15 matches found
EUVD-2005-3934
Malware in sbrugna...
WSN Knowledge Base 1.2 index.php Multiple Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/15656/info WSN Knowledge Base is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful...
Multiple WebmasterSite Products Remote Command Execution Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/30572/info Multiple WebmasterSite products are prone to a remote shell command-execution vulnerability because the applications fail to sufficiently sanitize user-supplied data. Successfully exploiting this issue will all...
WSN Knowledge Base 1.2 memberlist.php id Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/15656/info WSN Knowledge Base is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful...
WSN Knowledge Base 1.2 comments.php id Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/15656/info WSN Knowledge Base is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful...
WSN Knowledge Base CSRF Vulnerability
Exploit for php platform in category web applications Exploit Title: WSN Knowledge Base CSRF Author: Jonturk75 Vendor or Software Link: http://www.scripts.com/viewscript/wsn-knowledge-base/19009/ Category:: webapps Demo : http://demo.wsnforum.com/wsnkbadmin/admin/ Greetz: Inj3ct0r Exploit DataBas...
WebmasterSite (Multiple Products) - Remote Command Execution
WebmasterSite Multiple Products - Remote Command Execution source: https://www.securityfocus.com/bid/30572/info Multiple WebmasterSite products are prone to a remote shell command-execution vulnerability because the applications fail to sufficiently sanitize user-supplied data. Successfully...
Wsn (Multiple Products) - Local File Inclusion / Code Execution
Author: otmorozok428, http://forum.antichat.ru Products: Wsn Forum Enter to upload: http://www.site.com/forum/profile.php?action=editprofile&id=Your User ID See the avatar name at your profile. Upload evil avatar and go to: index.php?custom=yes&TID=../../attachments/avatars/Avatar...
WebmasterSite (Multiple Products) - Remote Command Execution
source: https://www.securityfocus.com/bid/30572/info Multiple WebmasterSite products are prone to a remote shell command-execution vulnerability because the applications fail to sufficiently sanitize user-supplied data. Successfully exploiting this issue will allow an attacker to execute arbitrar...
wsnprod-lfiexec.txt
Author: otmorozok428, http://forum.antichat.ru Products: Wsn Forum Enter to upload: http://www.site.com/forum/profile.php?action=editprofile&id=Your User ID See the avatar name at your profile. Upload evil avatar and go to: index.php?custom=yes&TID=../../attachments/avatars/Avatar...
CVE-2005-3939
CVE-2005-3939 describes multiple SQL injection vulnerabilities in the WSN Knowledge Base 1.2.0 and earlier. The flaws allow remote attackers to execute arbitrary SQL commands via parameters in displaycat (catid, perpage, ascdesc, orderlinks) and via the id parameter in comments.php and memberlist...
CVE-2005-3939
Multiple SQL injection vulnerabilities in WSN Knowledge Base 1.2.0 and earler allow remote attackers to execute arbitrary SQL commands via the 1 catid, 2 perpage, 3 ascdesc, and 4 orderlinks in a displaycat action in a index.php; and the 5 id parameter in b comments.php and c memberlist.php...
CVE-2005-3939
Multiple SQL injection vulnerabilities in WSN Knowledge Base 1.2.0 and earler allow remote attackers to execute arbitrary SQL commands via the 1 catid, 2 perpage, 3 ascdesc, and 4 orderlinks in a displaycat action in a index.php; and the 5 id parameter in b comments.php and c memberlist.php...
WSN Knowledge Base 1.2 - 'index.php' Multiple SQL Injections
source: https://www.securityfocus.com/bid/15656/info WSN Knowledge Base is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could result in a...
WSN Knowledge Base 1.2 - comments.php?id SQL Injection
WSN Knowledge Base 1.2 - comments.php?id SQL Injection source: https://www.securityfocus.com/bid/15656/info WSN Knowledge Base is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQ...