header-logo
Suggest Exploit
explore-vulnerabilities

Explore Vulnerabilities

Version
Year

Explore all Exploits:

OpenRat <= 0.8-beta4 Remote File Inclusion Vulnerability

OpenRat is a free Web Content-Management-System. A vulnerability exists in OpenRat <= 0.8-beta4 which allows a remote attacker to include arbitrary files from local or external resources. This is due to the 'tpl_dir' parameter in 'themes/default/include/html/insert.inc.php' script not properly sanitized before being used to include files.

Fez software Version 1.3 AND 2.0 RC1 (list.php) – SQL Injection Vulnerability

Fez software versions 1.3 and 2.0 RC1 are vulnerable to SQL injection. An attacker can exploit this vulnerability by sending a specially crafted SQL query to the vulnerable list.php page. This can allow the attacker to gain access to sensitive information such as version, database, and user information.

basebuilder <= 2.0.1 Remote File Inclusion Vulnerability

A vulnerability exists in basebuilder version 2.0.1 and prior. The vulnerability is due to the 'src/main.inc.php' script not properly sanitizing user-supplied input to the 'mj_config[src_path]' parameter. This can be exploited to include arbitrary files from remote locations by passing a URL in the 'mj_config[src_path]' parameter.

Sagem Routers F@ST (1200/1240/1400/1400W/1500/1500-WG/2404) Remote CSRF Exploit (dhcp hostname attack)

Using DHCP as a method of attack, arbitrary and malicious scripting can be injected into the DHCP administrative and logs pages (if enabled). When the web administration toold is accessed, the code injection will execute with administrative privileges, which could lead to a complete compromise of the system.

MyBlog <= 0.9.8: PHP and MySQL Blog/CMS software / Cookie poisioning

MyBlog is an open source Blog/CMS project. It allows begginers to have a simple to use blog/cms and it will still please developers with feature packed system with plugins, themes and modules. You can alter cookies to get admin privileges. If you try to enter http://blog/admin you obtain: 'Please Login' and the cookie is some likes that: login=Pepelux; fontSize=80; PHPSESSID=913e40ece8c45da4e1ad5c6c44327926. But if you change the cookie and put, for example: admin=yes; login=admin; fontSize=80; PHPSESSID=913e40ece8c45da4e1ad5c6c44327926. Then you obtain complete access to the admin panel. Exploit: javascript:document.cookie = "admin=yes; login=admin".

Powered by WSN Links Free 4.0.34P Blind SQL Injection

This exploit is used to gain access to the user and password of a WSN Links Free 4.0.34P website. The exploit uses a blind SQL injection technique to gain access to the user and password. The exploit is done by sending a series of requests to the website with different parameters and checking the response. If the response is correct, the exploit will continue to the next step. The exploit will then use a brute force technique to gain access to the user and password.

WCMS v.1.0b (news_detail.asp id) Remote SQL Injection Vulnerability

A vulnerability exists in WCMS: Web Content Management System version v.1.0b, which allows an attacker to remotely inject malicious SQL commands. An attacker can exploit this vulnerability by sending a specially crafted HTTP request containing malicious SQL commands to the vulnerable application. This can allow the attacker to gain access to sensitive information such as usernames and passwords.

BuzzyWall <= 1.3.1 SQL Injection Vulnerability

A SQL injection vulnerability exists in BuzzyWall version 1.3.1. An attacker can exploit this vulnerability by sending a maliciously crafted HTTP request to the vulnerable application. This can allow the attacker to gain access to sensitive information such as login credentials, user data, etc. The vulnerability is due to the application not properly sanitizing user-supplied input.

Recent Exploits: