Lucene search
K

143 matches found

Cvelist
Cvelist
added 2007/01/19 11:0 p.m.22 views

CVE-2007-0372

Multiple SQL injection vulnerabilities in Francisco Burzi PHP-Nuke 7.9 allow remote attackers to execute arbitrary SQL commands via 1 the active parameter in admin/modules/modules.php; the 2 adclass, 3 imageurl, 4 clickurl, 5 adcode, or 6 position parameter in modules/Advertising/admin/index.php;...

8.5AI score0.03855EPSS
Exploits1References9
seebug.org
seebug.org
added 2006/12/19 12:0 a.m.17 views

mxBB Module WebLinks <= 2.05 Remote Inclusion Vulnerability

No description provided by source. Title : mxBB Module WebLinks = 2.05mxrootpath Remote File Include Vulnerability Author : ajann Contact : : S.Page : http://www.mx-system.com Dork : /modules/mxlinks/ ERROR------------------------------------------------------ .... .. includeonce $mxrootpath...

7.1AI score
Exploits0
securityvulns
securityvulns
added 2006/12/16 12:0 a.m.80 views

mxBB Module WebLinks <= 2.05(mx_root_path) Remote File Include Vulnerability

Title : mxBB Module WebLinks = 2.05mxrootpath Remote File Include Vulnerability Author : ajann Contact : : S.Page : http://www.mx-system.com Dork : /modules/mxlinks/ ERROR------------------------------------------------------ .... .. includeonce $mxrootpath...

0.3AI score
Exploits0
exploitpack
exploitpack
added 2006/12/16 12:0 a.m.16 views

mxBB Module WebLinks 2.05 - Remote File Inclusion

mxBB Module WebLinks 2.05 - Remote File Inclusion Title : mxBB Module WebLinks = 2.05mxrootpath Remote File Include Vulnerability Author : ajann Contact : : S.Page : http://www.mx-system.com Dork : /modules/mxlinks/ ERROR------------------------------------------------------ .... .. includeonce...

0.3AI score
Exploits0
0day.today
0day.today
added 2006/12/16 12:0 a.m.26 views

mxBB Module WebLinks <= 2.05 Remote Inclusion Vulnerability

Exploit for unknown platform in category web applications =========================================================== mxBB Module WebLinks = 2.05 Remote Inclusion Vulnerability =========================================================== Title : mxBB Module WebLinks = 2.05mxrootpath Remote File...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2006/12/16 12:0 a.m.38 views

mxBB Module WebLinks 2.05 - Remote File Inclusion

Title : mxBB Module WebLinks = 2.05mxrootpath Remote File Include Vulnerability Author : ajann Contact : : S.Page : http://www.mx-system.com Dork : /modules/mxlinks/ ERROR------------------------------------------------------ .... .. includeonce $mxrootpath...

7.4AI score
Exploits0
Cvelist
Cvelist
added 2006/09/25 1:0 a.m.18 views

CVE-2006-4969

Multiple PHP remote file inclusion vulnerabilities in WAHM E-Commerce Pie Cart Pro allow remote attackers to execute arbitrary PHP code via a URL in the IncDir parameter in 1 affiliates.php, 2 orders.php, 3 events.php, 4 index.php, 5 articles.php, 6 faqs.php, 7 guestbook.php, 8 catalog.php, 9...

7.7AI score0.07441EPSS
Exploits1References22
seebug.org
seebug.org
added 2006/09/19 12:0 a.m.18 views

Pie Cart Pro (Inc_Dir) Remote File Include Vulnerabilities

No description provided by source. ==================================================================== Pie Cart Pro = IncDir Remote File Inclusion Exploit ==================================================================== Critical Level : Dangerous By SnIpErSA http://www.doodlebabies.com/...

7.1AI score
Exploits0
0day.today
0day.today
added 2006/09/19 12:0 a.m.121 views

Pie Cart Pro (Inc_Dir) Remote File Include Vulnerabilities

Exploit for unknown platform in category web applications ========================================================== Pie Cart Pro IncDir Remote File Include Vulnerabilities ==========================================================...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2006/09/19 12:0 a.m.38 views

Pie Cart Pro - &#039;Inc_Dir&#039; Remote File Inclusion

==================================================================== Pie Cart Pro = IncDir Remote File Inclusion Exploit ==================================================================== Critical Level : Dangerous By SnIpErSA http://www.doodlebabies.com/...

7.4AI score
Exploits0
NVD
NVD
added 2006/07/10 8:5 p.m.13 views

CVE-2006-3481

Multiple SQL injection vulnerabilities in Joomla! before 1.0.10 allow remote attackers to execute arbitrary SQL commands via unspecified parameters involving the 1 "Remember Me" function, 2 "Related Items" module, and the 3 "Weblinks submission"...

7.5CVSS8.6AI score0.01692EPSS
Exploits0References9
Cvelist
Cvelist
added 2006/07/10 8:0 p.m.19 views

CVE-2006-3481

Multiple SQL injection vulnerabilities in Joomla! before 1.0.10 allow remote attackers to execute arbitrary SQL commands via unspecified parameters involving the 1 "Remember Me" function, 2 "Related Items" module, and the 3 "Weblinks submission"...

8.6AI score0.01692EPSS
Exploits0References9
NVD
NVD
added 2006/06/27 9:5 p.m.22 views

CVE-2006-3262

SQL injection vulnerability in the Weblinks module weblinks.php in Mambo 4.6rc1 and earlier allows remote attackers to execute arbitrary SQL commands via the title parameter...

7.5CVSS8.3AI score0.02442EPSS
Exploits1References9
NVD
NVD
added 2006/06/27 9:5 p.m.26 views

CVE-2006-3263

SQL injection vulnerability in the Weblinks module weblinks.php in Mambo 4.6rc1 and earlier allows remote attackers to execute arbitrary SQL commands via the catid parameter...

7.5CVSS8.3AI score0.01106EPSS
Exploits0References1
CVE
CVE
added 2006/06/27 9:0 p.m.56 views

CVE-2006-3262

The CVE-2006-3262 entry describes an SQL injection in the Weblinks module (weblinks.php) of Mambo 4.6rc1 and earlier. The vulnerability allows remote attackers to execute arbitrary SQL commands via the title parameter. Affected: Mambo 4.6rc1 and earlier (Weblinks component). Root cause: lack of i...

7.5CVSS8.3AI score0.02442EPSS
Exploits1References9Affected Software1
Cvelist
Cvelist
added 2006/06/27 9:0 p.m.28 views

CVE-2006-3263

SQL injection vulnerability in the Weblinks module weblinks.php in Mambo 4.6rc1 and earlier allows remote attackers to execute arbitrary SQL commands via the catid parameter...

8.3AI score0.01106EPSS
Exploits0References1
Cvelist
Cvelist
added 2006/06/27 9:0 p.m.27 views

CVE-2006-3262

SQL injection vulnerability in the Weblinks module weblinks.php in Mambo 4.6rc1 and earlier allows remote attackers to execute arbitrary SQL commands via the title parameter...

8.3AI score0.02442EPSS
Exploits1References9
CVE
CVE
added 2006/06/27 9:0 p.m.62 views

CVE-2006-3263

The CVE-2006-3263 issue is a SQL injection in the Weblinks module (weblinks.php) of Mambo 4.6rc1 and earlier. The root cause is unsanitized input through the catid parameter, enabling remote attackers to execute arbitrary SQL commands. Affected product: Mambo Weblinks component; affected version ...

7.5CVSS8.3AI score0.01106EPSS
Exploits0References1Affected Software1
Packet Storm
Packet Storm
added 2006/06/26 12:0 a.m.33 views

mambo_46rc1_sql.txt

!/usr/bin/php -q -d shortopentag=on mysqld --log=mambo.txt now login, go to "Submit Weblink" feature, in "Name: " field type: 99999' UNION SELECT IF ASCIISUBSTRINGpassword,1,1=0 & 1, benchmark200000000,CHAR0,0 FROM mosusers WHERE usertype='Super Administrator'/ in mambo.txt we have: 13 Query SELE...

7.4AI score
Exploits0
FreeBSD
FreeBSD
added 2006/06/26 12:0 a.m.15 views

Joomla -- multiple vulnerabilities

Joomla Site reports: Secured "Remember Me" functionality against SQL injection attacks Secured "Related Items" module against SQL injection attacks Secured "Weblinks" submission against SQL injection attacks Secured SEF from XSS vulnerability Hardened frontend submission forms against spoofing...

1AI score
Exploits0References2
Rows per page
Query Builder