141 matches found
MGinternet Property Site Manager detail.asp p Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/21073/info MGinternet Property Site Manager is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because it fails to sufficiently sanitize user-supplied input. An...
Joomla! and Mambo 'com_guide' Component - 'category' Parameter - SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/28271/info The 'guide' component for Joomla! and Mambo is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could...
MaxWebPortal 1.3 custom_link.asp Multiple Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/13466/info MaxWebPortal is reportedly affected by multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries...
Your Articles Directory Login Option SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/39796/info Article Directory Script is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to...
SpitFire Photo Pro 'pages.php' SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/32012/info SpitFire Photo Pro is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to...
LANAI CMS 1.2.14 GALLERY Module gid Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/25193/info LANAI CMS is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to...
GeoBlog 1.0 ViewCat.PHP SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/16249/info geoBlog is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could resu...
CubeCart 2.0.x tellafriend.php product Variable Path Disclosure
No description provided by source. source: http://www.securityfocus.com/bid/13050/info CubeCart is reported prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. These issues...
Miraserver 1.0 RC4 article.php cat Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/15960/info Miraserver is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful...
Dokeos <= 1.8.4 main/create_course/add_course.php tutor_name Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/27792/info Dokeos is prone to multiple input-validation vulnerabilities including five SQL-injection issues, one HTML-injection issue, three cross-site scripting issues, and one arbitrary-file-upload issue. Attackers can...
People-Trak Login SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/34491/info People-Trak is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise t...
AlstraSoft Video Share Enterprise 4.x Multiple Input Validation Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/25019/info AlstraSoft Video Share Enterprise is affected by multiple input-validation vulnerabilities. These issues include multiple cross-site scripting vulnerabilities and multiple SQL-injection vulnerabilities...
UBBCentral UBB.threads 5.5.1/6.x grabnext.php posted Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/14052/info UBB.Threads is prone to multiple SQL injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries. A successful exploit could allow an attacker...
Joomla! and Mambo faq Component - 'catid' Parameter SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/27822/info The Joomla! and Mambo 'faq' component is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow a...
PostNuke 0.75/0.76 DL-viewdownload.PHP SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/14636/info PostNuke is prone to an SQL injection vulnerability. This issue is due to a lack of sufficient sanitization of user-supplied input. Successful exploitation could result in a compromise of the application,...
AdMan 1.0.20051221 ViewStatement.PHP SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/17208/info AdMan is prone to an SQL-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an...
Iatek PortalApp 4.0 - 'links.asp' SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/28315/info PortalApp is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...
Enthrallweb eHomes homeDetail.asp AD_ID Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/21193/info eHome is prone to multiple input-validation vulnerabilities, including cross-site scripting, and SQL-injection issues, because the application fails to properly sanitize user-supplied input. A successful exploi...
SiteEnable SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/12985/info SiteEnable is reported prone to an SQL injection vulnerability. This vulnerability could permit remote attackers to pass malicious input to database queries, resulting in modification of query logic or other...
Full PHP Emlak Script - 'landsee.php' SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/30962/info Full PHP Emlak Script is prone to an SQL-injection vulnerability because it fails to properly sanitize user-supplied input. Attackers may exploit this issue to compromise the application, access or modify data,...