CMS Made Simple content_css.php templateid Parameter SQL Injection

Binary data 4328.prm...

Plogger plog-rss.php id Parameter SQL Injection

The remote host appears to be running Plogger, an open source photo gallery written in PHP. The version of Plogger installed on the remote host fails to sanitize input to the 'id' parameter of the 'plog-rss.php' script before using it in a database query. Regardless of PHP's 'magicquotesgpc' and...

1024 CMS 1.3.1 - Local File Inclusion / SQL Injection

vuln.: 1024 CMS 1.3.1 LFI/SQL Multiple Vulnerabilities script info and download: http://www.1024cms.com author: irk4zatyahoo.pl greets to: str0ke, wacky '-----------------------------------------------------------------------------' sql-injection: code: /admin/ops/findip/ajax/search.php: ... 8...

WordPress Core 2.3.1 - Charset SQL Injection

=== WordPress Charset SQL Injection Vulnerability === Release date: 2007-12-10 Last modified: 2007-12-12 Source: Abel Cheung Affected version: WordPress = 2.3.1 Exploit type: Remote Risk: Moderate CVE: pending Reference: http://www.abelcheung.org/advisory/20071210-wordpress-charset.txt 1. Summary...

Issues not shown in issue navigator that a user has permission for according to the issue security level

Users may not be able to see certain issues in the IssueNavigator, if they create an issue level security, where the permission depends on a user custom field where the customfield does not have a searcher set. Browsing the issue directly, works fine, however when running a search the issue wont ...

LinPHA < 1.3.2 SQL Injection Vulnerability

Binary data 4150.prm...

LinPHA include/img_view.class.php order parameter SQL Injection

The remote host is running LinPHA, a web photo gallery application written in PHP. The version of LinPHA installed on the remote host fails to sanitize input to the 'order' parameter of the 'newimages.php' script before using it in the 'setSql' function in 'include/imgview.class.php' in a databas...

Directory traversal

Directory traversal vulnerability in modules/file.php in Seir Anphin allows remote attackers to obtain sensitive information via a .. dot dot in the afilepath parameter. NOTE: a third party has disputed this issue because the a array is populated by a database query before use...

XOOPS Jobs Module index.php cid Parameter SQL Injection

The remote host is running the Jobs module, a third-party module for XOOPS. The version of this module installed on the remote host fails to properly sanitize user-supplied input to the 'cid' parameter of the 'modules/jobs/index.php' script before using it to build a database query. Regardless of...

OrangeHRM < 2.1 alpha 5 login.php txtUserName Parameter SQL Injection

Binary data 3928.prm...

MyReview Admin.php email Parameter SQL Injection

The remote host is running MyReview, an open source paper submission and review web application. The version of MyReview installed on the remote host fails to properly sanitize input to the 'email' parameter before using it in the 'GetMember' function in a database query. Regardless of PHP's...

Owl Intranet Engine < 0.91 Multiple Vulnerabilities

Binary data 3729.prm...

Owl Intranet Engine <= 0.91 Multiple Vulnerabilities

The remote host is running Owl Intranet Engine, a web-based document management system written in PHP. The version of Owl Intranet Engine on the remote host fails to sanitize input to the session id cookie before using it in a database query. Provided PHP's 'magicquotesgpc' setting is disabled, a...

Loudblog index.php id Parameter SQL Injection

The remote host is running Loudblog, a PHP application for publishing podcasts and similar media files. The version of Loudblog installed on the remote host fails to sanitize input to the 'id' parameter of the 'index.php' script before using it in a database query. This may allow an unauthenticat...

MyBB HTTP Header 'CLIENT-IP' Field SQLi

The version of MyBB installed on the remote host is affected by a SQL injection vulnerability due to improper sanitization of user-supplied input to the 'CLIENT-IP' request header before using it in a database query when initiating a session in the inc/classsession.php script. A remote attacker c...

CVE-2005-4744

Off-by-one error in the sqlerror function in sqlunixodbc.c in FreeRADIUS 1.0.2.5-5, and possibly other versions including 1.0.4, might allow remote attackers to cause a denial of service crash and possibly execute arbitrary code by causing the external database query to fail. NOTE: this single...

CVE-2005-4744

Off-by-one error in the sqlerror function in sqlunixodbc.c in FreeRADIUS 1.0.2.5-5, and possibly other versions including 1.0.4, might allow remote attackers to cause a denial of service crash and possibly execute arbitrary code by causing the external database query to fail. NOTE: this single...

LocazoList Classifieds 1.0 - SearchDB.asp Input Validation

LocazoList Classifieds 1.0 - SearchDB.asp Input Validation source: https://www.securityfocus.com/bid/15812/info LocazoList Classifieds is prone to an input validation vulnerability that allows cross-site scripting and SQL injection attacks. An attacker may leverage this issue to have arbitrary...

Relative Real Estate Systems 1.2 - SQL Injection

Relative Real Estate Systems 1.2 - SQL Injection source: https://www.securityfocus.com/bid/15714/info Relative Real Estate Systems is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input to the 'index.php' script befor...

Widget Property 1.1.19 - &#039;Property.php&#039; SQL Injection

source: https://www.securityfocus.com/bid/15701/info Widget Press Widget Property is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input to the 'property.php' script before using it in an SQL query. This vulnerability...