12 matches found
Dokeos <= 1.8.4 main/inc/lib/events.lib.inc.php Referer HTTP Header SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/27792/info Dokeos is prone to multiple input-validation vulnerabilities including five SQL-injection issues, one HTML-injection issue, three cross-site scripting issues, and one arbitrary-file-upload issue. Attackers can...
Dokeos <= 1.8.4 main/admin/session_list.php cmessage Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/27792/info Dokeos is prone to multiple input-validation vulnerabilities including five SQL-injection issues, one HTML-injection issue, three cross-site scripting issues, and one arbitrary-file-upload issue. Attackers can...
Dokeos <= 1.8.4 main/admin/course_category.php category Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/27792/info Dokeos is prone to multiple input-validation vulnerabilities including five SQL-injection issues, one HTML-injection issue, three cross-site scripting issues, and one arbitrary-file-upload issue. Attackers can...
Dokeos <= 1.8.4 main/calendar/myagenda.php courseCode Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/27792/info Dokeos is prone to multiple input-validation vulnerabilities including five SQL-injection issues, one HTML-injection issue, three cross-site scripting issues, and one arbitrary-file-upload issue. Attackers can...
Dokeos 1.8.4 - '/main/calendar/myagenda.php?courseCode' Cross-Site Scripting
source: https://www.securityfocus.com/bid/27792/info Dokeos is prone to multiple input-validation vulnerabilities including five SQL-injection issues, one HTML-injection issue, three cross-site scripting issues, and one arbitrary-file-upload issue. Attackers can exploit these issues to execute...
Dokeos 1.8.4 - mainadmincourse_category.php?category Cross-Site Scripting
Dokeos 1.8.4 - mainadmincoursecategory.php?category Cross-Site Scripting source: https://www.securityfocus.com/bid/27792/info Dokeos is prone to multiple input-validation vulnerabilities including five SQL-injection issues, one HTML-injection issue, three cross-site scripting issues, and one...
Dokeos 1.8.4 - whoisonline.php?id SQL Injection
Dokeos 1.8.4 - whoisonline.php?id SQL Injection source: https://www.securityfocus.com/bid/27792/info Dokeos is prone to multiple input-validation vulnerabilities including five SQL-injection issues, one HTML-injection issue, three cross-site scripting issues, and one arbitrary-file-upload issue...
Dokeos 1.8.4 - maincalendarmyagenda.php?courseCode Cross-Site Scripting
Dokeos 1.8.4 - maincalendarmyagenda.php?courseCode Cross-Site Scripting source: https://www.securityfocus.com/bid/27792/info Dokeos is prone to multiple input-validation vulnerabilities including five SQL-injection issues, one HTML-injection issue, three cross-site scripting issues, and one...
Dokeos 1.8.4 - mainmySpaceindex.php?tracking_list_coaches_column SQL Injection
Dokeos 1.8.4 - mainmySpaceindex.php?trackinglistcoachescolumn SQL Injection source: https://www.securityfocus.com/bid/27792/info Dokeos is prone to multiple input-validation vulnerabilities including five SQL-injection issues, one HTML-injection issue, three cross-site scripting issues, and one...
Dokeos 1.8.4 - '/main/admin/session_list.php?cmessage' Cross-Site Scripting
source: https://www.securityfocus.com/bid/27792/info Dokeos is prone to multiple input-validation vulnerabilities including five SQL-injection issues, one HTML-injection issue, three cross-site scripting issues, and one arbitrary-file-upload issue. Attackers can exploit these issues to execute...
Dokeos 1.8.4 - '/main/admin/course_category.php?category' Cross-Site Scripting
source: https://www.securityfocus.com/bid/27792/info Dokeos is prone to multiple input-validation vulnerabilities including five SQL-injection issues, one HTML-injection issue, three cross-site scripting issues, and one arbitrary-file-upload issue. Attackers can exploit these issues to execute...
Dokeos 1.8.4 - 'whoisonline.php?id' SQL Injection
source: https://www.securityfocus.com/bid/27792/info Dokeos is prone to multiple input-validation vulnerabilities including five SQL-injection issues, one HTML-injection issue, three cross-site scripting issues, and one arbitrary-file-upload issue. Attackers can exploit these issues to execute...