Lucene search
K

10 matches found

seebug.org
seebug.org
added 2014/07/01 12:0 a.m.20 views

Quantum Art QP7.Enterprise news.asp p_news_id Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/16022/info QP7.Enterprise is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. Successful...

7.1AI score
Exploits0
NVD
NVD
added 2005/12/22 11:3 a.m.12 views

CVE-2005-4486

SQL injection vulnerability in Quantum Art QP7.Enterprise formerly Q-Publishing allows remote attackers to execute arbitrary SQL commands via the pnewsid parameter to 1 newsandeventsnew.asp and 2 news.asp. NOTE: on 20060227, the vendor disputed the accuracy of this report, saying that the pnewsid...

7.5CVSS8.3AI score0.01172EPSS
Exploits1References4
CVE
CVE
added 2005/12/22 11:0 a.m.46 views

CVE-2005-4486

CVE-2005-4486 concerns SQL injection in Quantum Art QP7.Enterprise (formerly Q-Publishing). The vulnerability allows remote attackers to manipulate SQL via the p_news_id parameter on endpoints such as news_and_events_new.asp and news.asp . The vendor disputed the report’s accuracy in 2006, noting...

7.5CVSS8.7AI score0.01172EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2005/12/22 11:0 a.m.18 views

CVE-2005-4486

SQL injection vulnerability in Quantum Art QP7.Enterprise formerly Q-Publishing allows remote attackers to execute arbitrary SQL commands via the pnewsid parameter to 1 newsandeventsnew.asp and 2 news.asp. NOTE: on 20060227, the vendor disputed the accuracy of this report, saying that the pnewsid...

8.3AI score0.01172EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2005/12/22 12:0 a.m.5 views

PT-2005-5169 · Quantum Art · Quantum Art Qp7.Enterprise

Name of the Vulnerable Software and Affected Versions: Quantum Art QP7.Enterprise affected versions not specified Description: A SQL injection issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the p news id parameter to API endpoints such as "news and events...

7.5CVSS8.6AI score0.01172EPSS
Exploits1References7
exploitpack
exploitpack
added 2005/12/21 12:0 a.m.17 views

Quantum Art QP7.Enterprise - news_and_events_new.asp?p_news_id SQL Injection

Quantum Art QP7.Enterprise - newsandeventsnew.asp?pnewsid SQL Injection source: https://www.securityfocus.com/bid/16022/info QP7.Enterprise is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before usin...

0.3AI score
Exploits0
exploitpack
exploitpack
added 2005/12/21 12:0 a.m.17 views

Quantum Art QP7.Enterprise - news.asp?p_news_id SQL Injection

Quantum Art QP7.Enterprise - news.asp?pnewsid SQL Injection source: https://www.securityfocus.com/bid/16022/info QP7.Enterprise is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL...

0.3AI score
Exploits0
securityvulns
securityvulns
added 2005/12/21 12:0 a.m.22 views

QP7.Enterprise SQL vuln.

QP7.Enterprise SQL vuln. Vuln. discovered by : r0t Date: 21 dec. 2005 orginal advisory:http://pridels.blogspot.com/2005/12/qp7enterprise-sql-vuln.html vendor:www.quantumart.com/products affected version:QP7 Product Description: Quantum Art's QP7.Enterprise formerly, Q-Publishing is an optimal...

0.5AI score
Exploits0
Exploit DB
Exploit DB
added 2005/12/21 12:0 a.m.25 views

Quantum Art QP7.Enterprise - 'news_and_events_new.asp?p_news_id' SQL Injection

source: https://www.securityfocus.com/bid/16022/info QP7.Enterprise is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. Successful exploitation could result in a compromis...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2005/12/21 12:0 a.m.27 views

Quantum Art QP7.Enterprise - 'news.asp?p_news_id' SQL Injection

source: https://www.securityfocus.com/bid/16022/info QP7.Enterprise is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. Successful exploitation could result in a compromis...

7.4AI score
Exploits0
Rows per page
Query Builder