Discuz! moderation.inc.php 数据库'注射'漏洞

在文件include/moderation.inc.php里代码: $threadlist = $loglist = array; if$tids = implodeids$moderate $query = $db-query"SELECT FROM $tableprethreads WHERE tid IN $tids AND fid='$fid' AND displayorder='0' AND digest='0' LIMIT $tpp"; while$thread = $db-fetcharray$query ... $threadlist$thread'tid' =...

CVE-2008-4605

SQL injection vulnerability in CafeEngine allows remote attackers to execute arbitrary SQL commands via the id parameter to 1 dish.php and 2 menu.php...

DEBIAN-CVE-2008-3880

SQL injection vulnerability in zmhtmlviewevent.php in ZoneMinder 1.23.3 and earlier allows remote attackers to execute arbitrary SQL commands via the filter array parameter...

CVE-2008-2847

SQL injection vulnerability in the Trade module in Maxtrade AIO 1.3.23 allows remote attackers to execute arbitrary SQL commands via the categori parameter in a pocategorisell action to modules.php...

CVE-2008-2760

SQL injection vulnerability in searchbanners.asp in Xigla Absolute Banner Manager XE 2.0 allows remote authenticated administrators to execute arbitrary SQL commands via the orderby parameter...

horde316-inclusion.txt

Horde 3.1.6 arbitrary file inclusion vulnerability, proof of concept & patch. A severe security vulnerability affects any unix distribution running version 3.1.6 of the Horde webmail client included in most popular webhosting control panels. All previous versions are also affected and it is...

DeDeCMS V5 用户验证函数转义符漏洞

在include\incuserlogin.php文件中，checkUser函数对过滤处理不当，导致可以注入转义符，致使系统数据库语句出错。。。 $this-userName = eregreplace"^0-9a-zA-Z@!.-","",$username; ，是不是代码编写人员忘记了，在引号内，转义符只能转义单引号和斜杠 :-P,这样，在变量username中输入一个单引号，变成',然后过滤'留下,导致数据库语句执行出错。 DeDeCMS V5、DeDeCMS 2007 去掉代码中的斜杠，语句改为：$this-userName =...

DEBIAN-CVE-2007-6318

SQL injection vulnerability in wp-includes/query.php in WordPress 2.3.1 and earlier allows remote attackers to execute arbitrary SQL commands via the s parameter, when DBCHARSET is set to 1 Big5, 2 GBK, or possibly other character set encodings that support a "" in a multibyte character...

About the new cloud of deception into the background-bug warning-the black bar safety net

I believe that many rookie like me to find a new cloud to the default database or by long-ago that download vulnerability get the database again or by injection to obtain a user name and password, but found that the md5 of the password Cracker does not come out, is that there is no way into the...

CVE-2007-2000

Multiple SQL injection vulnerabilities in admin/admin.php in Crea-Book 1.0 and earlier allow remote attackers to execute arbitrary SQL commands via the 1 pseudo or 2 passe parameter...

CVE-2007-1163

SQL injection vulnerability in printview.php in webSPELL 4.01.02 and earlier allows remote attackers to execute arbitrary SQL commands via the topic parameter, a different vector than CVE-2007-1019, CVE-2006-5388, and CVE-2006-4783...

PT-2006-6746 · Candypress · Candypress Store

Name of the Vulnerable Software and Affected Versions: CandyPress Store version 3.5.2.14 Description: The issue concerns SQL injection vulnerabilities that allow remote attackers to execute arbitrary SQL commands. This can be achieved via the policy parameter in "openPolicy.asp" or the brand...

PT-2006-6728 · Creascripts · Creascripts Creadirectory

Name of the Vulnerable Software and Affected Versions: CreaScripts Creadirectory affected versions not specified Description: The issue allows remote attackers to execute arbitrary SQL commands via the category parameter in the "search.asp" file. This can lead to unauthorized access and...

PT-2006-6739 · Unknown · Activenews Manager

Name of the Vulnerable Software and Affected Versions: ActiveNews Manager affected versions not specified Description: The issue concerns multiple SQL injection vulnerabilities. These vulnerabilities allow remote attackers to execute arbitrary SQL commands. The vulnerabilities can be exploited...

PT-2006-6556 · Brewblogger · Brewblogger

Name of the Vulnerable Software and Affected Versions: BrewBlogger version 1.3.1 Description: The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the id parameter in the printLog.php file. Recommendations: For BrewBlogger version 1.3.1, consider restricting...

Easylinks multiple vulnerabilities

Unescaped input is used directly in queries, allowing malicious users to execute SQL injection attacks. This may result in administrator privileges. It is also possible for a malicious user to insert and execute XSS Cross Site Scripting, due to lack of validation on output. This may lead to...

DRUPAL-SA-2006-012: Jobsearch module

It is possible for a malicious user to inject SQL while searching for jobs or resumes using the Job Search module. Versions affected Please check the CVS $Id$ field in the file job.module to determine whether the version you are running is vulnerable. All 4.6 versions older than the following are...

security flaw

SQL injection vulnerability in MySQL 4.1.x before 4.1.20 and 5.0.x before 5.0.22 allows context-dependent attackers to execute arbitrary SQL commands via crafted multibyte encodings in character sets such as SJIS, BIG5, and GBK, which are not properly handled when the mysqlrealescape function is...

DEBIAN-CVE-2006-0626

SQL injection vulnerability in spipaccesdoc.php3 in SPIP 1.8.2g and earlier allows remote attackers to execute arbitrary SQL commands via the file parameter...

PT-2005-4920 · Jamit · Jamit Job Board

Name of the Vulnerable Software and Affected Versions: Jamit Job Board versions 2.4.1 and earlier Description: A SQL injection issue allows remote attackers to execute arbitrary SQL commands via the cat parameter in the "index.php" file. The vendor has disputed this issue, claiming it has no basi...