ManhLuat93

2 exploits Active since Jul 2009

CVE-2009-4748 EXPLOITDB text WORKING POC

My Category Order <2.8 - SQL Injection

SQL injection vulnerability in mycategoryorder.php in the My Category Order plugin 2.8 and earlier for WordPress allows remote attackers to execute arbitrary SQL commands via the parentID parameter in an act_OrderCategories action to wp-admin/post-new.php.

View Code

CVE-2009-2554 EXPLOITDB text WORKING POC

Joomla! Jobline <1.3.1 - SQL Injection

SQL injection vulnerability in the search method in jobline.class.php in Jobline (com_jobline) 1.1.2.2, 1.3.1, and possibly earlier versions, a component for Joomla!, allows remote attackers to execute arbitrary SQL commands via the search parameter in a results action to index.php, which invokes the search method from the searchJobPostings function in jobline.php.

View Code