2051 matches found
WordPress BSK PDF Manager Plugin 'wp-admin/admin.php' Multiple SQL Injection Vulnerabilities
WordPress BSK PDF Manager Plugin 'wp-admin/admin.php' Multiple SQL Injection Vulnerabilities. CVE-2014-4944. Webapps exploit for php platform source: http://www.securityfocus.com/bid/68488/info BSK PDF Manager plugin for WordPress is prone to multiple SQL-injection vulnerabilities because it fail...
Tele Data's Contact Management Server 0.9 'username' Parameter SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/39799/info The Tele Data's Contact Management Server is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could all...
Survey System 1.1 Survey.PHP SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/15641/info Survey System is prone to multiple SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitatio...
bcoos 1.0.13 'include/common.php' Remote File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/31929/info The 'bcoos' program is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containing...
Visuplay CMS Multiple SQL Injection Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/33209/info Visuplay CMS is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to...
PHPCafe Tutorial Manager Index.PHP SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/15244/info PHPcafe Tutorial Manager is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful...
V3 Chat Instant Messenger - mail/index.php id Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/18543/info V3 Chat Instant Messenger is prone to multiple cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker...
Feng Office 1.7.3.3 CSRF Vulnerability
No description provided by source. Vulnerability ID: HTB22910 Reference: http://www.htbridge.ch/advisory/xsrfcsrfinfengoffice.html Product: Feng Office Vendor: Secure Data SRL http://www.fengoffice.com/ Vulnerable Version: 1.7.3.3 and probably prior versions Vendor Notification: 17 March 2011...
Joomla! SportFusion 0.2.x Component SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/36481/info The SportFusion component 'comsportfusion' for Joomla! is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this...
Bookmark4U 2.0 inc/function.php env[include_prefix] Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/18281/info Bookmark4U is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit these issues to includ...
miniBloggie 1.0 Login.PHP SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/16367/info miniBloggie is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could...
Joomla! and Mambo 'com_joomlavvz' Component - 'id' Parameter SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/27921/info The Joomla! and Mambo 'comjoomlavvz' component is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue coul...
Post Affiliate Pro 2.0.4 Index.PHP SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/15633/info Post Affiliate Pro is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation...
Turuncu Portal 1.0 H_Goster.ASP SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/22591/info Turuncu Portal is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromis...
Snipe Gallery 3.1.4 image.php image_id Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/15844/info Snipe Gallery is prone to multiple input-validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of these vulnerabiliti...
Blog Manager inc_webblogmanager.asp CategoryID Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/33314/info DMXReady Blog Manager is prone to a cross-site scripting vulnerability and an SQL-injection vulnerability because the application fails to sufficiently sanitize user-supplied input. Exploiting these issues coul...
PHPLive! 3.2.2 'request.php' SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/35718/info PHPLive! is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...
AlmondSoft Multiple Classifieds Products index.php replid Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/35816/info AlmondSoft Almond Classifieds is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues...
Saxon 5.4 Example.PHP SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/26238/info Saxon is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...
dotnetindex Professional Download Assistant 0.1 SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/32706/info Professional Download Assistant is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an...