10441 matches found
Madrese-Portal 'haber.asp' SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/33045/info Madrese-Portal is prone to an SQL-injection vulnerability because it fails to properly sanitize user-supplied input. Attackers may exploit this issue to compromise the application, access or modify data, or...
Bitweaver 1.x fisheye/index.php sort_mode Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/20996/info Bitweaver is prone to multiple SQL-injection and cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to steal...
Dokeos <= 1.8.4 whoisonline.php id Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/27792/info Dokeos is prone to multiple input-validation vulnerabilities including five SQL-injection issues, one HTML-injection issue, three cross-site scripting issues, and one arbitrary-file-upload issue. Attackers can...
SoftBiz Image Gallery 0 images.php cid Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/17339/info Softbiz Image Gallery is prone to multiple SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. A...
Ublog Reload 1.0.5 index.asp Multiple Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/13991/info Ublog Reload is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. Successful...
DeluxeBB 1.0 forums.php fid Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/14851/info DeluxeBB is prone to multiple SQL injection vulnerabilities. These are due to a lack of proper sanitization of user-supplied input before being sent to SQL queries. Successful exploitation could result in a...
Pixel Motion 0 index.php date Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/17260/info Pixel Motion is prone to multiple SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. A successful explo...
XlentProjects SphereCMS 1.1 'archive.php' SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/38309/info SphereCMS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...
Koobi Pro 5.6 showtopic Module toid Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/18970/info Koobi Pro prone to a cross-site scripting issue and an SQL-injection issue because the application fails to properly sanitize user-supplied input. A successful exploit of these vulnerabilities could allow an...
White Album 2.5 Pictures.PHP SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/16247/info White Album is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could...
TorrentTrader Classic 1.x - 'scrape.php' SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/29451/info TorrentTrader Classic is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to...
ModernBill 4.3 User.PHP SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/17596/info ModernBill is prone to an SQL-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allo...
Miraserver 1.0 RC4 newsitem.php id Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/15960/info Miraserver is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful...
Arab Portal 2.0 Link.PHP SQL Injection Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/15820/info Arab Portal is prone to multiple SQL injection vulnerabilities. These are due to a lack of proper sanitization of user-supplied input before using it in an SQL query. Successful exploitation could result in a...
Multiple Ad Server Solutions Products 'logon_processing.jsp' SQL Injection Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/32782/info Multiple Ad Server Solutions products are prone to SQL-injection vulnerabilities because they fail to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allo...
Tandis CMS 2.5 'index.php' Multiple SQL Injection Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/31930/info Tandis CMS is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied input before using it in an SQL query. Exploiting these issues could allow an attacker to...
SweetCMS 1.5.2 'index.php' SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/31774/info SweetCMS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data. A successful exploit may allow an attacker to compromise the application, access or modify data,...
DCI-Taskeen 1.03 basket.php Multiple Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/16828/info DCI-Taskeen is prone to multiple SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful...
Orkut Clone profile_social.php id Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/32600/info Orkut Clone is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to...
Image gallery with Access Database default.asp Multiple Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/21131/info Image gallery with Access Database is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could...