CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

24 matches found

seebug.org•added 2014/07/01 12:0 a.m.•16 views

PHPNet <= 1.8 (ler.php) SQL Injection

No description provided by source. ?php Exploit Title: PHPNet = 1.8 ler.php SQL Injection Exploit Author: WhiteCollarGroup Date: 06th 06 2012 Vendor homepage: http://www.phpnet.com.br/ Software Link: http://phpbrasil.com/script/Wb03ErMczAho/phpnetartigos Google Dork: intext:Powerd by Nielson Roch...

seebug.org•added 2014/07/01 12:0 a.m.•34 views

Taboada Macronews <= 1.0 - SQLi Exploit

No description provided by source. ?php / Exploit Title: Taboada Macronews = 1.0 SQLi Exploit Date: 03rd January 2013 Exploit Author: WhiteCollarGroup Software Link: http://www.scriptbrasil.com.br/download/codigo/7144/ Version: 1.0 Google Dork: intext:Powered by: joaotaboada.com Usage: php...

seebug.org•added 2014/07/01 12:0 a.m.•15 views

NewsAdd <= 1.0 - Multiple SQL Injection Vulnerabilities

No description provided by source. Exploit Title: NewsAdd =1.0 Multiple SQL Injection Google Dork: ----------------------------------- Date: 2012/05/29 Author: WhiteCollarGroup Software Link: http://phpbrasil.com/script/3tCyUs1JeL1M/newsadd--mysql Version: 1.0 Tested on: Debian GNU/Linux Develope...

Exploit DB•added 2014/01/04 12:0 a.m.•36 views

Taboada Macronews 1.0 - SQL Injection

?php / Exploit Title: Taboada Macronews = 1.0 SQLi Exploit Date: 03rd January 2013 Exploit Author: WhiteCollarGroup Software Link: http://www.scriptbrasil.com.br/download/codigo/7144/ Version: 1.0 Google Dork: intext:"Powered by: joaotaboada.com" Usage: php filename.php / function puts$str echo...

exploitpack•added 2014/01/04 12:0 a.m.•17 views

Taboada Macronews 1.0 - SQL Injection

Taboada Macronews 1.0 - SQL Injection ?php / Exploit Title: Taboada Macronews = 1.0 SQLi Exploit Date: 03rd January 2013 Exploit Author: WhiteCollarGroup Software Link: http://www.scriptbrasil.com.br/download/codigo/7144/ Version: 1.0 Google Dork: intext:"Powered by: joaotaboada.com" Usage: php...

exploitpack•added 2012/10/07 12:0 a.m.•19 views

Blog Mod 0.1.9 - index.php?month SQL Injection

Blog Mod 0.1.9 - index.php?month SQL Injection How does this exploit works? It exploits one of the several SQL Injections in the system. Specifiedly, in the file "index.php", parr "month". Usage: php filename.php / function puts$str echo $str."\n"; function gets return trimfgetsSTDIN; function...

Exploit DB•added 2012/10/07 12:0 a.m.•20 views

Blog Mod 0.1.9 - 'index.php?month' SQL Injection

How does this exploit works? It exploits one of the several SQL Injections in the system. Specifiedly, in the file "index.php", parr "month". Usage: php filename.php / function puts$str echo $str."\n"; function gets return trimfgetsSTDIN; function hex$string $hex=''; // PHP 'Dim' = for $i=0; $i...

Exploit DB•added 2012/08/08 12:0 a.m.•23 views

WespaJuris 3.0 - Multiple Vulnerabilities

Then, go to http://localhost/juris/clientdir/30/dl/webshell.php and see your webshell. :: How this exploit works? Manually work. Login bypass On login form, enter "SQLi strings":...

0day.today•added 2012/08/08 12:0 a.m.•22 views

WespaJuris <= 3.0 upload shell Vulnerability

Exploit for php platform in category web applications Then, go to http://localhost/juris/clientdir/30/d...

Packet Storm•added 2012/08/07 12:0 a.m.•12 views

WespaJuris 3.0 Shell Upload / SQL Injection

Then, go to http://localhost/juris/clientdir/30/dl/webshell.php and see your webshell. :: How this exploit works? Manually work. Login bypass On login form, enter "SQLi strings"...

exploitpack•added 2012/06/11 12:0 a.m.•11 views

TheBlog 2.0 - Multiple Vulnerabilities

TheBlog 2.0 - Multiple Vulnerabilities = 5, on SQL codes to insert, you must replace all: TYPE=MyISAM By: ENGINE=InnoDB -+- We discovered multiple vulnerabilities on this system. All in index.php, vars: SQL Injection index.php?id=sqli index.php?cat=sqli index.php?archives=sqli without "-" XSS...

0day.today•added 2012/06/11 12:0 a.m.•15 views

TheBlog <= 2.0 Multiple Vulnerabilities

Exploit for php platform in category web applications = 5, on SQL codes to insert, you must replace all: TYPE=MyISAM By: ENGINE=InnoDB -+- We discovered multiple vulnerabilities on this system. All in index.php, vars: SQL Injection index.php?id=sqli index.php?cat=sqli index.php?archives=sqli...

Exploit DB•added 2012/06/11 12:0 a.m.•19 views

TheBlog 2.0 - Multiple Vulnerabilities

= 5, on SQL codes to insert, you must replace all: TYPE=MyISAM By: ENGINE=InnoDB -+- We discovered multiple vulnerabilities on this system. All in index.php, vars: SQL Injection index.php?id=sqli index.php?cat=sqli index.php?archives=sqli without "-" XSS Persistent stored When reading a post,...

Packet Storm•added 2012/06/08 12:0 a.m.•14 views

PHPNet 1.8 SQL Injection

SQL Injection This exploit is for a vulnerability in ler.php, but are the same vulnerability on imprimir.php and imagem.php. ler.php?id=SQLi imprimir.php?id=SQLi imagem.php?id=SQLi Usage: php file.php http://server/path/ Login bypass In login page, you can bypass the login using "SQLi strings". G...

Packet Storm•added 2012/06/07 12:0 a.m.•15 views

SN News 1.2 SQL Injection

\n"; echo "Example:\n"; echo "php $argv0 http://www.website.com/snnews\n"; exit; $target = $argv1; ifsubstr$target, strlen$target-1!="/" $target .= "/"; $inject = $target . "visualiza.php?id=-0'%20"; $token = uniqid; $tokenhex = hex$token; echo " Trying to get informations...\n"; $infos =...

exploitpack•added 2012/06/07 12:0 a.m.•18 views

PHPNet 1.8 - ler.php SQL Injection

PHPNet 1.8 - ler.php SQL Injection SQL Injection This exploit is for a vulnerability in ler.php, but are the same vulnerability on imprimir.php and imagem.php. ler.php?id=SQLi imprimir.php?id=SQLi imagem.php?id=SQLi Usage: php file.php http://server/path/ Login bypass In login page, you can bypas...

Exploit DB•added 2012/06/07 12:0 a.m.•49 views

PHPNet 1.8 - 'ler.php' SQL Injection

SQL Injection This exploit is for a vulnerability in ler.php, but are the same vulnerability on imprimir.php and imagem.php. ler.php?id=SQLi imprimir.php?id=SQLi imagem.php?id=SQLi Usage: php file.php http://server/path/ Login bypass In login page, you can bypass the login using "SQLi strings". G...

exploitpack•added 2012/06/06 12:0 a.m.•14 views

SN News 1.2 - visualiza.php SQL Injection

SN News 1.2 - visualiza.php SQL Injection \n"; echo "Example:\n"; echo "php $argv0 http://www.website.com/snnews\n"; exit; $target = $argv1; ifsubstr$target, strlen$target-1!="/" $target .= "/"; $inject = $target . "visualiza.php?id=-0'%20"; $token = uniqid; $tokenhex = hex$token; echo " Trying t...

Exploit DB•added 2012/06/06 12:0 a.m.•29 views

SN News 1.2 - 'visualiza.php' SQL Injection

\n"; echo "Example:\n"; echo "php $argv0 http://www.website.com/snnews\n"; exit; $target = $argv1; ifsubstr$target, strlen$target-1!="/" $target .= "/"; $inject = $target . "visualiza.php?id=-0'%20"; $token = uniqid; $tokenhex = hex$token; echo " Trying to get informations...\n"; $infos =...

Exploit DB•added 2012/06/04 12:0 a.m.•25 views

Mnews 1.1 - 'view.php' SQL Injection

\n"; echo "Example:\n"; echo "php $argv0 http://www.website.com/mnews\n"; exit; $target = $argv1; ifsubstr$target, strlen$target-1!="/" $target .= "/"; $inject = $target . "view.php?id=-0'%20"; $token = uniqid; $tokenhex = hex$token; echo " Trying to get informations...\n"; $infos =...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by