CVE-2008-2265
published 2008-05-16CVE-2008-2265: SQL injection vulnerability in news.php in EMO Realty Manager allows remote attackers to execute arbitrary SQL commands via the ida parameter.
PriorityP340high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
1.00%
58.6th percentile
SQL injection vulnerability in news.php in EMO Realty Manager allows remote attackers to execute arbitrary SQL commands via the ida parameter.
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Adobe ColdFusion 8 - Remote Command Execution (RCE)
exploitdb·2021-06-24·CVSS 7.5
CVE-2009-2265 [HIGH] Adobe ColdFusion 8 - Remote Command Execution (RCE)
Adobe ColdFusion 8 - Remote Command Execution (RCE)
---
# Exploit Title: Adobe ColdFusion 8 - Remote Command Execution (RCE)
# Google Dork: intext:"adobe coldfusion 8"
# Date: 24/06/2021
# Exploit Author: Pergyz
# Vendor Homepage: https://www.adobe.com/sea/products/coldfusion-family.html
# Version: 8
# Tested on: Microsoft Windows Server 2008 R2 Standard
# CVE : CVE-2009-2265
#!/usr/bin/python3
from multiprocessing import Process
import io
import mimetypes
import os
import urllib.request
import uuid
class MultiPartForm:
def __init__(self):
self.files = []
self.boundary = uuid.uuid4().hex.encode('utf-8')
return
def get_content_type(self):
return 'multipart/form-data; boundary={}'.format(self.boundary.decode('utf-8'))
def add_file(self, fieldname, filename, fileHandle, mimetype=None)
Exploit-DB
EMO Realty Manager - 'ida' SQL Injection
exploitdb·2008-05-13
CVE-2008-2265 EMO Realty Manager - 'ida' SQL Injection
EMO Realty Manager - 'ida' SQL Injection
---
##########################################################
# Remote SQL Injection Vulnerabilities #
# EMO Realty Manager #
##########################################################
## Author : HaCkeR_EgY
## C0NTACT : [email protected]
## H^OME : www.PAL-HaCkeR.com & ATSDP.COM
## Script Name : EMO Realty Manager
## Download : http://www.emophp.com/
## Price : Manager Full License CAD $399 /// Manager Base License CAD $299=======> Buy iT : http://www.emophp.com/purchase.php
###########################################################################
###########################################################################
## D0rk : mmmm...... U have 2 dork ...Let's say use your Mind again D:
## ExPlo!T :
=====>> http://ta
No writeups or analysis indexed.
http://secunia.com/advisories/30245http://www.securityfocus.com/bid/29202http://www.vupen.com/english/advisories/2008/1525/referenceshttps://exchange.xforce.ibmcloud.com/vulnerabilities/42404https://www.exploit-db.com/exploits/5609http://secunia.com/advisories/30245http://www.securityfocus.com/bid/29202http://www.vupen.com/english/advisories/2008/1525/referenceshttps://exchange.xforce.ibmcloud.com/vulnerabilities/42404https://www.exploit-db.com/exploits/5609
2008-05-16
Published