27 matches found
EUVD-2008-6966
Malware in sbrugna...
EUVD-2008-6965
Malware in sbrugna...
CVE-2025-57263
An authenticated SQL injection vulnerability in VX Guestbook 1.07 allows attackers with admin access to inject malicious SQL payloads via the "word" POST parameter in the words.php admin panel...
CVE-2025-57263
An authenticated SQL injection vulnerability in VX Guestbook 1.07 allows attackers with admin access to inject malicious SQL payloads via the "word" POST parameter in the words.php admin panel...
CVE-2025-57263
An authenticated SQL injection vulnerability in VX Guestbook 1.07 allows attackers with admin access to inject malicious SQL payloads via the "word" POST parameter in the words.php admin panel...
PT-2025-35939
Name of the Vulnerable Software and Affected Versions: VX Guestbook version 1.07 Description: An authenticated SQL injection vulnerability exists in VX Guestbook version 1.07. Attackers with admin access can inject malicious SQL payloads via the word POST parameter in the words.php admin panel...
CVE-2025-57263
The CVE-2025-57263 entry concerns VX Guestbook 1.07 with an authenticated SQL injection via the word POST parameter in the words.php admin panel. Attackers with admin privileges can inject malicious SQL payloads, indicating impact to data confidentiality, integrity, and availability as described ...
CVE-2025-57263
An authenticated SQL injection vulnerability in VX Guestbook 1.07 allows attackers with admin access to inject malicious SQL payloads via the "word" POST parameter in the words.php admin panel...
📄 VX Guestbook 1.07 SQL Injection
VX Guestbook version 1.07 suffers from a remote SQL injection vulnerability. Exploit Title: VX Guestbook SQL Injection Authenticated Date: 2025-08-02 Exploit Author: tmrswrr Category : Webapps Vendor: https://phpversion.com/ Version 1.07 1. Access the Admin Panel: - Click Words Censor...
Authentication flaw
Free PHP VX Guestbook 1.06 allows remote attackers to bypass authentication and gain administrative access by setting the 1 adminname and 2 adminpass cookie values to 1...
Authentication flaw
Free PHP VX Guestbook 1.06 allows remote attackers to bypass authentication and download a backup of the database via a direct request to admin/backupdb.php...
CVE-2008-7006
Free PHP VX Guestbook 1.06 allows remote attackers to bypass authentication and download a backup of the database via a direct request to admin/backupdb.php...
CVE-2008-7007
Free PHP VX Guestbook 1.06 allows remote attackers to bypass authentication and gain administrative access by setting the 1 adminname and 2 adminpass cookie values to 1...
CVE-2008-7007
CVE-2008-7007 affects Free PHP VX Guestbook 1.06. The vulnerability allows remote attackers to bypass authentication and gain administrative access by setting the admin_name and admin_pass cookies to 1. The root cause is improper cookie handling that accepts these values as valid credentials, ena...
CVE-2008-7006
Free PHP VX Guestbook 1.06 allows remote attackers to bypass authentication and download a backup of the database via a direct request to admin/backupdb.php...
CVE-2008-7007
Free PHP VX Guestbook 1.06 allows remote attackers to bypass authentication and gain administrative access by setting the 1 adminname and 2 adminpass cookie values to 1...
CVE-2008-7006
The CVE-2008-7006 entry affects Free PHP VX Guestbook 1.06. A vulnerability in admin/backupdb.php allows remote attackers to bypass authentication and download the database backup directly, exposing data without requiring login. The cited sources describe the issue and its impact as authenticatio...
Free PHP VX Guestbook 1.06 Insecure Cookie Handling Vulnerability
No description provided by source. + Free PHP VX Guestbook 1.06 Insecure Cookie Handling Vulnerability + Discovered By Stack + Greetz : All my freind --- exploit: javascript:document.cookie = "adminname=1; path=/"; document.cookie = "adminpass=1; path=/";...
freephpvx-database.txt
Free PHP VX Guestbook 1.06 Arbitrary Backup Database + Discovered By SirGod + wWw.MorTal-TeaM.OrG + Greetz : E.M.I.N.E.M,Ras,Puscasmarin,ToxicBlood,HrN,kemrayz,007m,Raven,Nytr0gen,str0ke + Arbitrary Backup Database Follow the example and the database download will begin : dbnamedbbackup.sql PoC :...
Free PHP VX Guestbook 1.06 Arbitrary Database Backup Vulnerability
No description provided by source. + Free PHP VX Guestbook 1.06 Arbitrary Backup Database + Discovered By SirGod + wWw.MorTal-TeaM.OrG + Greetz : E.M.I.N.E.M,Ras,Puscasmarin,ToxicBlood,HrN,kemrayz,007m,Raven,Nytr0gen,str0ke + Arbitrary Backup Database Follow the example and the database download...