PAFileDB 1.1.3/2.1.1/3.0/3.1 viewall.php start Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/12788/info Multiple SQL injection and cross-site scripting vulnerabilities exist in paFileDB. These issues are reported to exist in the 'viewall.php' and 'category.php' scripts. Exploitation of these issues may allow for...

BlogMan 0.45 Multiple Vulnerabilities

Salvatore "drosophila" Fresta Application: BlogMan http://sourceforge.net/projects/blogman/ Version: 0.45 Bug: Multiple SQL Injection Authentication Bypass Privilege Escalation Exploitation: Remote Date: 1 Mar 2009 Discovered by: Salvatore "drosophila" Fresta Author: Salvatore "drosophila" Fresta...

phpmydesk-rfi.txt

script:PHPMyDesk Beta Release 1.0b == RFI dir url:http://www.cynux.com/phpmydesk/ author: titanichacker contact:[email protected] H.P : http://hack-teach.com & mohandko.com & tryag.com bug in: ./index.php include$langmod; ./login.php include$langmod; ./logout.php include$langmod;...

CVE-2005-0781

CVE-2005-0781 affects paFileDB 3.1 and earlier, with SQL injection in viewall.php and category.php via the start parameter to pafiledb.php, enabling remote execution of arbitrary SQL commands. The vulnerability is documented in NVD as a SQLi in paFileDB 3.1 and earlier; exploitation details are n...