30 matches found
EUVD-2006-3730
Malware in sbrugna...
EUVD-2006-5140
Malware in sbrugna...
videoDB <= 3.1.0 - SQL Injection Vulnerability
No description provided by source. DORK:allinurl:borrow.php?diskid= DORK:allintitle:videodb Vendor: http://www.videodb.net/blog/ $ ----------- | S3C0VERUN | & ------------@ along with this i was able in some sites to determine that you can overwrite the databse contents and also if you look in th...
VideoDB 3.0.3 'login.php' Cross Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/38155/info VideoDB is prone to an cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the...
videodb <= 3.0.3 - Multiple Vulnerabilities
No description provided by source. Exploit Title: VideoDB Multiple Vulnerabilities Date: 09.10.2010 Author: Valentin Category: webapps/0day Version: 3.0.3 and earlier Tested on: CVE : Code : :::::::::::::::::::::::::::::::::::::: 0x1 :::::::::::::::::::::::::::::::::::::: General Information...
VideoDB <= 2.2.1 (pdf.php) Remote File Include Exploit
1.漏洞分析 php define'FPDF', $config'pdfmodule';//这里可控 define'FPDFFONTPATH', FPDF.'/font/'; requireonce FPDF.'/fpdf.php'; //这里包含漏洞 requireonce './core/functions.php'; requireonce './engines/engines.php'; requireonce './core/VariableStream.class.php'; .... 2.漏洞利用...
com_videodb Mambo Component <= 0.3en Remote Include Vulnerability
No description provided by source. comvideodb Mambo Componenet = 0.3en Remote Include Vulnerability Bug Found by h4ntu http://h4ntu.com batamhacker crew Another Mambo component remote inclusion vulneribility download : http://mamboxchange.com/frs/download.php/7942/comvideodbv0.3en.zip bug found i...
VideoDB 3.1.0 - SQL Injection
VideoDB 3.1.0 - SQL Injection DORK:allinurl:borrow.php?diskid= DORK:allintitle:videodb Vendor: http://www.videodb.net/blog/ $ ----------- | S3C0VERUN | & ------------@ along with this i was able in some sites to determine that you can overwrite the databse contents and also if you look in the...
videoDB <= 3.1.0 SQL Injection Vulnerability
Exploit for php platform in category web applications DORK:allinurl:borrow.php?diskid= DORK:allintitle:videodb Vendor: http://www.videodb.net/blog/ $ ----------- | S3C0VERUN | & email protected along with this i was able in some sites to determine that you can overwrite the databse contents and...
VideoDB 3.1.0 - SQL Injection
DORK:allinurl:borrow.php?diskid= DORK:allintitle:videodb Vendor: http://www.videodb.net/blog/ $ ----------- | S3C0VERUN | & ------------@ along with this i was able in some sites to determine that you can overwrite the databse contents and also if you look in the source you se there password the...
VideoDB 3.0.3 Local File Inclusion / SQL Injection
Exploit Title: VideoDB Multiple Vulnerabilities Date: 09.10.2010 Author: Valentin Category: webapps/0day Version: 3.0.3 and earlier Tested on: CVE : Code : :::::::::::::::::::::::::::::::::::::: 0x1 :::::::::::::::::::::::::::::::::::::: General Information Advisory/Exploit Title = VideoDB Multip...
VideoDB <= 3.0.3 Multiple Remote Vulnerabilities
Exploit for php platform in category web applications ================================================ VideoDB General Information Advisory/Exploit Title = VideoDB Multiple Vulnerabilities Author = Valentin Hoebel Contact = email protected :::::::::::::::::::::::::::::::::::::: 0x2...
VideoDB 3.0.3 - Multiple Vulnerabilities
VideoDB 3.0.3 - Multiple Vulnerabilities Exploit Title: VideoDB Multiple Vulnerabilities Date: 09.10.2010 Author: Valentin Category: webapps/0day Version: 3.0.3 and earlier Tested on: CVE : Code : :::::::::::::::::::::::::::::::::::::: 0x1 :::::::::::::::::::::::::::::::::::::: General Informatio...
VideoDB 3.0.3 - Multiple Vulnerabilities
Exploit Title: VideoDB Multiple Vulnerabilities Date: 09.10.2010 Author: Valentin Category: webapps/0day Version: 3.0.3 and earlier Tested on: CVE : Code : :::::::::::::::::::::::::::::::::::::: 0x1 :::::::::::::::::::::::::::::::::::::: General Information Advisory/Exploit Title = VideoDB Multip...
VideoDB version 3.0.3 XSS Vulnerability
Exploit for unknown platform in category web applications ======================================= VideoDB version 3.0.3 XSS Vulnerability ======================================= Exploit Title: Permanent Cross-Site Scripting XSS in videoDB 3.0.3 Date: 2010-02-07 Author: vr Software Link:...
VideoDB 3.0.3 - login.php Cross-Site Scripting
VideoDB 3.0.3 - login.php Cross-Site Scripting source: https://www.securityfocus.com/bid/38155/info VideoDB is prone to an cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script cod...
VideoDB 3.0.3 - 'login.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/38155/info VideoDB is prone to an cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...
VideoDB 3.0.3 Cross Site Scripting
Exploit Title: Permanent Cross-Site Scripting XSS in videoDB 3.0.3 Date: 2010-02-07 Author: vr Software Link: http://www.videodb.net/ Tested on: 3.0.3 CVE : http://localhost/videodb/login.php?error=%3Cscript%3Ealert%20%28%27XSS%27%29%3C/script%3E...
CVE-2006-5155
PHP remote file inclusion vulnerability in core/pdf.php in VideoDB 2.2.1 and earlier allows remote attackers to execute arbitrary PHP code via the configpdfmodule parameter...
CVE-2006-5155
VideoDB 2.2.1 and earlier are affected by a PHP remote file inclusion in core/pdf.php, exploitable via the config[pdf_module] parameter. The underlying issue allows an attacker to execute arbitrary PHP code remotely. No exploitation details or mitigations are provided in the connected documents. ...