Fixit iDMS Pro Image Gallery filelist.asp Multiple Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/21282/info Fixit iDMS Pro is prone to multiple input-validation vulnerabilities, including SQL-injection issues and an HTML-injection issue, because the application fails to properly sanitize user-supplied input. Successf...

Snipe Gallery 3.1.4 image.php image_id Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/15844/info Snipe Gallery is prone to multiple input-validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of these vulnerabiliti...

Parsi PHP CMS 2.0 'index.php' SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/33914/info Parsi PHP CMS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise...

NolaPro Enterprise 4.0.5538 Cross Site Scripting and SQL Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/39875/info NolaPro Enterprise is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities. Exploiting these issues could allow an attacker to steal cookie-based authentication credentials,...

PHP-Fusion 4.0/5.0/6.0 Messages.PHP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/14489/info PHP-Fusion is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input to the 'messages.php' script before using it in an SQL query...

Qualiteam X-Cart 4.0.8 home.php Multiple Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/13817/info X-Cart is prone to SQL injection and cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. These vulnerabilities could permit remot...

AgileBill 1.4.92 Product_Cat SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/15572/info AgileBill is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly santize user-supplied input before using it in an SQL query. Successful exploitation could...

Xtreme ASP Photo Gallery 2.0 displaypic.asp sortorder Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/21138/info Xtreme ASP Photo Gallery is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues and an HTML-injection issue because the application fails to properly...

Nuked-Klan 1.7 Forum Module Multiple Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/15181/info Nuked Klan is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. These vulnerabilities...

Belchior Foundry vCard Pro 3.1 Addrbook.PHP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/15254/info vCard PRO is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could...

vCard PRO 0 search.php event_id Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/18699/info VCard PRO is prone to multiple SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. A successful exploit...

MyBulletinBoard 1.0 Usercp.PHP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/15204/info MyBulletinBoard is prone to an SQL injection vulnerability. This vulnerability could permit remote attackers to pass malicious input to database queries, resulting in modification of query logic or other attack...

Cerberus Helpdesk 2.649 cer_KnowledgebaseHandler.class.php _load_article_details Function SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/16062/info Cerberus Helpdesk is prone to multiple cross-site scripting and SQL injection vulnerabilities. These issues are the result of inadequate validation of user-supplied input that will be included in site output or...

Softbiz Resource Repository Script 0 details_res.php sbres_id Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/15585/info Softbiz Resource Repository Script is prone to SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query...

Eggblog 2.0 blog.php id Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/16305/info Eggblog is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of these vulnerabilities cou...

OpenDocMan 1.2.5 user.php XSS

No description provided by source. source: http://www.securityfocus.com/bid/36777/info OpenDocMan is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an...

Vastal I-Tech DVD Zone view_mag.php mag_id Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/36487/info DVD Zone is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to stea...

Pre Survey Generator 'default.asp' SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/30349/info Pre Survey Generator is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data. A successful exploit may allow an attacker to compromise the application, access or...

Comersus Cart 7.0.7 comersus_optReviewReadExec.asp id Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/24562/info Comersus Cart is affected by multiple input validation vulnerabilities. A successful exploit could allow an attacker to compromise the application, access or modify data, or exploit vulnerabilities in the...

PHPCafe Tutorial Manager Index.PHP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/15244/info PHPcafe Tutorial Manager is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful...