712 matches found
paFileDB includes/search.php categories Parameter SQL Injection
The version of paFileDB installed on the remote host fails to sanitize user-supplied input to the 'categories' parameter before using it in the 'includes/search.php' script to make database queries. An unauthenticated attacker can exploit this issue to manipulate database queries, which could lea...
Calendarix calendar.php Multiple Parameter SQL Injection
The remote host is running Calendarix, a free web-based calendar application written in PHP. The version of Calendarix installed on the remote host fails to sanitize input to the 'month' and 'year' parameters of the 'calendar.php' script before using it in database queries. Provided PHP's...
Calendarix <= 0.7.20070307 calendar.php month and year parameter SQL Injection
Binary data 4113.prm...
YaNC Component for Joomla! 'listid' Parameter SQLi
The version of the YaNC component for Joomla! and Mambo running on the remote host is affected by a SQL injection vulnerability in the components/comyanc/yanc.html.php script due to improper sanitization of user-supplied input to the 'listid' parameter before using it to construct database querie...
Duyuru Scripti - Goster.asp SQL Injection
Duyuru Scripti - Goster.asp SQL Injection source: https://www.securityfocus.com/bid/22910/info Duyuru Scripti is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. Exploiting this vulnerability could perm...
S9Y Serendipity 1.1.1 - index.php SQL Injection
S9Y Serendipity 1.1.1 - index.php SQL Injection source: https://www.securityfocus.com/bid/22774/info Serendipity is affected by an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. Exploiting this vulnerability coul...
ExoPHPDesk faq.php id Parameter SQL Injection
The remote host is running Exo PHPDesk, a helpdesk application written in PHP. The version of Exo PHPDesk on the remote host fails to properly sanitize input to the 'id' parameter of the 'faq.php' script before using it in database queries. Provided PHP's 'magicquotesgpc' setting is disabled, an...
WoltLab Burning Board search.php Multiple Parameter SQL Injection
The version of Burning Board / Burning Board Lite on the remote host fails to sanitize user input to the 'boardids' parameter of the 'search.php' script before using it in database queries. Regardless of PHP's 'registerglobals' and 'magicquotesgpc' settings, an unauthenticated, remote attacker ca...
WordPress Trackback 'wp-trackback.php' 'tb_id' Parameter SQL Injection
The version of WordPress on the remote host fails to properly sanitize input to the 'tbid' parameter of the 'wp-trackback.php' script before using it in database queries. An unauthenticated, remote attacker can leverage this issue to launch SQL injection attacks against the affected application,...
WordPress Trackback Charset Decoding SQL Injection
The version of WordPress on the remote host supports trackbacks in alternate character sets and decodes them after escaping SQL parameters. By specifying an alternate character set and encoding input with that character set while submitting a trackback, an unauthenticated, remote attacker can...
Cacti copy_cacti_user.php template_user Variable SQL Injection
The remote host is running Cacti, a web-based, front end to RRDTool for network graphing. The version of Cacti on the remote host does not properly check whether the 'copycactiuser.php' script is being run from a commandline and fails to sanitize user-supplied input before using it in database...
[Full-disclosure] Invision Power Board 2.1.7 debug mode vulnerability
Debug mode is a feature in IPB 2.0.0-2.1.7 that shows all database queries for each forum page requested. If Debug mode is turned on, it is possible for anyone to request a forgotten password for an account, and capture the validation key that is sent to the account's email address. This allows a...
PunBB 1.x - SQL Injection
source: https://www.securityfocus.com/bid/20786/info PunBB is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may exploit these issues to execute arbitrary script code in the context of the webserver process or to pass...
CubeCart < 3.0.12 Multiple Vulnerabilities (SQLi, XSS)
The version of CubeCart installed on the remote host fails to properly sanitize user-supplied input to several parameters and scripts before using it in database queries and to generate dynamic web content. An unauthenticated attacker may be able to exploit these issues to conduct SQL injection a...
Seir Anphin V666 Community Management System - Multiple SQL Injections
Seir Anphin V666 Community Management System - Multiple SQL Injections source: https://www.securityfocus.com/bid/19244/info Seir Anphin V666 Community Management System is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before...
phpBB-Auction 1.x - auction_store.php?u SQL Injection
phpBB-Auction 1.x - auctionstore.php?u SQL Injection source: https://www.securityfocus.com/bid/19179/info PHPBB-Auction is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in an SQL query. These vulnerabilities...
phpBB-Auction 1.x - auction_room.php?ar SQL Injection
phpBB-Auction 1.x - auctionroom.php?ar SQL Injection source: https://www.securityfocus.com/bid/19179/info PHPBB-Auction is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in an SQL query. These vulnerabilities...
phpBB-Auction 1.x - 'auction_store.php?u' SQL Injection
source: https://www.securityfocus.com/bid/19179/info PHPBB-Auction is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in an SQL query. These vulnerabilities could permit remote attackers to pass malicious input...
phpBB-Auction 1.x - 'auction_room.php?ar' SQL Injection
source: https://www.securityfocus.com/bid/19179/info PHPBB-Auction is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in an SQL query. These vulnerabilities could permit remote attackers to pass malicious input...
Invision Power Board classes/class_session.php CLIENT_IP HTTP Header SQL Injection
According to its banner, the installation of Invision Power Board on the remote host reportedly fails to sanitize input to the 'CLIENTIP' HTTP request header before using it in database queries. An unauthenticated attacker may be able to leverage this issue to disclose sensitive information, modi...