701 matches found
ADOdb server.php sql Parameter SQL Injection
The remote host is running ADOdb, a database abstraction library for PHP. The installed version of ADOdb includes a test script named 'server.php' that fails to sanitize user input to the 'sql' parameter before using it in database queries. An attacker can exploit this issue to launch SQL injecti...
LocazoList Classifieds 1.0 - 'SearchDB.asp' Input Validation
source: https://www.securityfocus.com/bid/15812/info LocazoList Classifieds is prone to an input validation vulnerability that allows cross-site scripting and SQL injection attacks. An attacker may leverage this issue to have arbitrary script code executed in the browser of an unsuspecting user i...
Magic List Pro - view_archive.cfm?ListID SQL Injection
Magic List Pro - viewarchive.cfm?ListID SQL Injection source: https://www.securityfocus.com/bid/15774/info CFMagic Products are prone to multiple input validation vulnerabilities. These are due to a lack of proper sanitization of user-supplied input. These vulnerabilities allow an attacker to...
Magic Forum Personal - view_forum.cfm?ForumID SQL Injection
Magic Forum Personal - viewforum.cfm?ForumID SQL Injection source: https://www.securityfocus.com/bid/15774/info CFMagic Products are prone to multiple input validation vulnerabilities. These are due to a lack of proper sanitization of user-supplied input. These vulnerabilities allow an attacker t...
Magic Forum Personal - 'view_thread.cfm' Multiple SQL Injections
source: https://www.securityfocus.com/bid/15774/info CFMagic Products are prone to multiple input validation vulnerabilities. These are due to a lack of proper sanitization of user-supplied input. These vulnerabilities allow an attacker to inject malicious SQL code into database queries, and...
Web4Future eCommerce Enterprise Edition 2.1 - view.php Multiple SQL Injections
Web4Future eCommerce Enterprise Edition 2.1 - view.php Multiple SQL Injections source: https://www.securityfocus.com/bid/15707/info eCommerce Enterprise Edition is prone to multiple SQL injection vulnerabilities. These vulnerabilities could permit remote attackers to pass malicious input to...
Web4Future eCommerce Enterprise Edition 2.1 - viewbrands.php?bid SQL Injection
Web4Future eCommerce Enterprise Edition 2.1 - viewbrands.php?bid SQL Injection source: https://www.securityfocus.com/bid/15707/info eCommerce Enterprise Edition is prone to multiple SQL injection vulnerabilities. These vulnerabilities could permit remote attackers to pass malicious input to...
Web4Future eCommerce Enterprise Edition 2.1 - index.php Multiple SQL Injections
Web4Future eCommerce Enterprise Edition 2.1 - index.php Multiple SQL Injections source: https://www.securityfocus.com/bid/15707/info eCommerce Enterprise Edition is prone to multiple SQL injection vulnerabilities. These vulnerabilities could permit remote attackers to pass malicious input to...
Web4Future eCommerce Enterprise Edition 2.1 - 'index.php' Multiple SQL Injections
source: https://www.securityfocus.com/bid/15707/info eCommerce Enterprise Edition is prone to multiple SQL injection vulnerabilities. These vulnerabilities could permit remote attackers to pass malicious input to database queries, resulting in modification of query logic or other attacks. eCommer...
Web4Future eCommerce Enterprise Edition 2.1 - 'view.php' Multiple SQL Injections
source: https://www.securityfocus.com/bid/15707/info eCommerce Enterprise Edition is prone to multiple SQL injection vulnerabilities. These vulnerabilities could permit remote attackers to pass malicious input to database queries, resulting in modification of query logic or other attacks. eCommer...
Relative Real Estate Systems 1.2 - SQL Injection
source: https://www.securityfocus.com/bid/15714/info Relative Real Estate Systems is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input to the 'index.php' script before using it in an SQL query. This vulnerability...
Web4Future eCommerce Enterprise Edition 2.1 - 'viewbrands.php?bid' SQL Injection
source: https://www.securityfocus.com/bid/15707/info eCommerce Enterprise Edition is prone to multiple SQL injection vulnerabilities. These vulnerabilities could permit remote attackers to pass malicious input to database queries, resulting in modification of query logic or other attacks. eCommer...
WebCalendar 1.0.1 - Multiple SQL Injections
WebCalendar 1.0.1 - Multiple SQL Injections source: https://www.securityfocus.com/bid/15662/info WebCalendar is prone to multiple SQL injection vulnerabilities. This vulnerability could permit remote attackers to pass malicious input to database queries, resulting in modification of query logic o...
WebCalendar 1.0.1 - Multiple SQL Injections
source: https://www.securityfocus.com/bid/15662/info WebCalendar is prone to multiple SQL injection vulnerabilities. This vulnerability could permit remote attackers to pass malicious input to database queries, resulting in modification of query logic or other attacks. Successful exploitation cou...
PDJK-support Suite 1.1 - Multiple SQL Injections
source: https://www.securityfocus.com/bid/15598/info PDJK-support Suite is prone to multiple SQL injection vulnerabilities. These vulnerabilities could permit remote attackers to pass malicious input to database queries, resulting in modification of query logic or other attacks. Successful...
AFFCommerce Shopping Cart 1.1.4 - subcategory.php?cl SQL Injection
AFFCommerce Shopping Cart 1.1.4 - subcategory.php?cl SQL Injection source: https://www.securityfocus.com/bid/15545/info AFFCommerce Shopping Cart is prone to multiple SQL injection vulnerabilities. These vulnerabilities could permit remote attackers to pass malicious input to database queries,...
AFFCommerce Shopping Cart 1.1.4 - ItemInfo.php?item_id SQL Injection
AFFCommerce Shopping Cart 1.1.4 - ItemInfo.php?itemid SQL Injection source: https://www.securityfocus.com/bid/15545/info AFFCommerce Shopping Cart is prone to multiple SQL injection vulnerabilities. These vulnerabilities could permit remote attackers to pass malicious input to database queries,...
AFFCommerce Shopping Cart 1.1.4 - 'ItemInfo.php?item_id' SQL Injection
source: https://www.securityfocus.com/bid/15545/info AFFCommerce Shopping Cart is prone to multiple SQL injection vulnerabilities. These vulnerabilities could permit remote attackers to pass malicious input to database queries, resulting in modification of query logic or other attacks. AFFCommerc...
AFFCommerce Shopping Cart 1.1.4 - 'ItemReview.php?item_id' SQL Injection
source: https://www.securityfocus.com/bid/15545/info AFFCommerce Shopping Cart is prone to multiple SQL injection vulnerabilities. These vulnerabilities could permit remote attackers to pass malicious input to database queries, resulting in modification of query logic or other attacks. AFFCommerc...
FreeForum 1.0/1.1 - Multiple SQL Injections
source: https://www.securityfocus.com/bid/15559/info freeForum is prone to multiple SQL injection vulnerabilities. These vulnerabilities could permit remote attackers to pass malicious input to database queries, resulting in modification of query logic or other attacks. Successful exploitation...