23 matches found
TutorialCMS <= 1.00 (search.php search) SQL Injection Exploit
No description provided by source. !/usr/bin/perl -w TutorialCMS = 1.00 SQL Injection Exploit Discovered by: Silentz Payload: Admin Username & Hash Retrieval Website: http://www.w4ck1ng.com Vulnerable Code search.php: $search = $REQUEST'search'; $sql = SELECT FROM tutorials WHERE title LIKE...
TaskDriver <= 1.2 Login Bypass/SQL Injection Exploit
No description provided by source. !/usr/bin/perl -w TaskDriver = 1.2 Login Bypass/SQL Injection Exploit Discovered by: Silentz Payload: Login Bypass & Admin Username & Hash Retrieval Website: http://www.w4ck1ng.com Vulnerable Code login.php: $sql = SELECT FROM $userstable WHERE username =...
SimpleNews <= 1.0.0 FINAL (print.php news_id) SQL Injection Exploit
No description provided by source. !/usr/bin/perl -w SimpleNews = 1.0.0 FINAL SQL Injection Exploit Discovered by: Silentz Payload: Admin Username & Hash Retrieval Website: http://www.w4ck1ng.com Vulnerable Code print.php: $newsid = $GET'newsid'; $query = SELECT FROM simplenewsarticles WHERE news...
PHP Script Directory Software (sbcat_id) SQL Injection Vulnerability
No description provided by source. == Author: BorN To K!LL - h4ck3r Contact: [email protected] == Script: PHP script directory software Version: n/a Link: http://www.softbizsolutions.com/script-directory-software.php == 3xploit: path/showcats.php?sbcatid=SQL-Injection 3xample:...
PHP Script Directory Software (sbcat_id) SQL Injection Vulnerability
Exploit for php platform in category web applications == Author: BorN To K!LL - h4ck3r Contact: email protected == Script: PHP script directory software Version: n/a Link: http://www.softbizsolutions.com/script-directory-software.php == 3xploit: path/showcats.php?sbcatid=SQL-Injection 3xample:...
PHP Lowbids - 'viewfaqs.php' Blind SQL Injection
== +Script: PHP Lowbids +Version: n/a +Link: http://phplowbids.com == +Author: BorN To K!LL - h4ck3r +Contact: [email protected] == +3xploit: /viewfaqs.php?cat=Blind-Injection +3xample: /viewfaqs.php?cat=1 and substringversion,1,1=4 // true /viewfaqs.php?cat=1 and substringversion,1,1=5 // false ...
PHP auctions - viewfaqs.php Blind SQL Injection
PHP auctions - viewfaqs.php Blind SQL Injection == Script: PHP auctions Version: n/a Link: http://phpauctions.info == Author: BorN To K!LL - h4ck3r Contact: [email protected] == 3xploit: /viewfaqs.php?cat=Blind-Injection 3xample: /viewfaqs.php?cat=2 and substringversion,1,1=4 // false ,,...
Zenphoto 1.1.3 (rss.php albumnr) Remote SQL Injection Exploit
Exploit for unknown platform in category web applications ============================================================= Zenphoto 1.1.3 rss.php albumnr Remote SQL Injection Exploit ============================================================= !/usr/bin/perl -w Zenphoto 1.1.3 SQL Injection Exploit...
Jasmine CMS 1.0 - SQL Injection Remote Code Execution
Jasmine CMS 1.0 - SQL Injection Remote Code Execution !/usr/bin/php -q -d shortopentag=on ?php errorreporting0; iniset"maxexecutiontime",0; iniset"defaultsockettimeout",5; if $argc4 print "-------------------------------------------------------------------------\r\n"; print " Jasmine CMS 1.0 SQL...
Fuzzylime Forum 1.0 (low.php topic) Remote SQL Injection Exploit
Exploit for unknown platform in category web applications ================================================================ Fuzzylime Forum 1.0 low.php topic Remote SQL Injection Exploit ================================================================ !/usr/bin/perl -w Fuzzylime Forum 1.0 SQL...
Comicsense 0.2 - 'index.php?epi' SQL Injection (2)
!/usr/bin/perl -w ComicSense 0.2 SQL Injection Exploit Discovered by: s0cratex Payload: Admin Username & Hash Retrieval Website: http://www.w4ck1ng.com Original Advisory: http://seclists.org/bugtraq/2007/Jun/0063.html http://milw0rm.com/exploits/4035 Vulnerable Code index.php: $sqlQuery = "SELECT...
Comicsense 0.2 - index.php?epi SQL Injection (2)
Comicsense 0.2 - index.php?epi SQL Injection 2 !/usr/bin/perl -w ComicSense 0.2 SQL Injection Exploit Discovered by: s0cratex Payload: Admin Username & Hash Retrieval Website: http://www.w4ck1ng.com Original Advisory: http://seclists.org/bugtraq/2007/Jun/0063.html http://milw0rm.com/exploits/4035...
Dokeos 1.6.5 - courseLog.php?scormcontopen SQL Injection
Dokeos 1.6.5 - courseLog.php?scormcontopen SQL Injection !/usr/bin/perl -w Dokeos = 1.6.5 SQL Injection Exploit Discovered by: Silentz Payload: Admin Username & Hash Retrieval Website: http://www.w4ck1ng.com Vulnerable Code courseLog.php: if $GET'scormcontopen'...
TutorialCMS 1.01 - Authentication Bypass
TutorialCMS 1.01 - Authentication Bypass TutorialCMS = 1.01 Authentication Bypass Discovered by: Silentz Payload: Authentication Bypass Website: http://www.w4ck1ng.com Vulnerability: Variables $loggedIn & $activated are not predefined. Vulnerable Files: login.php headerLinks.php submit1.php...
TutorialCMS 1.01 - Authentication Bypass
TutorialCMS = 1.01 Authentication Bypass Discovered by: Silentz Payload: Authentication Bypass Website: http://www.w4ck1ng.com Vulnerability: Variables $loggedIn & $activated are not predefined. Vulnerable Files: login.php headerLinks.php submit1.php myFav.php userCP.php PoC:...
FAQEngine <= 4.16.03 (question.php questionref) SQL Injection Exploit
No description provided by source. !/usr/bin/perl -w FAQEngine = v4.16.03 SQL Injection Exploit Discovered by: Silentz Payload: Admin Username & Hash Retrieval Website: http://www.w4ck1ng.com Vulnerable Code question.php: $sql = "select from ".$tableprefix."questions where publish=1 and...
FAQEngine <= 4.16.03 (question.php questionref) SQL Injection Exploit
No description provided by source. !/usr/bin/perl -w FAQEngine = v4.16.03 SQL Injection Exploit Discovered by: Silentz Payload: Admin Username & Hash Retrieval Website: http://www.w4ck1ng.com Vulnerable Code question.php: $sql = "select from ".$tableprefix."questions where publish=1 and...
FAQEngine 4.16.03 - 'question.php?questionref' SQL Injection
!/usr/bin/perl -w FAQEngine = v4.16.03 SQL Injection Exploit Discovered by: Silentz Payload: Admin Username & Hash Retrieval Website: http://www.w4ck1ng.com Vulnerable Code question.php: $sql = "select from ".$tableprefix."questions where publish=1 and questionref=$questionref order by enterdate...
TaskDriver <= 1.2 Login Bypass/SQL Injection Exploit
Exploit for unknown platform in category web applications ==================================================== TaskDriver = 1.2 Login Bypass/SQL Injection Exploit ==================================================== !/usr/bin/perl -w TaskDriver = 1.2 Login Bypass/SQL Injection Exploit Discovered...
TutorialCMS <= 1.00 (search.php search) SQL Injection Exploit
Exploit for unknown platform in category web applications ============================================================= TutorialCMS alert'http://www.w4ck1ng.com' PoC: http://victim.com/search.php?search=' UNION SELECT 0,0,0,0,username, password,0,0,0,0,0,0,0 FROM users WHERE id='1' / Subject To:...