Ramui Forum Script 9.0 - SQL Injection Exploit

<div dir="ltr" style="text-align: left;" trbidi="on"> <h1 style="background-color: white; box-sizing: border-box; color: #555555; font-family: 'Noto Sans', sans-serif; font-size: 38px; font-stretch: normal; font-weight: 300; line-height: 1.4; margin: 0px; text-align: center;"> Ramui Forum Script 9.0 - SQL Injection Exploit</h1> <div> <br /></div> <div> <br /></div> <div> <br /></div> <div> <b style="background-color: white; color: #222222; font-family: arial, sans-serif; font-size: 16px; line-height: 19.84px;">SQL injection</b><span style="background-color: white; color: #222222; font-family: arial, sans-serif; font-size: 16px; line-height: 19.84px;"> is a code </span><b style="background-color: white; color: #222222; font-family: arial, sans-serif; font-size: 16px; line-height: 19.84px;">injection</b><span style="background-color: white; color: #222222; font-family: arial, sans-serif; font-size: 16px; line-height: 19.84px;"> technique, used to attack data-driven applications, in </span></div> <div> <span style="background-color: white; color: #222222; font-family: arial, sans-serif; font-size: 16px; line-height: 19.84px;"><br /></span></div> <div> <span style="background-color: white; color: #222222; font-family: arial, sans-serif; font-size: 16px; line-height: 19.84px;">which malicious </span><b style="background-color: white; color: #222222; font-family: arial, sans-serif; font-size: 16px; line-height: 19.84px;">SQL</b><span style="background-color: white; color: #222222; font-family: arial, sans-serif; font-size: 16px; line-height: 19.84px;"> statements are inserted into an entry field for execution (e.g. to dump </span></div> <div> <span style="background-color: white; color: #222222; font-family: arial, sans-serif; font-size: 16px; line-height: 19.84px;"><br /></span></div> <div> <span style="background-color: white; color: #222222; font-family: arial, sans-serif; font-size: 16px; line-height: 19.84px;">the database contents to the attacker).</span></div> <div> <span style="background-color: white; color: #222222; font-family: arial, sans-serif; font-size: 16px; line-height: 19.84px;"><br /></span></div> <div class="separator" style="clear: both; text-align: center;"> <a href="http://3.bp.blogspot.com/-PAfuLWbhdWs/VquptMVpIWI/AAAAAAAAALs/RoTbuBLwjII/s1600/Ramui%2BForum%2BScript_www.hackthesec.co.in.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="318" src="http://3.bp.blogspot.com/-PAfuLWbhdWs/VquptMVpIWI/AAAAAAAAALs/RoTbuBLwjII/s640/Ramui%2BForum%2BScript_www.hackthesec.co.in.png" width="640" /></a></div> <div> <br /></div> <div> <br /></div> <div> <table class="exploit_list" style="background-color: rgb(239, 239, 239) !important; border-radius: 3px !important; border-spacing: 1px; border: 1px solid rgb(221, 221, 221) !important; box-sizing: border-box; color: #666666; font-family: 'Open Sans', sans-serif; font-size: 14px; line-height: 24px; margin-bottom: 10px; margin-top: 10px; padding: 1px !important; width: 552px;"><tbody style="box-sizing: border-box;"> <tr style="background-color: rgb(248, 248, 248) !important; box-sizing: border-box;"><td style="box-sizing: border-box; padding: 5px 10px;"><strong style="box-sizing: border-box;">EDB-ID:</strong> 39354</td><td style="box-sizing: border-box; padding: 5px 10px;"></td><td style="box-sizing: border-box; padding: 5px 10px;"><br /></td></tr> <tr style="background-color: rgb(248, 248, 248) !important; box-sizing: border-box;"><td style="box-sizing: border-box; padding: 5px 10px;"><br /><table class="exploit_list" style="background-color: rgb(239, 239, 239) !important; border-radius: 3px !important; border-spacing: 1px; border: 1px solid rgb(221, 221, 221) !important; box-sizing: border-box; color: #666666; font-size: 14px; line-height: 24px; margin-bottom: 10px; margin-top: 10px; padding: 1px !important; width: 552px;"><tbody style="box-sizing: border-box;"> <tr style="background-color: rgb(248, 248, 248) !important; box-sizing: border-box;"><td style="box-sizing: border-box; padding: 5px 10px;"><strong style="box-sizing: border-box;">Author:</strong> bd0rk</td></tr> </tbody></table> </td><td style="box-sizing: border-box; padding: 5px 10px;"><br /></td><td style="box-sizing: border-box; padding: 5px 10px;"><br /></td></tr> <tr style="background-color: rgb(248, 248, 248) !important; box-sizing: border-box;"><td style="box-sizing: border-box; padding: 5px 10px;"><strong style="box-sizing: border-box;">Download Exploit:</strong> <a href="https://www.exploit-db.com/download/39354" style="background-color: transparent; box-sizing: border-box; color: #337ab7; outline: 0px; text-decoration: none; transition-duration: 0.3s; transition-property: background-color, box-shadow, border, color, opacity;"><span class="fa fa-file-code-o" style="-webkit-font-smoothing: antialiased; box-sizing: border-box; display: inline-block; font-family: FontAwesome; font-size: inherit; font-stretch: normal; line-height: 1; text-rendering: auto;"></span> Source</a> <a href="https://www.blogger.com/null" style="background-color: transparent; box-sizing: border-box; color: #337ab7; outline: 0px; transition-duration: 0.3s; transition-property: background-color, box-shadow, border, color, opacity;"><span class="fa fa-file-o" style="-webkit-font-smoothing: antialiased; box-sizing: border-box; display: inline-block; font-family: FontAwesome; font-size: inherit; font-stretch: normal; line-height: 1; text-rendering: auto;"></span> </a></td><td colspan="2" style="box-sizing: border-box; padding: 5px 10px;"><br /></td></tr> </tbody></table> </div> <div> <pre style="background-attachment: scroll; background-clip: initial; background-color: #3c3c3c; background-image: none; background-origin: initial; background-position: 0px 0px; background-repeat: repeat; background-size: initial; border-radius: 4px; border: 1px solid rgb(229, 229, 229); color: white; font-family: 'roboto slab'; font-size: 12px; line-height: 1.3em; margin-bottom: 20px; outline: 0px; overflow: auto; padding: 20px; vertical-align: baseline;"><a href="http://www.hackthesec.co.in/" style="color: #999999; text-decoration: none;" target="_blank">Hack The Security</a> <a href="https://www.twitter.com/hackthesecurity" style="color: #999999; text-decoration: none;" target="_blank">Hack The Security Twitter</a> <a href="https://www.facebook.com/htsecu" style="color: #999999; text-decoration: none;" target="_blank">Hack The Security Facebook</a></pre> </div> </div>

Ramui Forum Script 9.0 - SQL Injection Exploit

Ramui Forum Script 9.0 - SQL Injection Exploit SQL injection  is a code  injection  technique, used to attack data-driven applicat...

Read more »

Wordpress Booking Calendar Contact Form Plugin <=1.1.23 - Unauthenticated SQL injection

<div dir="ltr" style="text-align: left;" trbidi="on"> <h1 style="background-color: white; box-sizing: border-box; color: #555555; font-family: 'Noto Sans', sans-serif; font-size: 38px; font-stretch: normal; font-weight: 300; line-height: 1.4; margin: 0px; text-align: center;"> Wordpress Booking Calendar Contact Form Plugin <=1.1.23 - Unauthenticated SQL injection</h1> <div class="separator" style="clear: both; text-align: center;"> <a href="http://1.bp.blogspot.com/-1lvB4AqnnFg/VqckMhyrVwI/AAAAAAAAAEk/3VxSn6sNE7k/s1600/sql-injection_www.hackthesec.co.in.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="http://1.bp.blogspot.com/-1lvB4AqnnFg/VqckMhyrVwI/AAAAAAAAAEk/3VxSn6sNE7k/s1600/sql-injection_www.hackthesec.co.in.jpg" /></a></div> <div> <br /></div> <div> <br /></div> <div> <table class="exploit_list" style="background-color: rgb(239, 239, 239) !important; border-radius: 3px !important; border-spacing: 1px; border: 1px solid rgb(221, 221, 221) !important; box-sizing: border-box; color: #666666; font-family: 'Open Sans', sans-serif; font-size: 14px; line-height: 24px; margin-bottom: 10px; margin-top: 10px; padding: 1px !important; width: 675px;"><tbody style="box-sizing: border-box;"> <tr style="background-color: rgb(248, 248, 248) !important; box-sizing: border-box;"><td style="box-sizing: border-box; padding: 5px 10px;">Unauthenticated SQL injection</td><td style="box-sizing: border-box; padding: 5px 10px;"><br /></td><td style="box-sizing: border-box; padding: 5px 10px;"><br /></td></tr> <tr style="background-color: rgb(248, 248, 248) !important; box-sizing: border-box;"><td style="box-sizing: border-box; padding: 5px 10px;"><br /><table class="exploit_list" style="background-color: rgb(239, 239, 239) !important; border-radius: 3px !important; border-spacing: 1px; border: 1px solid rgb(221, 221, 221) !important; box-sizing: border-box; color: #666666; font-size: 14px; line-height: 24px; margin-bottom: 10px; margin-top: 10px; padding: 1px !important; width: 675px;"><tbody style="box-sizing: border-box;"> <tr style="background-color: rgb(248, 248, 248) !important; box-sizing: border-box;"><td style="box-sizing: border-box; padding: 5px 10px;"><strong style="box-sizing: border-box;">Author:</strong> i0akiN SEC-LABORATORY</td></tr> </tbody></table> </td><td style="box-sizing: border-box; padding: 5px 10px;"><br /></td><td style="box-sizing: border-box; padding: 5px 10px;"><br /></td></tr> <tr style="background-color: rgb(248, 248, 248) !important; box-sizing: border-box;"><td style="box-sizing: border-box; padding: 5px 10px;"><strong style="box-sizing: border-box;">Download Exploit:</strong> <a href="https://www.exploit-db.com/download/39309" style="background-color: transparent; box-sizing: border-box; color: #337ab7; outline: 0px; text-decoration: none; transition-duration: 0.3s; transition-property: background-color, box-shadow, border, color, opacity;"><span class="fa fa-file-code-o" style="-webkit-font-smoothing: antialiased; box-sizing: border-box; display: inline-block; font-family: FontAwesome; font-size: inherit; font-stretch: normal; line-height: 1; text-rendering: auto;"></span> Source</a> </td><td colspan="2" style="box-sizing: border-box; padding: 5px 10px;"><br /></td></tr> </tbody></table> </div> </div>

Wordpress Booking Calendar Contact Form Plugin <=1.1.23 - Unauthenticated SQL injection

Wordpress Booking Calendar Contact Form Plugin <=1.1.23 - Unauthenticated SQL injection Unauthenticated SQL injection Author...

Read more »