An attacker can exploit a SQL injection vulnerability in Flippy Answers – Questions and Answers Script v2.0.0 to gain access to the admin credentials. By sending a specially crafted HTTP request to the category.php page, an attacker can inject arbitrary SQL code into the application. This can be used to gain access to the admin credentials.
A SQL injection vulnerability exists in Flippy DamnFacts – Viral Fun Facts Sharing Script v1.1.0, which allows an attacker to execute arbitrary SQL commands via the 'id' parameter in the 'fact.php' script.
An attacker can exploit a SQL injection vulnerability in Flippy Inspired – Web Inspiration Gallery Script v1.0.0 to gain access to the administrator credentials. By sending a specially crafted HTTP request, an attacker can inject malicious SQL code into the application, which can be used to access the administrator credentials.
NewsBee is a Fully Featured News Site CMS (Content Management System). This CMS Includes almost everything you need to make a News Site easily and Creatively. The In build Features will help you to easily manage the site contents not only news articles, but also many other related contents which are commonly used in news sites. The vulnerability is a SQL Injection vulnerability which can be exploited by sending a malicious payload to the URL http://localhost/newsbee/30[payload]_news_thai_soccer_targets_asia_wide_goals.html. The payloads can be of type boolean-based blind, error-based, AND/OR time-based blind.
An attacker can exploit a SQL injection vulnerability in Flippy HotViral – Viral Pictures and Video Script v2.0.0 to gain access to the admin credentials. The attacker can send a malicious SQL query to the vulnerable parameter ‘id’ in the ‘picture.php’ and ‘video.php’ scripts. The malicious query will return the admin username and password in the response.
An SQL injection vulnerability exists in Flippy ScriptZone – Clone Script Directory Script v1.1.0. An attacker can send a specially crafted HTTP request to the vulnerable application in order to execute arbitrary SQL commands in the back-end database. This can potentially result in the manipulation or disclosure of application data.
An attacker can exploit a SQL injection vulnerability in Flippy ChillOut – Funny Image and Video Script v2.0.0 by sending a maliciously crafted HTTP request to the vulnerable application. This can allow the attacker to gain access to the database and execute arbitrary SQL commands.
Flippy LinkShare – Visual Link Sharing Websites Builder Script v2.1.0 is vulnerable to SQL injection. An attacker can exploit this vulnerability by sending malicious SQL queries to the vulnerable web application. This can allow the attacker to gain access to sensitive information such as usernames and passwords stored in the database. The vulnerable URLs are profile.php?id=[SQL], cat.php?cid=[SQL], user_posts.php?id=[SQL], etc. An example of a malicious SQL query is -9999+/*!50000union*/+select+1,2,3,4,concat_ws(0x3a,adminuser,0x3a,adminpassword),6,7,8,9,10,11,12,13,14,15+from+admin--.
Flippy eXtremeViral – Ultimate Viral Media Script v1.0 is vulnerable to SQL Injection. An attacker can exploit this vulnerability by sending a specially crafted SQL query to the vulnerable application. This can allow the attacker to gain access to sensitive information such as usernames and passwords stored in the database.
A SQL injection vulnerability exists in Flippy BuzzWorthy – Upworthy Clone Script v1.1.0. An attacker can send a specially crafted HTTP request to the vulnerable script and execute arbitrary SQL commands in application`s database. This can be exploited to manipulate or disclose data from the database.
Services By CQR