Sourcefabric Newscoop Multiple Cross Site Scripting and SQL Injection Vulnerabilities

Sourcefabric Newscoop is prone to multiple cross-site scripting and SQL-injection vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically generated content. Exploiting these issues could allow an attacker to steal cookie- based authentication...

Sourcefabric Newscoop <= 3.5.4 Multiple Vulnerabilities - Active Check

Sourcefabric Newscoop is prone to multiple cross-site scripting XSS and SQL injection SQLi vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically generated content. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpte...

Matterdaddy Market 1.1 - cat_name Multiple SQL Injections

Matterdaddy Market 1.1 - catname Multiple SQL Injections source: https://www.securityfocus.com/bid/52970/info Matterdaddy Market is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. A successful exploit ma...

osCMax 2.5 - adminlogin.php?Username SQL Injection

osCMax 2.5 - adminlogin.php?Username SQL Injection source: https://www.securityfocus.com/bid/52886/info osCMax is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these...

osCMax 2.5 - admingeo_zones.php?zID Cross-Site Scripting

osCMax 2.5 - admingeozones.php?zID Cross-Site Scripting source: https://www.securityfocus.com/bid/52886/info osCMax is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these...

osCMax 2.5 - &#039;/admin/login.php?Username&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/52886/info osCMax is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these vulnerabilities could allow an attacker to steal...

osCMax 2.5 - &#039;/admin/htaccess.php&#039; Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/52886/info osCMax is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these vulnerabilities could allow an attacker to steal...

osCMax 2.5 - adminlogin.php?Username Cross-Site Scripting

osCMax 2.5 - adminlogin.php?Username Cross-Site Scripting source: https://www.securityfocus.com/bid/52886/info osCMax is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting thes...

osCMax 2.5 - &#039;/admin/stats_monthly_sales.php?status&#039; SQL Injection

source: https://www.securityfocus.com/bid/52886/info osCMax is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these vulnerabilities could allow an attacker to steal...

osCMax 2.5 - &#039;/admin/stats_customers.php?sorted&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/52886/info osCMax is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these vulnerabilities could allow an attacker to steal...

osCMax 2.5 - adminstats_products_purchased.php Multiple Cross-Site Scripting Vulnerabilities

osCMax 2.5 - adminstatsproductspurchased.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/52886/info osCMax is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize...

CVE-2011-5085

Unspecified vulnerability in Movable Type 4.x before 4.36 and 5.x before 5.05 allows remote attackers to read or modify data via unknown vectors...

Design/Logic Flaw

Unspecified vulnerability in Movable Type 4.x before 4.36 and 5.x before 5.05 allows remote attackers to read or modify data via unknown vectors...

CVE-2011-5085

CVE-2011-5085 affects Movable Type Open Source: 4.x before 4.36 and 5.x before 5.05. The vulnerability allows remote attackers to read or modify data via unknown vectors. Public sources cite a Debian advisory (DSA-2423-1) and related listings, indicating a patch/update is available for mov­ablety...

CVE-2011-5085

Unspecified vulnerability in Movable Type 4.x before 4.36 and 5.x before 5.05 allows remote attackers to read or modify data via unknown vectors...

EasyPHP - &#039;main.php&#039; SQL Injection

source: https://www.securityfocus.com/bid/52781/info EasyPHP is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit may allow an attacker to compromise the application, access or modif...

NextBBS 0.6 - &#039;index.php?do&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/52728/info NextBBS is prone to multiple SQL-injection vulnerabilities, a cross-site scripting vulnerability, and an authentication-bypass vulnerability. Exploiting these vulnerabilities could allow an attacker to steal cookie-based authentication...

ClassifiedsGeek.com Vacation Packages - listing_search SQL Injection

ClassifiedsGeek.com Vacation Packages - listingsearch SQL Injection source: https://www.securityfocus.com/bid/52637/info Vacation Packages is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. A successful exploit...

Omnistar Live - Cross-Site Scripting SQL Injection

Omnistar Live - Cross-Site Scripting SQL Injection source: https://www.securityfocus.com/bid/52438/info Omnistar Live is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could all...

Omnistar Live - Cross-Site Scripting / SQL Injection

source: https://www.securityfocus.com/bid/52438/info Omnistar Live is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to steal cookie-based authentication...