PostNuke 0.6x/0.7x NS-Languages Module language Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/16752/info PostNuke is prone to multiple input-validation vulnerabilities. These issues are due to the application's failure to properly sanitize user-supplied input. Successful exploitation could allow an attacker to...

XMB Forum 1.8/1.9 u2u.php username Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/16604/info XMB Forum is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because the application fails to properly sanitize user-supplied input. Successful...

AbleDating 2.4 - search_results.php keyword Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/29342/info AbleDating is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied data. The issues include an SQL-injection vulnerability and a cross-site scripting...

APBoard Thread.PHP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/15513/info APBoard is prone to an SQL injection vulnerability. This is due to a lack of proper sanitization of user-supplied input before it is used in SQL queries. Successful exploitation could result in a compromise of...

saphp Lesson add.php forumid Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/15185/info saphp Lesson is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. Successful...

DUware DUclassmate 1.x default.asp iState Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/14036/info DUclassmate is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries. A successful exploit could allow an attacker...

OpenBiblio 0.x theme_del_confirm.php name Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/27053/info OpenBiblio is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied data. The issues include SQL-injection, cross-site scripting, HTML-injection, and local...

SimplePoll Results.PHP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/15508/info SimplePoll is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could...

E-topbiz Link ADS 1 'out.php' SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/29923/info Link ADS 1 is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise th...

IHTML Merchant Mall SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/15910/info iHTML Merchant Mall is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitatio...

JPortal 2.2.1/2.3.1 Download.PHP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/14926/info JPortal is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could resu...

Evolve Shopping Cart products.ASP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/21323/info Evolve Shopping Cart is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attack...

Ocean12 Technologies Calendar Manager Pro 1.0 1 admin/view.asp SearchFor Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/17877/info Calendar Manager Pro is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure in the application to...

PHPLive! 3.2.2 'request.php' SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/35718/info PHPLive! is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...

Z1Exchange 1.0 showads.php id Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/32598/info Z1Exchange is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to...

Jupiter CMS 1.1.4/1.1.5 modules/mass-email.php Multiple Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/20048/info Jupiter CMSA is prone to multiple input-validation vulnerabilities, including cross-site scripting, SQL-injection, and arbitrary file-upload issues, because the application fails to sanitize user-supplied input...

Snitz Forums 2000 3.x Members.ASP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/4558/info Snitz Forums 2000 is ASP-based web forum software. It runs on Microsoft Windows operating systems. Snitz is back-ended by a database and supports Microsoft Access 97/2000, SQL Server 6.5/7.0/2000 and MySQL. It i...

AlstraSoft Affiliate Network Pro 8.0 merchants/temp.php rowid Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/25026/info AlstraSoft Affiliate Network Pro is affected by multiple input-validation vulnerabilities. These issues include multiple cross-site scripting isues and SQL-injection issues. A successful exploit could allow an...

TurnkeyWebTools SunShop Shopping Cart 4.0 index.php l Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/23856/info TurnkeyWebTools SunShop Shopping Cart is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to steal...

Fixit iDMS Pro Image Gallery filelist.asp Multiple Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/21282/info Fixit iDMS Pro is prone to multiple input-validation vulnerabilities, including SQL-injection issues and an HTML-injection issue, because the application fails to properly sanitize user-supplied input. Successf...