Inmostore 4.0 Index.PHP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/24884/info Inmostore is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to...

INFINICART login.asp Multiple Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/21043/info Infinicart is prone to multiple input-validation vulnerabilities, including HTML-injection and SQL-injection issues, because the application fails to properly sanitize user-supplied input. A successful exploit ...

MusicBox 2.3 Type Parameter SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/16030/info MusicBox is prone to an SQL injection vulnerability. Successful exploitation could result in a compromise of the application, disclosure or modification of data, or may permit an attacker to exploit...

Cisco Unified Communications Manager <= 6.1 'key' Parameter SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/27775/info Cisco Unified Communications Manager is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an...

Fantastic News 2.1.1 - SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/16842/info Fantastic News is prone to an SQL-injection vulnerability. Successful exploitation could allow an attacker to compromise the application, access or modify data, or exploit vulnerabilities in the underlying...

MyBulletinBoard RC4 polls.php polloptions Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/14553/info MyBulletinBoard is prone to multiple SQL injection vulnerability. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. Successful...

Ocean12 Technologies Calendar Manager Pro 1.0 1 admin/main.asp date Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/17877/info Calendar Manager Pro is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure in the application to...

MGinternet Property Site Manager listings.asp Multiple Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/21073/info MGinternet Property Site Manager is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because it fails to sufficiently sanitize user-supplied input. An...

Simplog 0.9.3 BlogID Parameter Multiple SQL Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/20899/info Simplog is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to...

Ocean12 Technologies Calendar Manager Pro 1.0 1 admin/edit.asp ID Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/17877/info Calendar Manager Pro is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure in the application to...

OvBB 0.x thread.php threadid Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/15566/info OvBB is prone to multiple SQL injection vulnerabilities. Successful exploitation could result in a compromise of the application, disclosure or modification of data, or may permit an attacker to exploit...

Vikingboard 0.1 Topic.PHP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/19919/info Viking board is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data. This may allow an attacker to compromise the application, access or modify data, or exploit...

DeluxeBB 1.0 misc.php uid Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/14851/info DeluxeBB is prone to multiple SQL injection vulnerabilities. These are due to a lack of proper sanitization of user-supplied input before being sent to SQL queries. Successful exploitation could result in a...

MyPHPim calendar.php3 cal_id Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/16210/info MyPhPim is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of these vulnerabilities cou...

CubeCart 2.0.x index.php Multiple Variable Path Disclosure

No description provided by source. source: http://www.securityfocus.com/bid/13050/info CubeCart is reported prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. These issues...

Dynamic Biz Website Builder (QuickWeb) 1.0 Login.ASP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/14083/info Dynamic Biz Website Builder QuickWeb is prone to an SQL injection vulnerability. Successful exploitation could result in a compromise of the application, disclosure or modification of data, or may permit an...

DUportal 3.1.2 channel.asp iChannel Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/13288/info DUportal/DUportal SQL are prone to multiple SQL injection vulnerabilities. These issues exist because the application fails to properly sanitize user-supplied input before using it in SQL queries. Successful...

Facile Forms 1.x 'catid' Parameter SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/27880/info Facile Forms is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise...

Z1Exchange 1.0 showads.php id Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/32598/info Z1Exchange is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to...

Joomla! and Mambo com_iomezun Component - 'id' Parameter SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/27748/info The Joomla! and Mambo 'comiomezun' component is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could...