4427 matches found
ESMI PayPal StoreFront 1.7 - pages.php?idpages SQL Injection
ESMI PayPal StoreFront 1.7 - pages.php?idpages SQL Injection source: https://www.securityfocus.com/bid/12903/info ESMI PayPal Storefront is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in as SQL...
Typo3 CMW_Linklist 1.4.1 Extension - SQL Injection
Typo3 CMWLinklist 1.4.1 Extension - SQL Injection source: https://www.securityfocus.com/bid/12721/info Typo3 'cmwlinklist' extension is affected by a remote SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in a...
Typo3 CMW_Linklist 1.4.1 Extension - SQL Injection
source: https://www.securityfocus.com/bid/12721/info Typo3 'cmwlinklist' extension is affected by a remote SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in a SQL query. Successful exploitation could result i...
ProjectBB 0.4.5.1 - Multiple SQL Injections
ProjectBB 0.4.5.1 - Multiple SQL Injections source: https://www.securityfocus.com/bid/12710/info ProjectBB is reportedly affected by multiple SQL injection vulnerabilities. These issues are due to the application failing to properly sanitize user-supplied input before using it in SQL queries...
WebConnect Multiple Remote Vulnerabilities (deprecated)
Binary data 2639.prm...
iGeneric iG Shop 1.x - Multiple SQL Injections
source: https://www.securityfocus.com/bid/12627/info iGeneric iG Shop is reportedly affected by multiple SQL injection vulnerabilities. These issues exist because the application fails to properly sanitize user-supplied input before using them in SQL queries. Successful exploitation could result ...
paFaq beta4 - question.php Multiple SQL Injections
paFaq beta4 - question.php Multiple SQL Injections source: https://www.securityfocus.com/bid/12582/info paFaq is reportedly affected by an SQL injection vulnerability. This issue exists because the application fails to properly sanitize user-supplied input before using it in SQL queries. Successf...
paFaq beta4 - comment.php Multiple SQL Injections
paFaq beta4 - comment.php Multiple SQL Injections source: https://www.securityfocus.com/bid/12582/info paFaq is reportedly affected by an SQL injection vulnerability. This issue exists because the application fails to properly sanitize user-supplied input before using it in SQL queries. Successfu...
WebCalendar 0.9.45 - SQL Injection
WebCalendar 0.9.45 - SQL Injection source: https://www.securityfocus.com/bid/12581/info WebCalendar is affected by an SQL injection vulnerability. This issue exists because the application fails to properly sanitize user-supplied input before using it in SQL queries. Successful exploitation could...
paFaq beta4 - 'question.php' Multiple SQL Injections
source: https://www.securityfocus.com/bid/12582/info paFaq is reportedly affected by an SQL injection vulnerability. This issue exists because the application fails to properly sanitize user-supplied input before using it in SQL queries. Successful exploitation could result in a compromise of the...
WebCalendar 0.9.45 - SQL Injection
source: https://www.securityfocus.com/bid/12581/info WebCalendar is affected by an SQL injection vulnerability. This issue exists because the application fails to properly sanitize user-supplied input before using it in SQL queries. Successful exploitation could result in a compromise of the...
DCP-Portal 6.1.1 - Multiple SQL Injections
DCP-Portal 6.1.1 - Multiple SQL Injections source: https://www.securityfocus.com/bid/12573/info DCP-Portal is reportedly affected by multiple SQL injection vulnerabilities. These issues exist because the application fails to properly sanitize user-supplied input before using it in SQL queries...
DCP-Portal 6.1.1 - Multiple SQL Injections
source: https://www.securityfocus.com/bid/12573/info DCP-Portal is reportedly affected by multiple SQL injection vulnerabilities. These issues exist because the application fails to properly sanitize user-supplied input before using it in SQL queries. Successful exploitation could result in a...
GLSA-200501-45 : Gallery: XSS vulnerability
The remote host is affected by the vulnerability described in GLSA-200501-45 Gallery: XSS vulnerability Rafel Ivgi has discovered a cross-site scripting vulnerability where the 'username' parameter is not properly sanitized in 'login.php'. Impact : By sending a carefully crafted URL, an attacker...
GeoBlog 1.0 - 'viewcat.php' SQL Injection
source: https://www.securityfocus.com/bid/16249/info geoBlog is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could result in a compromise of the...
GLSA-200409-23 : SnipSnap: HTTP response splitting
The remote host is affected by the vulnerability described in GLSA-200409-23 SnipSnap: HTTP response splitting SnipSnap contains various HTTP response splitting vulnerabilities that could potentially compromise the sites data. Some of these attacks include web cache poisoning, cross-user...
MyDms 1.4 - SQL Injection Directory Traversal
MyDms 1.4 - SQL Injection Directory Traversal source: https://www.securityfocus.com/bid/10996/info MyDMS is reportedly susceptible to both a directory traversal vulnerability and an SQL injection vulnerability. The SQL injection vulnerability is present because a script improperly sanitizes...
MyDms 1.4 - SQL Injection / Directory Traversal
source: https://www.securityfocus.com/bid/10996/info MyDMS is reportedly susceptible to both a directory traversal vulnerability and an SQL injection vulnerability. The SQL injection vulnerability is present because a script improperly sanitizes user-supplied data located in a URI argument before...
phpBB Fetch All < 2.0.12 Multiple Scripts SQL Injection
The remote host is running a version of phpBB FetchAll older than 2.0.12. It is reported that this version of phpBB Fetch All is susceptible to a SQL injection vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied input before using it in a SQL query...
Internet Software Sciences Web+Center 4.0.1 - Cookie Object SQL Injection
Internet Software Sciences Web+Center 4.0.1 - Cookie Object SQL Injection source: https://www.securityfocus.com/bid/10771/info An SQL injection vulnerability is identified in the application that may allow attackers to pass malicious input to database queries, resulting in the modification of que...