PromoProducts 'view_product.php' Multiple SQL Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/30725/info PromoProducts is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to...

Cuteflow Bin 1.5 - pages/showuser.php language Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/28500/info CuteFlow Bin is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied data. The issues include a SQL-injection vulnerability and multiple cross-site scriptin...

AIOCP 1.3.x cp_codice_fiscale.php choosed_language Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/20931/info All In One Control Panel AIOCP is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data. Exploiting these issues could allow an attacker to steal...

vwdev Index.PHP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/16547/info The vwdev application is prone to an SQL-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. Successful exploitation can allow an attacker to...

OaBoard 1.0 Forum.PHP Multiple SQL Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/15245/info OaBoard is prone to multiple SQL injection vulnerabilities. These issues are due to a lack of proper sanitization of user-supplied input before using it in an SQL query. Successful exploitation could result in ...

OvBB 0.x profile.php userid Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/15566/info OvBB is prone to multiple SQL injection vulnerabilities. Successful exploitation could result in a compromise of the application, disclosure or modification of data, or may permit an attacker to exploit...

ASPNuke 0.80 Detail.ASP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/13317/info ASPNuke is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could resu...

BestWebApp Dating Site Login Component Multiple Field SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/21158/info BestWebApp Dating Site is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because it fails to sufficiently sanitize user-supplied input. An attacker...

Simplog 0.9.3 Archive.PHP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/21843/info Simplog is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to...

phpRPG 0.8 /tmp Directory PHPSESSID Cookie Session Hijacking

No description provided by source. source: http://www.securityfocus.com/bid/26884/info phpRPG is prone to two vulnerabilities: - An SQL-injection vulnerability - A vulnerability that lets remote attackers gain access to sessions. Exploiting these issues may allow an unauthorized user to steal...

RedCMS 0.1 register.php Multiple Field XSS

No description provided by source. source: http://www.securityfocus.com/bid/17336/info RedCMS is prone to multiple input-validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. The application is prone to HTML-injection and...

eZoneScripts Apartment Search Script 'listtest.php' SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/39905/info eZoneScripts Apartment Search Script is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an...

SurgeLDAP 1.0 Web Administration Authentication Bypass Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/10294/info SurgeLDAP is an LDAP server implementation for Microsoft Windows and various Unix operating systems. It includes a built-in web server to permit remote user access via HTTP. It has been reported that the...

QuickPayPro 3.1 design.php delete Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/15863/info QuickPayPro is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of these vulnerabilities...

Joomla! 'com_mygallery' Component - 'cid' Parameter SQL Injection Vulnerability

No description provided by source. Bugtraq ID: 37121 Class: Input Validation Error Published: Feb 21 2008 12:00AM Updated: Nov 24 2009 10:15PM Credit: S@BUN Vulnerable: Joomla commygallery 0 The 'commygallery' component for Joomla! is prone to an SQL-injection vulnerability because it fails to...

FAQ System 1.1 viewFAQ.php Multiple Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/15640/info FAQ System is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful...

newsPHP 2006 PRO index.php Multiple Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/18726/info NewsPHP 2006 PRO is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure in the application to properl...

Domain Verkaus & Auktions Portal 'index.php' SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/38737/info Domain Verkaus & Auktions Portal is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an...

Softbiz Resource Repository Script 0 report_link.php sbres_id Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/15585/info Softbiz Resource Repository Script is prone to SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query...

Enthrallweb eClassifieds dirSub.asp sid Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/21192/info eClassifieds is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to...