Hastymail 'rs' and 'rsargs[]' Parameters Remote Code Injection Vulnerabilities

The host is running Hastymail2 and is prone to remote code injection vulnerabilities. OpenVAS Vulnerability Test $Id: secpodhastymail2rsparamremotecodeinjvuln.nasl 7006 2017-08-25 11:51:20Z teissa $ Hastymail 'rs' and 'rsargs' Parameters Remote Code Injection Vulnerabilities Authors: Sooraj KS...

CVE-2010-5051

Cross-site scripting XSS vulnerability in admin/core/adminfunc.php in razorCMS 1.0 stable allows remote attackers to inject arbitrary web script or HTML via the content parameter in an edit action to admin/index.php...

Sql injection

SQL injection vulnerability in index.php in Almnzm 2.1 allows remote attackers to execute arbitrary SQL commands via the id parameter...

CVE-2010-5061

The CVE-2010-5061 entry describes a SQL injection vulnerability in RSStatic’s index.php, exploitable via the maxarticles parameter. The underlying issue is improper handling of user-supplied input, allowing remote attackers to execute arbitrary SQL commands. Impact is described as partial confide...

CVE-2010-5059

SQL injection vulnerability in index.php in CMScout 2.0.8 allows remote attackers to execute arbitrary SQL commands via the album parameter in a photos action...

phpMyAdmin Setup Interface Cross Site Scripting Vulnerability

phpMyAdmin is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

phpcms 2008 index.php 跨站脚本攻击漏洞

No description provided by source...

phpcms V9 BLind SQL 注入漏洞

No description provided by source. http://eidelweiss-advisories.blogspot.com/2011/01/phpcms-v9-blind-sql-injection.html ! index.php?m=content&c=rss&catid=valid catid Example p0c ! http://host/index.php?m=content&c=rss&catid=10 = True ! http://host/index.php?m=content&c=rss&catid=-10 = False +...

Digital Attic SQL Injection Vulnerability

Exploit for php platform in category web applications Title : Digital Attic SQL Injection Vulnerability Vendor Link: : http://www.digitalattic.com/ Author : tempemendoan Contact : anu :D Google Dork : inurl:"gorengan tempe" intext:"CMS by Digital Attic" === POC === ? http://website/index.php?id=S...

DLGuard 'index.php' Cross Site Scripting Vulnerability

DLGuard is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to steal...

Plum CMS Blind SQL Injection

Coder : baltazar a.k.a b4ltazar CMS name : Plum CMS Site : http://www.plum-design.net && http://www.plum.rs Dork : Powered by PlumDesign : Powered by PlumDesign site:.rs : Powered by PlumDesign site:.com Admin panel : N/A Vulnerability : Sites design with Plum CMS suffers from blind SQL injection...

Joomla 'Teams' Component SQLi Vulnerability (Nov 2011)

Joomla with Teams component is prone to a SQL injection SQLi vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2010-5043

SQL injection vulnerability in the DJ-ArtGallery comdjartgallery component 0.9.1 for Joomla! allows remote authenticated users to execute arbitrary SQL commands via the cid parameter in an editItem action to administrator/index.php...

CVE-2010-5020

SQL injection vulnerability in index.php in NetArt Media iBoutique 4.0 allows remote attackers to execute arbitrary SQL commands via the page parameter...

CVE-2010-5006

SQL injection vulnerability in googlemap/index.php in EMO Realty Manager allows remote attackers to execute arbitrary SQL commands via the cat1 parameter...

Sql injection

SQL injection vulnerability in the DJ-ArtGallery comdjartgallery component 0.9.1 for Joomla! allows remote authenticated users to execute arbitrary SQL commands via the cid parameter in an editItem action to administrator/index.php...

Sql injection

SQL injection vulnerability in index.php in NetArt Media iBoutique 4.0 allows remote attackers to execute arbitrary SQL commands via the page parameter...

CVE-2010-5020

SQL injection vulnerability in index.php in NetArt Media iBoutique 4.0 allows remote attackers to execute arbitrary SQL commands via the page parameter...

Sql injection

SQL injection vulnerability in index.php in UTStats Beta 4 and earlier allows remote attackers to execute arbitrary SQL commands via the pid parameter in a matchp action...

CVE-2010-5032

SQL injection vulnerability in the BF Quiz combfquiztrial component before 1.3.1 for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter in a bfquiztrial action to index.php...