1167 matches found
Your Articles Directory - Login Option SQL Injection
Your Articles Directory - Login Option SQL Injection source: https://www.securityfocus.com/bid/39796/info Article Directory Script is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could...
Code injection
Unspecified vulnerability in HP System Management Homepage SMH 6.0 before 6.0.0-95 on Linux, and 6.0 before 6.0.0.96 on Windows, allows remote authenticated users to obtain sensitive information, modify data, and cause a denial of service via unknown vectors...
Viennabux Beta! - 'cat' SQL Injection
source: https://www.securityfocus.com/bid/39602/info Viennabux Beta! is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modi...
MODx vulnerable to SQL injection
Overview MODx provided by The MODx CMS Project contains a SQL injection vulnerability. MODx provided by the MODx CMS Project is a Contents Management System CMS software. MODx contains a SQL injection vulnerability. Takeshi Terada of Mitsui Bussan Secure Directions, Inc. reported this vulnerabili...
Joomla! Component com_weblinks - id SQL Injection
Joomla! Component comweblinks - id SQL Injection source: https://www.securityfocus.com/bid/39032/info The 'comweblinks' component for Joomla! is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this...
Joomla! Component com_recipe - Multiple SQL Injections
source: https://www.securityfocus.com/bid/38336/info The 'comrecipe' component for Joomla! is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to compromise...
Zen Time Tracking 2.2 - Multiple SQL Injections
Zen Time Tracking 2.2 - Multiple SQL Injections source: https://www.securityfocus.com/bid/38153/info Zen Time Tracking is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could all...
evalSMSI 2.1.3 - Multiple Input Validation Vulnerabilities
source: https://www.securityfocus.com/bid/38116/info evalSMSI is prone to multiple vulnerabilities, including an authentication-bypass issue, an SQL-Injection issue, and an HTML-Injection issue. Attackers can exploit these issues to gain administrative access to the affected application, execute...
HAWHAW - 'newsread.php' SQL Injection
source: https://www.securityfocus.com/bid/39978/info HAWHAW is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify data, ...
Last Wizardz - 'id' SQL Injection
source: https://www.securityfocus.com/bid/39968/info Last Wizardz is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify...
Joomla! Component com_rsgallery2 2.0 - 'catid' SQL Injection
source: https://www.securityfocus.com/bid/38009/info The 'comrsgallery2' component for Joomla! is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...
PonVFTP - 'login.php' SQL Injection
source: https://www.securityfocus.com/bid/40608/info PonVFTP is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify data,...
Web Cocoon simpleCMS - show.php SQL Injection
Web Cocoon simpleCMS - show.php SQL Injection source: https://www.securityfocus.com/bid/41526/info Web Cocoon simpleCMS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an...
Pre Jobo.NET - Multiple SQL Injections
Pre Jobo.NET - Multiple SQL Injections source: https://www.securityfocus.com/bid/41747/info Pre Jobo.NET is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker...
Joomla! Component com_joomportfolio - 'secid' SQL Injection
source: https://www.securityfocus.com/bid/37403/info The 'comjoomportfolio' component for Joomla! is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise th...
CyberCMS - faq.php SQL Injection
CyberCMS - faq.php SQL Injection source: https://www.securityfocus.com/bid/39698/info Cyber CMS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...
JiRos (Multiple Products) - fileslogin.asp Multiple SQL Injections
JiRos Multiple Products - fileslogin.asp Multiple SQL Injections source: https://www.securityfocus.com/bid/37045/info Multiple JiRo's products are prone to multiple SQL-injection vulnerabilities because they fail to sufficiently sanitize user-supplied data before using it in an SQL query...
Maxwebportal 1.365 - forum.asp SQL Injection
Maxwebportal 1.365 - forum.asp SQL Injection source: https://www.securityfocus.com/bid/36480/info MaxWebPortal is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to...
PHP Scripts Now Riddles - '/riddles/results.php?searchQuery' Cross-Site Scripting
source: https://www.securityfocus.com/bid/44309/info PHP Scripts Now Riddles is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to steal cookie-based...
Willscript Auction Website Script - category.php SQL Injection
Willscript Auction Website Script - category.php SQL Injection source: https://www.securityfocus.com/bid/43254/info Willscript Auction Website Script is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting...