EUVD-2006-6281

Malware in sbrugna...

EUVD-2007-2879

Malware in sbrugna...

Kisisel Portfolyo Scripti 4.031 SQL Injection

======================================================================== | Title : KiAisel Portfolyo Scripti 4.031 Sql injection vulnerability | Author : indoushka | email : [email protected] | Tested on : windows 10 FranASSais V.Pro | Version : 4.031 | Vendor :...

Who's Who Script - CSRF Exploit (Add Admin Account)

No description provided by source. Title : Who's Who Script CSRF Exploit Add Admin Account Author : ZoRLu / [email protected] / [email protected] Home : http://milw00rm.com / its online Date : 30.10.2014 Demo : http://demo.phpscriptlerim.com/free/whoswho/ Download1 :...

Webyapar 2.0 - Multiple Remote SQL Injection Vulnerabilities

No description provided by source. /$$$$$$$$$$$////$$$$$$$$$$$///////////////$$$$$$$$$$$$$$$//$$$$$$$$$$$$$$$/ ////////$$$$$$$$//////////$$$$$$$$/////////////////$$$$$//$$$$/////////////$$$$////////////...

Metyus Okul Yonetim 1.0 Sistemi Uye_giris_islem.ASP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/21418/info Metyus Okul Yonetim Sistemi is prone to an SQL-injection vulnerability because it fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to...

xWeblog v2.2 Insecure Cookie Handling Vulnerability

Exploit for php platform in category web applications =================================================== xWeblog v2.2 Insecure Cookie Handling Vulnerability =================================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'...

CVE-2007-2887

CVE-2007-2887 is a cross-site scripting (XSS) vulnerability in the Web Icerik Yonetim Sistemi (WIYS) 1.0, affecting the index.php page. The issue is exploitable via the No parameter on the Sayfa page, allowing remote attackers to inject arbitrary web script or HTML. The connected records confirm ...

Metyus Okul Yonetim Sistemi Uye_giris_islem.ASP SQL注入漏洞

Metyus Okul Yonetim Sistemi是一款基于ASP的WEB应用程序。 Metyus Okul Yonetim Sistemi不充分过滤用户提交的URI输入，远程攻击者可以利用漏洞进行SQL注入攻击，获得敏感信息。 问题是'Uyegirisislem.ASP'脚本对用户提交的WEB参数缺少过滤，提交恶意SQL查询作为参数数据，可更改原来的SQL逻辑，获得敏感信息。 MaxiASP Yonetimi 1.0 http://www.maxiasp.com/scriptler.asp?ktno=1 titleRemote Admin Attack - LiderHack.Or...

CVE-2006-6298

SQL injection vulnerability in uyegirisislem.asp in Metyus Okul Yonetim Sistemi 1.0 allows remote attackers to execute arbitrary SQL commands via the 1 kullaniciismi and 2 sifre parameters...

CVE-2006-6298

SQL injection vulnerability in uyegirisislem.asp in Metyus Okul Yonetim Sistemi 1.0 allows remote attackers to execute arbitrary SQL commands via the 1 kullaniciismi and 2 sifre parameters...

CVE-2006-6298

SQL injection vulnerability in uyegirisislem.asp in Metyus Okul Yonetim Sistemi 1.0 allows remote attackers to execute arbitrary SQL commands via the 1 kullaniciismi and 2 sifre parameters...

CVE-2006-6298

CVE-2006-6298 describes a SQL injection vulnerability in the web application component uye_giris_islem.asp of Metyus Okul Yonetim Sistemi 1.0. The vulnerability allows remote attackers to execute arbitrary SQL commands via the (1) kullanici_ismi and (2) sifre parameters, potentially compromising ...

Metyus Okul Yonetim 1.0 - Sistemi Uye_giris_islem.asp SQL Injection

Metyus Okul Yonetim 1.0 - Sistemi Uyegirisislem.asp SQL Injection source: https://www.securityfocus.com/bid/21418/info Metyus Okul Yonetim Sistemi is prone to an SQL-injection vulnerability because it fails to properly sanitize user-supplied input before using it in an SQL query. A successful...