CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Prion•added 2010/01/04 9:30 p.m.•8 views

Sql injection

SQL injection vulnerability in profile.php in WebLeague 2.2.0 allows remote attackers to execute arbitrary SQL commands via the name parameter...

7.5CVSS9.1AI score0.00253EPSS

Exploits0References2Affected Software1

NVD•added 2010/01/04 9:30 p.m.•8 views

CVE-2009-4560

SQL injection vulnerability in profile.php in WebLeague 2.2.0 allows remote attackers to execute arbitrary SQL commands via the name parameter...

7.5CVSS8.3AI score0.00253EPSS

Prion•added 2010/01/04 9:30 p.m.•9 views

Sql injection

6.8CVSS9.4AI score0.00253EPSS

Exploits0References2Affected Software1

Cvelist•added 2010/01/04 9:0 p.m.•14 views

CVE-2009-4560

SQL injection vulnerability in profile.php in WebLeague 2.2.0 allows remote attackers to execute arbitrary SQL commands via the name parameter...

8.3AI score0.00253EPSS

CVE•added 2010/01/04 9:0 p.m.•42 views

CVE-2009-4561

CVE-2009-4561 affects WebLeague 2.2.0 (Admin/index.php). The vulnerability consists of multiple SQL injection flaws that allow remote attackers to execute arbitrary SQL commands via the (1) username and (2) password parameters when magic_quotes_gpc is disabled. The NVD entry documents a CVSS v2 b...

6.8CVSS8.9AI score0.00253EPSS

Exploits0References2Affected Software1

Cvelist•added 2010/01/04 9:0 p.m.•13 views

CVE-2009-4561

8.7AI score0.00253EPSS

Packet Storm•added 2009/07/17 12:0 a.m.•17 views

WebLeague 2.2.0 SQL Injection

DESCRIPTION: WebLeague 2.2.0 profile.php Remote SQL Injection DISCOVERED BY: Arka69 BUG: SQL Injection DOWNLOAD: http://www.worms-league.com/WebLeague/WebLeague2.2.0.zip EXPLOIT: profile.php?name='+UNION+SELECT+1,password,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22+FROM+webladmin%23...

Packet Storm•added 2009/07/17 12:0 a.m.•19 views

WebLeague 2.2.0 Password Changer

TiGeR-Dz WebLeague 2.2.0 install.phpRemote Change Password By: TiGeR-Dz POC :http://www.victim.com/path/install.php Put Name and password : Dork:"powered by: WebLeague" TiGeR-Dz...

0.1AI score

Packet Storm•added 2009/07/17 12:0 a.m.•40 views

WebLeague 2.2.0 SQL Injection / Authentication Bypass

!/usr/bin/perl -W WebLeague 2.2.0 Remote Admin Bypass p0c written by ka0x need magicquotesgpc = Off Vuln code Admin/index.php : 10: $sql="SELECT FROM $admintable WHERE name = '$POSTusername' AND password = '$POSTpassword'"; // --- NOT CLEAN $POST VARS 11: $result=mysqlquery$sql,$db; 12: $number =...

1AI score

seebug.org•added 2009/07/16 12:0 a.m.•17 views

webLeague 2.2.0 (Auth Bypass) Remote SQL Injection Exploit

No description provided by source. !/usr/bin/perl -W WebLeague 2.2.0 Remote Admin Bypass p0c written by ka0x ka0x01atgmail.com need magicquotesgpc = Off Vuln code Admin/index.php : 10: $sql="SELECT FROM $admintable WHERE name = '$POSTusername' AND password = '$POSTpassword'"; // --- NOT CLEAN $PO...

exploitpack•added 2009/07/16 12:0 a.m.•15 views

webLeague 2.2.0 - install.php Remote Change Password

webLeague 2.2.0 - install.php Remote Change Password TiGeR-Dz WebLeague 2.2.0 install.phpRemote Change Password By: TiGeR-Dz POC :http://www.victim.com/path/install.php Put Name and password : Dork:"powered by: WebLeague" TiGeR-Dz milw0rm.com 2009-07-16...

0.1AI score

Exploit DB•added 2009/07/16 12:0 a.m.•29 views

webLeague 2.2.0 - Authentication Bypass

7.4AI score

Exploit DB•added 2009/07/16 12:0 a.m.•25 views

webLeague 2.2.0 - 'install.php' Remote Change Password

TiGeR-Dz WebLeague 2.2.0 install.phpRemote Change Password By: TiGeR-Dz POC :http://www.victim.com/path/install.php Put Name and password : Dork:"powered by: WebLeague" TiGeR-Dz milw0rm.com 2009-07-16...

7.4AI score

0day.today•added 2009/07/16 12:0 a.m.•32 views

webLeague 2.2.0 (install.php) Remote Change Password Exploit

Exploit for unknown platform in category web applications ============================================================ webLeague 2.2.0 install.php Remote Change Password Exploit ============================================================ WebLeague 2.2.0 install.phpRemote Change Password By:...

seebug.org•added 2009/07/16 12:0 a.m.•29 views

webLeague 2.2.0 (install.php) Remote Change Password Exploit

No description provided by source. TiGeR-Dz WebLeague 2.2.0 install.phpRemote Change Password By: TiGeR-Dz POC :http://www.victim.com/path/install.php Put Name and password : Dork:"powered by: WebLeague" TiGeR-Dz sebug.net...

exploitpack•added 2009/07/15 12:0 a.m.•18 views

WebLeague 2.2.0 - profile.php SQL Injection

WebLeague 2.2.0 - profile.php SQL Injection DESCRIPTION: WebLeague 2.2.0 profile.php Remote SQL Injection DISCOVERED BY: Arka69 BUG: SQL Injection DOWNLOAD: http://www.worms-league.com/WebLeague/WebLeague2.2.0.zip EXPLOIT:...

0day.today•added 2009/07/15 12:0 a.m.•22 views

WebLeague 2.2.0 (profile.php) SQL Injection Vulnerability

Exploit for unknown platform in category web applications ========================================================= WebLeague 2.2.0 profile.php SQL Injection Vulnerability ========================================================= DESCRIPTION: WebLeague 2.2.0 profile.php Remote SQL Injection...