SoftBiz Image Gallery 0 images.php cid Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/17339/info Softbiz Image Gallery is prone to multiple SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. A...

Adam Ismay Print Topic Mod 1.0 - SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/10757/info Print Topic Mod is reportedly affected by a remote SQL injection vulnerability in the 'printview.php' script. This issue is due to a failure of the application to properly sanitize user-supplied URI parameter...

LANAI CMS 1.2.14 GALLERY Module gid Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/25193/info LANAI CMS is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to...

Orca Blog 1.3 Blog.PHP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/15638/info Orca Blog is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could...

BloofoxCMS 0.3.5 - Information Disclosure Vulnerabilities

No description provided by source. Vulnerability ID: HTB22660 Reference: http://www.htbridge.ch/advisory/informationdisclosureinbloofoxcms1.html Product: BloofoxCMS Vendor: bloofox.com http://bloofox.com/ Vulnerable Version: 0.3.5 and probably prior versions Vendor Notification: 13 October 2010...

BTGrup Admin WebController SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/15819/info BTGrup Admin WebController is prone to an SQL injection vulnerability. This is due to a lack of proper sanitization of user-supplied input before using it in an SQL query. Successful exploitation could result i...

20/20 Real Estate 3.2 Listings.ASP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/21036/info 20/20 Real Estate is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to...

Joomla! and Mambo com_formtool Component - 'catid' Parameter SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/27884/info The Joomla! and Mambo 'comformtool' component is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could...

WSPortal 1.0 Content.PHP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/24513/info WSPortal is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to...

phpMyAdmin 3.1.0 - (CSRF) SQL Injection Vulnerability

No description provided by source. Written by Michael Brooks Special Thanks to str0ke and rGod Intro: phpMyAdmin is by far the most popular PHP project. Between phpmyadmin and the xampp project there are more than 34+ million downloads from sourceforge.net . This exploit was released along side...

SpitFire Photo Pro 'pages.php' SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/32012/info SpitFire Photo Pro is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to...

SoftBiz FAQ 1.1 add_comment.php id Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/15653/info Softbiz FAQ is prone to multiple SQL injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacke...

ASP Nuke - SQL Injection Vulnerability

No description provided by source. ''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | | | | | || / \ || | | | || ||// \/|/ http://www.exploit-db.com/moaub11-asp-nuke-sql-injection-vulnerability/ ''' Abysssec Inc Public Advisory Title : ASP Nuke Sql Injection...

Zix Forum <= 1.12 (layid) SQL Injection Vulnerability

No description provided by source. Zix Forum = 1.12 layid SQL Injection Vulnerability Vulnerability: -------------------- SQLInjection: Input passed to the layid parameter in 'settings.asp' not properly sanitised before being used in a SQL query. This can be exploited to manipulate SQL queries by...

FreezingCold Broadboard search.asp SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/11250/info Reportedly BroadBoard Message Board is affected by multiple SQL injection vulnerabilities. These issues are due to a failure of the application to properly sanitize user supplied URI input prior to using it in ...

ScozNet ScozBook 1.1 AdminName Variable SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/16115/info ScozNet ScozBook is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation...

IPBProArcade 2.5 - Remote SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/11719/info A remote SQL injection vulnerability reportedly affects ipbProArcade. This issue is due to a failure of the application to properly sanitize user-supplied input prior to including it in an SQL query. An attacke...

vBSupport 2.0.0 Integrated Ticket System vBSupport.PHP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/24397/info vBSupport is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. An attacker can exploit this issue by manipulating the SQL quer...

ClickBlog! 2.0 Default.ASP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/20033/info ClickBlog! is prone to an SQL-injection vulnerability because it fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to compromise the...

CodeWidgets Web Based Alpha Tabbed Address Book Index.ASP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/26193/info CodeWidgets Web Based Alpha Tabbed Address Book is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue cou...