exploit the possibilities
Showing 1 - 25 of 15,685 RSS Feed

SQL Injection Files

Unified Office Total Connect Now 1.0 SQL Injection
Posted Jun 17, 2021
Authored by Ajaikumar Nadar

Unified Office Total Connect Now version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | da2163d25a6ee8709e8be515ad7c68f3
Teachers Record Management System 1.0 SQL Injection
Posted Jun 16, 2021
Authored by nhattruong

Teachers Record Management System version 1.0 suffers from multiple remote SQL injection vulnerabilities. This report has additional payloads although the original discovery of SQL injection in this version is attributed to gh1mau in July of 2020.

tags | exploit, remote, vulnerability, sql injection
MD5 | c314128513b4635d95f6eb1300df19b2
Client Management System 1.1 SQL Injection
Posted Jun 15, 2021
Authored by BHAVESH KAUL

Client Management System version 1.1 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | b2a0f5124d38d078542b920ab171f2b8
Small CRM 3.0 SQL Injection
Posted Jun 14, 2021
Authored by BHAVESH KAUL

Small CRM version 3.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, sql injection
MD5 | db23fe4e0c0ca0781c56faea3495fa6f
Stock Management System 1.0 SQL Injection
Posted Jun 14, 2021
Authored by Riadh Benlamine

Stock Management System version 1.0 suffers from a remote blind SQL injection vulnerability. This is a variant to the original discovery of SQL injection in this version discovered in August of 2020 by hyd3sec.

tags | exploit, remote, sql injection
MD5 | 7376bc754717fdc360514061972934e0
Grocery Crud 1.6.4 SQL Injection
Posted Jun 11, 2021
Authored by TonyShavez

Grocery Crud version 1.6.4 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 2b5a21c387278066f023f18e33bf8187
Zenario CMS 8.8.52729 SQL Injection
Posted Jun 11, 2021
Authored by Avinash R

Zenario CMS version 8.8.52729 suffers from authenticated blind and error-based remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, sql injection
advisories | CVE-2021-27673
MD5 | 0ee6dd40446d677f5dd4f62fa0884b24
Student Result Management System 1.0 SQL Injection
Posted Jun 10, 2021
Authored by Riadh Benlamine

Student Result Management System version 1.0 remote SQL injection exploit. This is a variant of the original discovery of SQL injection in this version by Ritesh Gohil.

tags | exploit, remote, sql injection
MD5 | 58539cc8cbacde28a5803e28aa8a5cf9
SQLMAP - Automatic SQL Injection Tool 1.5.6
Posted Jun 8, 2021
Authored by Bernardo Damele | Site sqlmap.org

sqlmap is an open source command-line automatic SQL injection tool. Its goal is to detect and take advantage of SQL injection vulnerabilities in web applications. Once it detects one or more SQL injections on the target host, the user can choose among a variety of options to perform an extensive back-end database management system fingerprint, retrieve DBMS session user and database, enumerate users, password hashes, privileges, databases, dump entire or user's specified DBMS tables/columns, run his own SQL statement, read or write either text or binary files on the file system, execute arbitrary commands on the operating system, establish an out-of-band stateful connection between the attacker box and the database server via Metasploit payload stager, database stored procedure buffer overflow exploitation or SMB relay attack and more.

Changes: Minor release with no notes in the changelog.
tags | tool, web, overflow, arbitrary, vulnerability, sql injection
systems | unix
MD5 | 5d549a9d48f57591c03e5e02ad82cd9f
COVID-19 Testing Management System 1.0 SQL Injection
Posted Jun 8, 2021
Authored by nu11secur1ty

COVID-19 Testing Management System version 1.0 remote SQL injection exploit based upon the original discovery by Rohit Burke in May of 2021.

tags | exploit, remote, sql injection
advisories | CVE-2021-33470
MD5 | 12bc9bc3329a4bc99a1d6ad5f44b6f45
Rocket.Chat 3.12.1 NoSQL Injection / Code Execution
Posted Jun 7, 2021
Authored by enox

Rocket.Chat version 3.12.1 unauthenticated NoSQL injection to remote code execution exploit.

tags | exploit, remote, code execution, sql injection
advisories | CVE-2021-22911
MD5 | 1d488a4a23cebcb6cf88668c84de24c7
Local Service Search Engine Management System 1.0 SQL Injection
Posted Jun 2, 2021
Authored by nu11secur1ty

Local Service Search Engine Management System version 1.0 remote SQL injection exploit that leverages the original discovery by Aditya Wakhlu in December of 2020.

tags | exploit, remote, local, sql injection
advisories | CVE-2021-3278
MD5 | 76768d3ec18eaeb66f7b8b892054d4a3
Cacti 1.2.12 SQL Injection / Remote Command Execution
Posted Jun 2, 2021
Authored by h00die, Leonardo Paiva, Mayfly277 | Site metasploit.com

This Metasploit module exploits a SQL injection vulnerability in Cacti versions 1.2.12 and below. An admin can exploit the filter variable within color.php to pull arbitrary values as well as conduct stacked queries. With stacked queries, the path_php_binary value is changed within the settings table to a payload, and an update is called to execute the payload. After calling the payload, the value is reset.

tags | exploit, arbitrary, php, sql injection
advisories | CVE-2020-14295
MD5 | 96f2d2ce45330fd71491a45ad435fbe4
WordPress WP Statistics 13.0.7 SQL Injection
Posted May 21, 2021
Authored by Mansoor R

WordPress WP Statistics plugin versions 13.0 to 13.0.7 suffer from a remote unauthenticated blind SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | f55763934154541b757f351038c0e96d
Red Hat Security Advisory 2021-2039-01
Posted May 19, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-2039-01 - This release of Red Hat Integration - Service registry 1.1.1.GA serves as a replacement for 1.1.0.GA, and includes the below security fixes. Issues addressed include XML injection and remote SQL injection vulnerabilities.

tags | advisory, remote, registry, vulnerability, sql injection
systems | linux, redhat
advisories | CVE-2020-14040, CVE-2020-25638, CVE-2020-25649
MD5 | a7f2b920bee53e427f11e78f85418989
In4Suit ERP 3.2.74.1370 SQL Injection
Posted May 19, 2021
Authored by Gulab Mondal

In4Suit ERP version 3.2.74.1370 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 631db13ab8c6191f9561ffd9735c6f99
COVID19 Testing Management System 1.0 SQL Injection
Posted May 19, 2021
Authored by Rohit Burke

COVID19 Testing Management System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, sql injection
MD5 | a5e373fba80ab6c8d5178ece6d4685ff
EgavilanMedia PHPCRUD 1.0 SQL Injection
Posted May 18, 2021
Authored by Dimitrios Mitakos

EgavilanMedia PHPCRUD version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 1f7d692db78a547cdcca9b8720f06f81
Printable Staff ID Card Creator System 1.0 Shell Upload / SQL Injection
Posted May 17, 2021
Authored by bwnz

Printable Staff ID Card Creator System version 1.0 suffers from remote shell upload and remote SQL injection vulnerabilities.

tags | exploit, remote, shell, vulnerability, sql injection
MD5 | 4490bd349a0b50e4d7488c7b344af3e9
Billing Management System 2.0 SQL Injection
Posted May 17, 2021
Authored by Mohammad Koochaki

Billing Management System version 2.0 suffers from multiple remote SQL injection vulnerabilities. Original discovery of SQL injection in this version is attributed to Pintu Solanki in February of 2021.

tags | exploit, remote, vulnerability, sql injection
MD5 | 6a43b4ac7bf852e7431dafc25e456f64
Dental Clinic Appointment Reservation System 1.0 SQL Injection
Posted May 13, 2021
Authored by Mesut Cetin

Dental Clinic Appointment Reservation System version 1.0 suffers from multiple remote SQL injection vulnerabilities with one of them allowing for authentication bypass.

tags | exploit, remote, vulnerability, sql injection
MD5 | 590039c72fd98d00add5038df52eb7a0
Customer Relationship Management (CRM) System 1.0 SQL Injection
Posted May 11, 2021
Authored by Richard Jones

Customer Relationship Management (CRM) System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, sql injection
MD5 | df2f1ca3c4905b571716bcf98058482c
Hexagon G!nius Auskunftsportal SQL Injection
Posted May 11, 2021
Authored by Marcel Keiffenheim

Hexagon G!nius Auskunftsportal versions prior to 5.0.0.0 suffer from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2021-32051
MD5 | d6dd0935d69c6151673cc0768d99190a
ERPNext 12.18.0 / 13.0.0 SQL Injection
Posted May 11, 2021
Authored by Stefan Pietsch, Nick Decker | Site trovent.io

ERPNext versions 12.18.0 and 13.0.0 suffer from an authenticated remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 6c329df5e9d8646f43166acb54002a9b
PHP Timeclock 1.04 SQL Injection
Posted May 8, 2021
Authored by Tyler Butler

PHP Timeclock version 1.04 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, php, sql injection
MD5 | 72d88bfd629409e56ac9c276b3ce34ec
Page 1 of 628
Back12345Next

File Archive:

June 2021

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jun 1st
    35 Files
  • 2
    Jun 2nd
    14 Files
  • 3
    Jun 3rd
    40 Files
  • 4
    Jun 4th
    22 Files
  • 5
    Jun 5th
    1 Files
  • 6
    Jun 6th
    1 Files
  • 7
    Jun 7th
    19 Files
  • 8
    Jun 8th
    14 Files
  • 9
    Jun 9th
    39 Files
  • 10
    Jun 10th
    20 Files
  • 11
    Jun 11th
    22 Files
  • 12
    Jun 12th
    2 Files
  • 13
    Jun 13th
    1 Files
  • 14
    Jun 14th
    32 Files
  • 15
    Jun 15th
    34 Files
  • 16
    Jun 16th
    9 Files
  • 17
    Jun 17th
    33 Files
  • 18
    Jun 18th
    0 Files
  • 19
    Jun 19th
    0 Files
  • 20
    Jun 20th
    0 Files
  • 21
    Jun 21st
    0 Files
  • 22
    Jun 22nd
    0 Files
  • 23
    Jun 23rd
    0 Files
  • 24
    Jun 24th
    0 Files
  • 25
    Jun 25th
    0 Files
  • 26
    Jun 26th
    0 Files
  • 27
    Jun 27th
    0 Files
  • 28
    Jun 28th
    0 Files
  • 29
    Jun 29th
    0 Files
  • 30
    Jun 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close