651 matches found
CVE-2008-0430
SQL injection vulnerability in form.php in 360 Web Manager 3.0 allows remote attackers to execute arbitrary SQL commands via the IDFM parameter...
CVE-2008-0430
CVE-2008-0430 describes an SQL injection vulnerability in the form.php component of 360 Web Manager 3.0, where an attacker can craft requests to the IDFM parameter to execute arbitrary SQL commands. The issue is exploitable remotely and can impact data confidentiality, integrity, and availability...
360-sql.txt
360 Web Manager CMS Remote SQL Injection Vulnerability Author: Ded MustD!e Site: http://www.360webmanager.com/ Google Dork: inurl:"IDFM=" "form.php" Exploit: http://site.com/form.php?IDM=7&IDSM=20&IDFM=-1+union+select+1,concatws0x3a,name,password,3,4...
360 Web Manager 3.0 (IDFM) SQL Injection Vulnerability
No description provided by source. 360 Web Manager CMS Remote SQL Injection Vulnerability Author: Ded MustD!e Site: http://www.360webmanager.com/ Google Dork: inurl:"IDFM=" "form.php" Exploit: http://site.com/form.php?IDM=7&IDSM=20&IDFM=-1+union+select+1,concatws0x3a,name,password,3,4...
360 Web Manager 3.0 (IDFM) SQL Injection Vulnerability
Exploit for unknown platform in category web applications ====================================================== 360 Web Manager 3.0 IDFM SQL Injection Vulnerability ====================================================== 360 Web Manager CMS Remote SQL Injection Vulnerability Author: Ded MustD!e...
360 Web Manager 3.0 - IDFM SQL Injection
360 Web Manager 3.0 - IDFM SQL Injection 360 Web Manager CMS Remote SQL Injection Vulnerability Author: Ded MustD!e Site: http://www.360webmanager.com/ Google Dork: inurl:"IDFM=" "form.php" Exploit: http://site.com/form.php?IDM=7&IDSM=20&IDFM=-1+union+select+1,concatws0x3a,name,password,3,4...
360 Web Manager 3.0 - 'IDFM' SQL Injection
360 Web Manager CMS Remote SQL Injection Vulnerability Author: Ded MustD!e Site: http://www.360webmanager.com/ Google Dork: inurl:"IDFM=" "form.php" Exploit: http://site.com/form.php?IDM=7&IDSM=20&IDFM=-1+union+select+1,concatws0x3a,name,password,3,4...
CVE-2004-2734
The CVE-2004-2734 issue affects Novell Web Manager on NetWare 6.5, where webadmin-apache.conf uses an uppercase Alias tag with a conflicting lowercase directory tag for a volume, enabling remote attackers to bypass access controls on the WEB-INF folder. This is confirmed in the NVD/NVD-derived de...
{x0n3-h4ck} DEV Web Manager System <= 1.5 XSS Exploit
-=--------------------ADVISORY-------------------=- -= =- -= DEV Web Manager System = 1.5 =- -= =- -= Author: CorryL corryl80 at gmail dot com email concealed =- -= www.x0n3-h4ck.org =- -=----------------------------------------------------=- -=+ Application: DEV Web Manager System -=+ Version: 1...
Dev Web Manager System 1.5 - index.php Cross-Site Scripting
Dev Web Manager System 1.5 - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/20590/info DEV Web Manager System is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to have...
Directory traversal in PCI NetSupport Manager
Directory traversal in web manager allows read access to whole disk content...