248 matches found
CVE-2008-0291
SQL injection vulnerability in showproduct.asp in RichStrong CMS allows remote attackers to execute arbitrary SQL commands via the cat parameter...
CVE-2008-0291
SQL injection vulnerability in showproduct.asp in RichStrong CMS allows remote attackers to execute arbitrary SQL commands via the cat parameter...
CVE-2007-6647
SQL injection vulnerability in index.php in w-Agora 4.2.1 and earlier allows remote attackers to execute arbitrary SQL commands via the cat parameter...
Sql injection
SQL injection vulnerability in index.php in w-Agora 4.2.1 and earlier allows remote attackers to execute arbitrary SQL commands via the cat parameter...
CVE-2007-6641
Cross-site scripting XSS vulnerability in dir.php in milliscripts Redirection allows remote attackers to inject arbitrary web script or HTML via the cat parameter in a browse action...
Cross site scripting
Cross-site scripting XSS vulnerability in dir.php in milliscripts Redirection allows remote attackers to inject arbitrary web script or HTML via the cat parameter in a browse action...
CVE-2007-6641
Cross-site scripting XSS vulnerability in dir.php in milliscripts Redirection allows remote attackers to inject arbitrary web script or HTML via the cat parameter in a browse action...
CVE-2007-6466
Multiple SQL injection vulnerabilities in index.php in FreeWebshop 2.2.1 allow remote attackers to execute arbitrary SQL commands via 1 the prod parameter in a details action, 2 the cat parameter in a browse list action, or 3 the group parameter in a categories action. NOTE: it was later reported...
CVE-2007-6137
SQL injection vulnerability in news.php in Content Injector 1.52 allows remote attackers to execute arbitrary SQL commands via the cat parameter to index.php. NOTE: some of these details are obtained from third party information...
Sql injection
SQL injection vulnerability in news.php in Content Injector 1.52 allows remote attackers to execute arbitrary SQL commands via the cat parameter to index.php. NOTE: some of these details are obtained from third party information...
CVE-2007-5312
Cross-site scripting XSS vulnerability in TorrentTrader Classic 1.07 allows remote attackers to inject arbitrary web script or HTML via the 1 color parameter to pjirc/css.php and the 2 cat parameter to browse.php...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in index.php in Vigile CMS 1.8 allow remote attackers to inject arbitrary web script or HTML via a request to the wiki module with 1 the title parameter or 2 a "title=" sequence in the PATHINFO, or a request to the download module with 3 the cat...
CVE-2007-5052
Multiple cross-site scripting XSS vulnerabilities in index.php in Vigile CMS 1.8 allow remote attackers to inject arbitrary web script or HTML via a request to the wiki module with 1 the title parameter or 2 a "title=" sequence in the PATHINFO, or a request to the download module with 3 the cat...
Sql injection
SQL injection vulnerability in index.php in the RemoSitory component comremository for Mambo allows remote attackers to execute arbitrary SQL commands via the cat parameter in a selectcat action...
CVE-2007-4258
SQL injection vulnerability in directory.php in Prozilla Pub Site Directory allows remote attackers to execute arbitrary SQL commands via the cat parameter...
Sql injection
SQL injection vulnerability in directory.php in Prozilla Pub Site Directory allows remote attackers to execute arbitrary SQL commands via the cat parameter...
CVE-2007-4258
CVE-2007-4258: SQL injection in Prozilla Pub Site Directory’s directory.php via the cat parameter. Remote attackers can execute arbitrary SQL commands. Affected: Prozilla Pub Site Directory (directory.php) with cat parameter. Root cause: unsafely built SQL queries allowing injection. Impact: part...
CVE-2007-4258
SQL injection vulnerability in directory.php in Prozilla Pub Site Directory allows remote attackers to execute arbitrary SQL commands via the cat parameter...
CVE-2007-4054
SQL injection vulnerability in category.php in PHP123 Top Sites allows remote attackers to execute arbitrary SQL commands via the cat parameter...
Sql injection
SQL injection vulnerability in categoriestype.php in phpVID 0.9.9 allows remote attackers to execute arbitrary SQL commands via the cat parameter...