10 matches found
Quantum Art QP7.Enterprise news.asp p_news_id Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/16022/info QP7.Enterprise is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. Successful...
CVE-2005-4486
SQL injection vulnerability in Quantum Art QP7.Enterprise formerly Q-Publishing allows remote attackers to execute arbitrary SQL commands via the pnewsid parameter to 1 newsandeventsnew.asp and 2 news.asp. NOTE: on 20060227, the vendor disputed the accuracy of this report, saying that the pnewsid...
CVE-2005-4486
CVE-2005-4486 concerns SQL injection in Quantum Art QP7.Enterprise (formerly Q-Publishing). The vulnerability allows remote attackers to manipulate SQL via the p_news_id parameter on endpoints such as news_and_events_new.asp and news.asp . The vendor disputed the report’s accuracy in 2006, noting...
CVE-2005-4486
SQL injection vulnerability in Quantum Art QP7.Enterprise formerly Q-Publishing allows remote attackers to execute arbitrary SQL commands via the pnewsid parameter to 1 newsandeventsnew.asp and 2 news.asp. NOTE: on 20060227, the vendor disputed the accuracy of this report, saying that the pnewsid...
PT-2005-5169 · Quantum Art · Quantum Art Qp7.Enterprise
Name of the Vulnerable Software and Affected Versions: Quantum Art QP7.Enterprise affected versions not specified Description: A SQL injection issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the p news id parameter to API endpoints such as "news and events...
Quantum Art QP7.Enterprise - news_and_events_new.asp?p_news_id SQL Injection
Quantum Art QP7.Enterprise - newsandeventsnew.asp?pnewsid SQL Injection source: https://www.securityfocus.com/bid/16022/info QP7.Enterprise is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before usin...
Quantum Art QP7.Enterprise - news.asp?p_news_id SQL Injection
Quantum Art QP7.Enterprise - news.asp?pnewsid SQL Injection source: https://www.securityfocus.com/bid/16022/info QP7.Enterprise is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL...
QP7.Enterprise SQL vuln.
QP7.Enterprise SQL vuln. Vuln. discovered by : r0t Date: 21 dec. 2005 orginal advisory:http://pridels.blogspot.com/2005/12/qp7enterprise-sql-vuln.html vendor:www.quantumart.com/products affected version:QP7 Product Description: Quantum Art's QP7.Enterprise formerly, Q-Publishing is an optimal...
Quantum Art QP7.Enterprise - 'news_and_events_new.asp?p_news_id' SQL Injection
source: https://www.securityfocus.com/bid/16022/info QP7.Enterprise is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. Successful exploitation could result in a compromis...
Quantum Art QP7.Enterprise - 'news.asp?p_news_id' SQL Injection
source: https://www.securityfocus.com/bid/16022/info QP7.Enterprise is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. Successful exploitation could result in a compromis...