Joomla! Component CB Resume Builder - group_id SQL Injection

Joomla! Component CB Resume Builder - groupid SQL Injection source: https://www.securityfocus.com/bid/36598/info The CB Resume Builder 'comcbresumebuilder' component for Joomla! is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it...

Mozilla Bugzilla 'Bug.search()' WebService Function SQL Injection Vulnerability

Bugzilla is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying...

CVE-2009-0209

PI Server in OSIsoft PI System before 3.4.380.x does not properly use encryption in the default authentication process, which allows remote attackers to read or modify information in databases via unspecified vectors...

WX-Guestbook 1.1.208 - SQL Injection / HTML Injection

source: https://www.securityfocus.com/bid/41741/info WX-Guestbook is prone to multiple SQL-injection vulnerabilities and an HTML-injection vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker may leverage these issues to compromise the application, access or...

MyBB 1.4.8 - 'search.php' SQL Injection

source: https://www.securityfocus.com/bid/36460/info MyBB is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify data, or...

DvBBS 2.0 - boardrule.php SQL Injection

DvBBS 2.0 - boardrule.php SQL Injection source: https://www.securityfocus.com/bid/36282/info DvBBS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise t...

Paypal Shopping Cart Script - 'index.php?cid' SQL Injection

source: https://www.securityfocus.com/bid/43471/info Paypal Shopping Cart Script is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to steal...

Paypal Shopping Cart Script - index.php Multiple Cross-Site Scripting Vulnerabilities

Paypal Shopping Cart Script - index.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/43471/info Paypal Shopping Cart Script is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to sufficiently...

CVE-2008-6909

CVE-2008-6909 concerns a Drupal Services module issue where versions 5.x before 5.x-0.92 and 6.x before 6.x-0.13 do not sign all required data in requests. The available documents consistently describe an unspecified impact and suggest a risk of man-in-the-middle modification of data, potentially...

Willscript Auction Website Script - 'category.php' SQL Injection

source: https://www.securityfocus.com/bid/43254/info Willscript Auction Website Script is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to execute arbitrary code,...

CS-Cart 2.0.5 - 'reward_points.post.php' SQL Injection

source: https://www.securityfocus.com/bid/35936/info CS-Cart is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify data,...

Blog Ink (Blink) - Multiple SQL Injections

source: https://www.securityfocus.com/bid/43284/info Blog Ink Blink is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to compromise the application, acces...

Softbiz Dating Script 1.0 - cat_products.php SQL Injection

Softbiz Dating Script 1.0 - catproducts.php SQL Injection source: https://www.securityfocus.com/bid/35896/info Softbiz Dating Script is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could...

Update Protection against Joomla! Jobline Component 'search' Parameter SQL Injection Vulnerability

A SQL injection vulnerability exists in the Jobline component for Joomla!. The application fails to sufficiently sanitize user supplied data before using it in an SQL query. Successful exploitation could allow a remote attacker to compromise the application, access or modify data and launch other...

Clipbucket 1.7.1 - Multiple SQL Injections

Clipbucket 1.7.1 - Multiple SQL Injections source: https://www.securityfocus.com/bid/43383/info ClipBucket is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attack...

phpGroupWare Multiple Input Validation Vulnerabilities

phpGroupWare is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to disclose sensitive information, steal cookie-based authentication credentials, compromise the application, access or...

APBook 1.3 - Admin Login Multiple SQL Injections

APBook 1.3 - Admin Login Multiple SQL Injections source: https://www.securityfocus.com/bid/43452/info APBook is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an...

PHP Scripts Now Hangman - index.php?letters Cross-Site Scripting

PHP Scripts Now Hangman - index.php?letters Cross-Site Scripting source: https://www.securityfocus.com/bid/43513/info TOPHangman is prone to an SQL-injection vulnerability and an HTML-injection vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker may leverage...

PHP Scripts Now Hangman - 'index.php?n' SQL Injection

source: https://www.securityfocus.com/bid/43513/info TOPHangman is prone to an SQL-injection vulnerability and an HTML-injection vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker may leverage these issues to compromise the application, access or modify data,...

PHP Scripts Now Hangman - 'index.php?letters' Cross-Site Scripting

source: https://www.securityfocus.com/bid/43513/info TOPHangman is prone to an SQL-injection vulnerability and an HTML-injection vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker may leverage these issues to compromise the application, access or modify data,...