Primo Place Primo Cart 1.0 - Multiple SQL Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/16125/info Primo Cart is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful...

EdmoBBS 0.9 - SQL Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/15589/info edmoBBS is prone to SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could...

XRMS 1.99.2 opportunities/some.php opportunity_title Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/31008/info XRMS CRM is prone to multiple input-validation vulnerabilities, including an unspecified SQL-injection issue, an HTML-injection issue, and multiple cross-site scripting issues. The vulnerabilities occur because...

OpenX 2.6.1 SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/37913/info OpenX is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...

Nuked-Klan 1.7 Download Module dl_id Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/15181/info Nuked Klan is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. These vulnerabilities...

Messageriescripthp 2.0 existepseudo.php pseudo Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/21513/info Messageriescripthp is prone to multiple input-validation vulnerabilities, including SQL-injection and cross-site scripting issues, because it fails to sufficiently sanitize user-supplied data. Exploiting these...

Car Site Manager csm/asp/listings.asp Multiple Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/21066/info Car Site Manager is prone to multiple SQL-injection and cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to stea...

RadScripts RadBids Gold 2.0 - index.php mode Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/13080/info RadBids Gold is reported prone to multiple vulnerabilities. These issues include arbitrary file disclosure, cross-site scripting, and SQL injection. The following specific vulnerabilities were identified: A...

Klf-Realty 2.0 detail.asp property_id Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/21199/info Klf-Realty is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to...

QuickPayPro 3.1 customer.tickets.view.php Multiple Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/15863/info QuickPayPro is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of these vulnerabilities...

News Module for Envolution modules.php Multiple Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/15857/info Envolution is prone to multiple input validation vulnerabilities. Successful exploitation of these vulnerabilities could result in a compromise of the application, disclosure or modification of data, the theft ...

SoftBiz Web Hosting Directory Script 1.1 browsecats.php cid Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/15561/info Softbiz Web Host Directory Script is prone to multiple SQL injection vulnerabilities. These issues occur because the application fails to properly sanitize user-supplied input before using it in an SQL query...

VBulletin 1.0.1 lite/2.x/3.0 /admincp/user.php Multiple Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/14872/info vBulletin is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. Successful exploitatio...

eXtrovert software Thyme 1.3 'pick_users.php' SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/31063/info eXtrovert software Thyme is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to...

PhotoPost PHP 3.3.1 'cat' Parameter Cross Site Scripting and SQL Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/35996/info PhotoPost PHP is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to...

WebCalendar 0.9.45 SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/12581/info WebCalendar is affected by an SQL injection vulnerability. This issue exists because the application fails to properly sanitize user-supplied input before using it in SQL queries. Successful exploitation could...

MD News 1 Admin.PHP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/17394/info MD News is prone to an SQL-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow a...

FooSun Api_Response.ASP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/26552/info FooSun is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...

SoftBiz B2B trading Marketplace Script 1.1 profiles.php cid Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/15652/info Softbiz B2B Trading Marketplace is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query...

NetSupport DNA HelpDesk 1.0 Problist Script SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/10772/info An SQL injection vulnerability is identified in the application that may allow attackers to pass malicious input to database queries, resulting in the modification of query logic or other attacks. This...