1167 matches found
MyNews 0.10 AuthACC SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/24621/info MyNews is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to compromi...
LinksPro 'OrderDirection' Parameter SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/33305/info LinksPro is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...
POWERGAP Shopsystem 's03.php' SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/30558/info POWERGAP Shopsystem is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to...
CMSCart 1.04 'maindatafunctions.php' SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/34017/info CMSCart is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...
e107 0.7.x 'e107_admin/banner.php' SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/39609/info e107 is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...
MapCal 0.1 'id' Parameter SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/31304/info MapCal is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...
Cyber CMS 'faq.php' SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/39698/info Cyber CMS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...
Joomla! and Mambo 'com_most' Component - 'secid' Parameter SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/27922/info The Joomla! and Mambo 'commost' component is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could all...
Joomla! and Mambo 'com_guide' Component - 'category' Parameter - SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/28271/info The 'guide' component for Joomla! and Mambo is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could...
WSPortal 1.0 Content.PHP SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/24513/info WSPortal is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to...
Clickblog Displaycalendar.ASP SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/21310/info Clickblog is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to...
LANAI CMS 1.2.14 GALLERY Module gid Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/25193/info LANAI CMS is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to...
bcoos 1.0.10 /myalbum/ratephoto.php lid Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/26629/info The 'bcoos' program is prone to multiple input-validation vulnerabilities, including SQL-injection issues and cross-site scripting issues, because it fails to sufficiently sanitize user-supplied data. These...
PHP Pro Bid 5.2.4/6.04 Multiple SQL Injection Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/31263/info PHP Pro Bid is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied input before using it in an SQL query. Exploiting these issues could allow an attacker to...
ZeusCart - 'prodid' SQL Injection
source: https://www.securityfocus.com/bid/68182/info ZeusCart is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify data...
webEdition CMS - 'we_fs.php' SQL Injection
source: https://www.securityfocus.com/bid/67689/info webEdition CMS is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input. A successful exploit will allow an attacker to compromise the application, access or modify data, or exploit laten...
XOOPS Glossaire Module - '/modules/glossaire/glossaire-aff.php' SQL Injection
source: https://www.securityfocus.com/bid/67460/info Glossaire module for XOOPS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. An attacker can leverage this issue to compromise the application, access or...
CIS Manager - email SQL Injection
CIS Manager - email SQL Injection source: https://www.securityfocus.com/bid/67442/info CIS Manager is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. A successful exploit will allow an attacker to compromise the...
CIS Manager - 'email' SQL Injection
source: https://www.securityfocus.com/bid/67442/info CIS Manager is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. A successful exploit will allow an attacker to compromise the application, access or modify dat...
CVE-2013-5459
Unspecified vulnerability in IBM Rational Software Architect RSA Design Manager and Rational Rhapsody Design Manager 3.x through 3.0.1 and 4.x before 4.0.6 allows remote authenticated users to modify data by leveraging improper parameter checking...