4Images 1.7.10 - adminindex.php?redirect Arbitrary Site Redirect

4Images 1.7.10 - adminindex.php?redirect Arbitrary Site Redirect source: https://www.securityfocus.com/bid/51774/info 4images is prone to multiple input-validation vulnerabilities including: 1. A cross-site scripting vulnerability. 2. An open-redirection vulnerability. 3. An SQL-injection...

4Images 1.7.10 - admincategories.php?cat_parent_id SQL Injection

4Images 1.7.10 - admincategories.php?catparentid SQL Injection source: https://www.securityfocus.com/bid/51774/info 4images is prone to multiple input-validation vulnerabilities including: 1. A cross-site scripting vulnerability. 2. An open-redirection vulnerability. 3. An SQL-injection...

4Images 1.7.10 - '/admin/categories.php?cat_parent_id' Cross-Site Scripting

source: https://www.securityfocus.com/bid/51774/info 4images is prone to multiple input-validation vulnerabilities including: 1. A cross-site scripting vulnerability. 2. An open-redirection vulnerability. 3. An SQL-injection vulnerability. An attacker may leverage these issues to perform spoofing...

Joomla! Component com_products - Multiple SQL Injections

Joomla! Component comproducts - Multiple SQL Injections source: https://www.securityfocus.com/bid/51674/info The 'comproducts' component for Joomla! is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query...

Joomla! Component com_motor - cid SQL Injection

Joomla! Component commotor - cid SQL Injection source: https://www.securityfocus.com/bid/51673/info The 'commotor' component for Joomla! is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue...

Ultimate Locator - radius SQL Injection

Ultimate Locator - radius SQL Injection source: https://www.securityfocus.com/bid/51653/info Ultimate Locator is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to...

Joomla! Component Vik Real Estate 1.0 - Multiple SQL Injections

source: https://www.securityfocus.com/bid/51617/info The 'comsanpham' component for Joomla! is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to compromis...

Joomla! Component com_car - Multiple SQL Injections

source: https://www.securityfocus.com/bid/51620/info The 'comcar' component for Joomla! is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to compromise th...

Joomla! Component com_car - Multiple SQL Injections

Joomla! Component comcar - Multiple SQL Injections source: https://www.securityfocus.com/bid/51620/info The 'comcar' component for Joomla! is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting...

Snitz Forums 2000 - 'TOPIC_ID' SQL Injection

source: https://www.securityfocus.com/bid/51596/info Snitz Forums 2000 is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. A successful exploit will allow an attacker to compromise the application, access or modi...

PostNuke pnAddressbook Module - id SQL Injection

PostNuke pnAddressbook Module - id SQL Injection source: https://www.securityfocus.com/bid/51566/info The pnAddressbook module for PostNuke is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issu...

MMORPG Zone - view_news.php SQL Injection

MMORPG Zone - viewnews.php SQL Injection source: https://www.securityfocus.com/bid/51532/info MMORPG Zone is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to...

MMORPG Zone - 'view_news.php' SQL Injection

source: https://www.securityfocus.com/bid/51532/info MMORPG Zone is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify...

Contus Job Portal - 'Category' SQL Injection

source: https://www.securityfocus.com/bid/51404/info Contus Job Portal is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. A successful exploit will allow an attacker to compromise the application, access or modi...

Contus Job Portal - Category SQL Injection

Contus Job Portal - Category SQL Injection source: https://www.securityfocus.com/bid/51404/info Contus Job Portal is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. A successful exploit will allow an attacker to...

Joomla! Component com_contushdvideoshare 1.3 - id SQL Injection

Joomla! Component comcontushdvideoshare 1.3 - id SQL Injection source: https://www.securityfocus.com/bid/51411/info The HD Video Share 'comcontushdvideoshare' component for Joomla! is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using...

Clipbucket 2.6 - 'channels.php?cat' Cross-Site Scripting

source: https://www.securityfocus.com/bid/51321/info ClipBucket is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these vulnerabilities could allow an attacker to steal...

Gregarius 0.6.1 - Multiple SQL Injections / Cross-Site Scripting

source: https://www.securityfocus.com/bid/51338/info Gregarius is prone to multiple SQL-injection and cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these vulnerabilities could allow an attacker to steal cookie-based authentication...

Marinet CMS - 'gallery.php?id' SQL Injection

source: https://www.securityfocus.com/bid/51336/info Marinet CMS is prone to multiple SQL-injection vulnerabilities because the application fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to compromise the...

Clipbucket 2.6 - view_item.php?type Cross-Site Scripting

Clipbucket 2.6 - viewitem.php?type Cross-Site Scripting source: https://www.securityfocus.com/bid/51321/info ClipBucket is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting the...