code : $email = $POST'email' ; $sql = mysqlquery"SELECT FROM vbaccounts where email = '$email'" x P0c :...
VicBlog - 'tag' SQL Injection
source: https://www.securityfocus.com/bid/49304/info VicBlog is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit may allow an attacker to compromise the application, access or modif...
VicBlog - tag SQL Injection
VicBlog - tag SQL Injection source: https://www.securityfocus.com/bid/49304/info VicBlog is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit may allow an attacker to compromise the...
VicBlog SQL Injection
Exploit Title: VicBlog SQL Injection Date: 2011 Author: Eyup CELIK Software Link: http://www.vicdesigns.com.au Version: All Version Tested on: All versions are Vulnerability ISSUE SQL Injection can be done using the command input Vulnerable Page: index.php Example: index.php?page=posts&tag=...