EgyPlus 7ml 1.0.1 - Authentication Bypass

EgyPlus 7ml 1.0.1 - Authentication Bypass || || | || o,7 || . o7 || q||| o\, : / / . =By: Qabandi =Email: iqaahotmail.fr From Kuwait, PEACE... =Vuln: EgyPlus 7ml query"select name,pass from admin where name = '$username' and pass = '$password' "; $AdminInfo=$hazemali-numrows$sql; if$AdminInfo==1...

EgyPlus 7ml <= 1.0.1 (Auth Bypass) SQL Injection Vulnerability

Exploit for unknown platform in category web applications ============================================================== EgyPlus 7ml query"select name,pass from admin where name = '$username' and pass = '$password' "; $AdminInfo=$hazemali-numrows$sql; if$AdminInfo==1 ---- Checks if MySQL statemen...

Traidnt Up 2.0 (Auth Bypass / Cookie) SQL Injection Vulnerability

No description provided by source. || || | || o,7 || . o7 || q||| ow, : / / . =By: Qabandi =Email: iqaahotmail.fr From Kuwait PEACE =Vuln: Traidnt Up version 2.0 Auth Bypass / Cookie SQL Injection Vulnerability =INFO: http://traidnt.net/vb/showthread.php?t=943260 =BUY: ---- =DORK: ----...

Traidnt Up 2.0 - Cookie Authentication Bypass

|| || | || o,7 || . o7 || q||| ow, : / / . =By: Qabandi =Email: iqaahotmail.fr From Kuwait PEACE =Vuln: Traidnt Up version 2.0 Auth Bypass / Cookie SQL Injection Vulnerability =INFO: http://traidnt.net/vb/showthread.php?t=943260 =BUY: ---- =DORK: ----...

DOURAN Portal <= 3.9.0.23 Multiple Remote Vulnerabilities

Exploit for unknown platform in category web applications ========================================================= DOURAN Portal = 3.9.0.23 Multiple Remote Vulnerabilities ========================================================= Abysssec Inc Public Advisory Description : these vulnerabilites...

LightOpenCMS 0.1 - id SQL Injection

LightOpenCMS 0.1 - id SQL Injection + LightOpenCMS id SQL Injection Vulnerability + Author: Mi4night + Script: http://sourceforge.net/project/downloading.php?groupid=251474&filename=locms-0.1-pa.zip&a=4814604 + Injection:...

LightOpenCMS 0.1 (id) Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications ======================================================== LightOpenCMS 0.1 id Remote SQL Injection Vulnerability ======================================================== + LightOpenCMS id SQL Injection Vulnerability + Author: Mi4night +...

PHP Recommend 1.3 Bypass / Inclusion / Injection

Php Recommend "; $d = ""; $content = "".$b."?php // Php Recommmend // Created By Frax.dk // GNU Licens // Please do not delete this text $".$d."page = '".$formpage."'; $".$d."includetemplate = '".$formincludetemplate."'; $".$d."cap = '".$formcap."'; $".$d."title = '".$formtitle."'; $".$d."aula =...

Vpopmail/QmailAdmin User&#39;s Quota Multiple Integer Overflows

Author: Jacobo Avariento Gimeno Sofistic S.L. Contact: jacobo at sofistic.net Release Date: May 8, 2009 CVE/bugtraq id: Not assigned yet Severity: Low/Medium Vendor's Description of Software: ------------------------------------------------------------------------------------- „Vpopmail is a free...

Php Recommend <= 1.3 (AB/RFI/CI) Multiple Remote Vulnerabilities

Exploit for unknown platform in category web applications ================================================================ Php Recommend "; $d = ""; $content = "".$b."?php // Php Recommmend // Created By Frax.dk // GNU Licens // Please do not delete this text $".$d."page = '".$formpage."';...

LightBlog 9.9.2 Code Execution

"; 74. 75. $fd = fopen $newaccountfile, "w"; 76. chmod$newaccountfile, 0777; 77. fwrite $fd, $details; 78. fclose$fd; An attacker could be able to inject and execute arbitrary PHP code due to new accounts are saved with "php...

LightBlog 9.9.2 - register.php Remote Code Execution

LightBlog 9.9.2 - register.php Remote Code Execution "; 74. 75. $fd = fopen $newaccountfile, "w"; 76...

LightBlog <= 9.9.2 (register.php) Remote Code Execution Exploit

Exploit for unknown platform in category web applications =============================================================== LightBlog = 9.9.2 register.php Remote Code Execution Exploit =============================================================== ? /...

Flatchat 3.0 - &#039;pmscript.php&#039; Local File Inclusion

Flatchat 3.0 pmscript.php with Local File Inclusion Vulnerability + Discovered By SirGod + www.mortal-team.net + www.h4cky0u.org + Homepage : http://ninjadesigns.co.uk/ + Local File Inclusion - Vulnerable code in pmscript.php -------------------------------------------- $filename =...

Dokeos LMS 1.8.5 PHP Code Injection

striptags$el2'; 108. break; 109. case SORTSTRING : 110. $comparefunction = 'strnatcmpTableSort::orderingstringstriptags$el1...

Dokeos Lms 1.8.5 - &#039;whoisonline.php&#039; PHP Code Injection

striptags$el2'; 108. break; 109. case SORTSTRING : 1...

Creasito e-Commerce 1.3.16 (Auth Bypass) SQL Injection Vuln

No description provided by source. Salvatore "drosophila" Fresta + Application: creasito e-commerce content manager + Version: 1.3.16 + Website: http://creasito.bloghosteria.com + Bugs: A Authentication Bypass + Exploitation: Remote + Date: 20 Apr 2009 + Discovered by: Salvatore "drosophila" Fres...

TotalCalendar 2.4 Local File Inclusion

TotalCalendar 2.4 include Local File Inclusion + Discovered By SirGod + www.mortal-team.org + www.h4cky0u.org + Local File Inclusion Vulnerable code in cmsdetect.php: ------------------------------------------------------------------------------- Line 26 : $include = isset$REQUEST'include' ?...

Creasito E-Commerce SQL Injection

Salvatore "drosophila" Fresta + Application: creasito e-commerce content manager + Version: 1.3.16 + Website: http://creasito.bloghosteria.com + Bugs: A Authentication Bypass + Exploitation: Remote + Date: 20 Apr 2009 + Discovered by: Salvatore "drosophila" Fresta + Author: Salvatore "drosophila"...

DNS Tools (PHP Digger) Remote Command Execution Vuln

No description provided by source. + DNS Tools PHP Digger Remote Command Execution + Discovered By SirGod + www.mortal-team.org + www.h4cky0u.org + Remote Command Execution - Vulnerable code in dig.php ------------------------------------------ $ns = $GET'ns'; system "dig @$ns $host $querytype";...