1417 matches found
SocketKB 1.1 - index.php SQL Injection
SocketKB 1.1 - index.php SQL Injection source: https://www.securityfocus.com/bid/15650/info SocketKB is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation coul...
88Scripts Event Calendar 2.0 - 'index.php' SQL Injection
source: https://www.securityfocus.com/bid/15658/info 88Scripts Event Calendar is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could result in a compromis...
O-Kiraku Nikki 1.3 - Nikki.php SQL Injection
O-Kiraku Nikki 1.3 - Nikki.php SQL Injection source: https://www.securityfocus.com/bid/15657/info O-Kiraku Nikki is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful...
GhostScripter Amazon Shop 5.0 - search.php SQL Injection
GhostScripter Amazon Shop 5.0 - search.php SQL Injection source: https://www.securityfocus.com/bid/15634/info GhostScripter Amazon Shop is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful...
Geeklog 1.4.x Full Path Disclosure vuln.
Geeklog 1.4.x Full Path Disclosure vuln. Vuln. dicovered by : r0t Date: 28 nov. 2005 Orginal advisory:http://pridels.blogspot.com/2005/11/geeklog-14x-full-path-disclosure-vuln.html Vendor:http://www.geeklog.net/ affected version:1.4.0 Beta 1 and prior Product Description: Geeklog is a Web Portal...
BerliOS SourceWell 1.1.3 - SQL Injection
source: https://www.securityfocus.com/bid/15586/info BerliOS SourceWell is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could result in a compromise of t...
Simple Document Management System 2.0 - list.php?folder_id SQL Injection
Simple Document Management System 2.0 - list.php?folderid SQL Injection source: https://www.securityfocus.com/bid/15596/info Simple Document Management System SDMS is prone to SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied...
Zainu 2.x SQL inj. vuln.
Zainu 2.x SQL inj. vuln. Vuln. dicovered by : r0t Date: 28 nov. 2005 Orginal advisory:http://pridels.blogspot.com/2005/11/zainu-2x-sql-inj-vuln.html Vendor:http://www.zainu.com affected version: 2.x and prior Product Description: Zainu lets you create and maintain professional music videos websit...
Nelogic Nephp Publisher 4.5.2 - SQL Injection
Nelogic Nephp Publisher 4.5.2 - SQL Injection source: https://www.securityfocus.com/bid/15584/info Nelogic Nephp Publisher is prone to SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query...
DRZES HMS 3.2 Multiple vuln.
DRZES HMS 3.2 - Hosting Management System -multiple SQL inj. vuln. and XSS vuln. Vuln. dicovered by : r0t Date: 25 nov. 2005 Orginal advisory:http://pridels.blogspot.com/2005/11/drzes-hms-32-multiple-vuln.html Vendor:http://drzes.com/ affected version:3.2 and prior Product description: Increase...
CVE-2005-3799
phpBB 2.0.18 allows remote attackers to obtain sensitive information via a large SQL query, which generates an error message that reveals SQL syntax or the full installation path...
CVE-2005-3799
phpBB 2.0.18 allows remote attackers to obtain sensitive information via a large SQL query, which generates an error message that reveals SQL syntax or the full installation path...
CVE-2005-3799
phpBB 2.0.18 allows remote attackers to obtain sensitive information via a large SQL query, which generates an error message that reveals SQL syntax or the full installation path...
Orca Forum 4.3 - 'forum.php' SQL Injection
source: https://www.securityfocus.com/bid/15565/info Orca Forum is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could result in a compromise of the...
DeskLance Vuln.
DeskLance Vuln. Vuln. dicovered by : r0t Date: 24 nov. 2005 Orginal advsiory:http://pridels.blogspot.com/2005/11/desklance-vuln.html Vendor:http://www.desklance.com/ affected version: 2.3 and prior Vuln. description: Input passed to the "main" parameter in "index.php" isn't properly verified,...
PHP Labs Survey Wizard - SQL Injection
PHP Labs Survey Wizard - SQL Injection source: https://www.securityfocus.com/bid/15551/info PHP Labs Survey Wizard is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful...
Commodity Rentals 2.x "user_id" Sql inj.
Vuln. dicovered by : r0t Date: 23 nov. 2005 Orginal advisory:http://pridels.blogspot.com/2005/11/commodity-rentals-2x-userid-sql-inj.html Vendor:http://www.commodityrentals.com/ affected version: 2.x and prior Product Description: CommodityRentals is the most comprehensive Online Rental Business...
Wizz Forum - 'forumreply.php?TopicID' SQL Injection
source: https://www.securityfocus.com/bid/15410/info Wizz Forum is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could result in a compromise o...
Wizz Forum - forumreply.php?TopicID SQL Injection
Wizz Forum - forumreply.php?TopicID SQL Injection source: https://www.securityfocus.com/bid/15410/info Wizz Forum is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query...
[Full-disclosure] phpBB 2.0.18 SQL Query problem
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 phpBB 2.0.18 SQL Query problem cXIb8O3.19 Author: Maksymilian Arciemowicz cXIb8O3 Date: 11.11.2005 from securityreason.com TEAM - --- 0.Description --- phpBB is a high powered, fully scalable, and highly customizable Open Source bulletin boar d packag...