36 matches found
Wikidforum 2.20 select_sort SQL Injection
Exploit Title: Wikidforum 2.20 - 'selectsort' SQL Injection Date: 2018-10-08 Exploit Author: Seccops - Siber GA1/4venlik Hizmetleri https://seccops.com Vendor Homepage: https://sourceforge.net/projects/wikidforum/ Software Link:...
CVE-2012-6520
Multiple SQL injection vulnerabilities in the advanced search in Wikidforum 2.10 allow remote attackers to execute arbitrary SQL commands via the 1 selectsort or 2 optsearchselect parameters. NOTE: this issue could not be reproduced by third parties...
CVE-2012-2099
Multiple cross-site scripting XSS vulnerabilities in Wikidforum 2.10 allow remote attackers to inject arbitrary web script or HTML via the 1 search field, or the 2 Author or 3 selectsort parameters in an advanced search...
Sql injection
Multiple SQL injection vulnerabilities in the advanced search in Wikidforum 2.10 allow remote attackers to execute arbitrary SQL commands via the 1 selectsort or 2 optsearchselect parameters. NOTE: this issue could not be reproduced by third parties...
CVE-2012-2099
CVE-2012-2099 concerns Wikidforum 2.10 with multiple cross-site scripting (XSS) vulnerabilities. The issue allows remote attackers to inject arbitrary web script or HTML via the advanced search interface: (1) search field, (2) Author, or (3) select_sort parameters. The NVD entry lists a Medium se...
CVE-2012-6520
CVE-2012-6520 affects Wikidforum 2.10. Multiple SQL injection flaws in the advanced search allow remote attackers to execute arbitrary SQL via the select_sort and opt_search_select parameters. CVSSv2 base 7.5 (HIGH) with network attack vector and no authentication. Note: exploitation status is no...
CVE-2012-6520
Multiple SQL injection vulnerabilities in the advanced search in Wikidforum 2.10 allow remote attackers to execute arbitrary SQL commands via the 1 selectsort or 2 optsearchselect parameters. NOTE: this issue could not be reproduced by third parties...
CVE-2012-2099
Multiple cross-site scripting XSS vulnerabilities in Wikidforum 2.10 allow remote attackers to inject arbitrary web script or HTML via the 1 search field, or the 2 Author or 3 selectsort parameters in an advanced search...
Wikidforum 2.10 Multiple security vulnerabilities
Advisory: Wikidforum 2.10 Multiple security vulnerabilities Advisory ID: SSCHADV2012-005 Author: Stefan Schurtz Affected Software: Successfully tested on Wikidforum 2.10 Vendor URL: http://www.wikidforum.com/ Vendor Status: informed ========================== Vulnerability Description...
Wikidforum 2.10 - Search Field Cross-Site Scripting
Wikidforum 2.10 - Search Field Cross-Site Scripting source: https://www.securityfocus.com/bid/52425/info Wikidforum is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these...
Wikidforum 2.10 - Advanced Search Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/52425/info Wikidforum is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these vulnerabilities could allow an attacker to steal...
Wikidforum 2.10 Cross Site Scripting / SQL Injection
Advisory: Wikidforum 2.10 Multiple security vulnerabilities Advisory ID: SSCHADV2012-005 Author: Stefan Schurtz Affected Software: Successfully tested on Wikidforum 2.10 Vendor URL: http://www.wikidforum.com/ Vendor Status: informed ========================== Vulnerability Description...
Wikidforum 2.10 - Advanced Search Multiple Field SQL Injections
source: https://www.securityfocus.com/bid/52425/info Wikidforum is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these vulnerabilities could allow an attacker to steal...
Wikidforum 2.10 - Advanced Search Multiple Cross-Site Scripting Vulnerabilities
Wikidforum 2.10 - Advanced Search Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/52425/info Wikidforum is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize...
Wikidforum 2.10 - Advanced Search Multiple Field SQL Injections
Wikidforum 2.10 - Advanced Search Multiple Field SQL Injections source: https://www.securityfocus.com/bid/52425/info Wikidforum is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input...
Wikidforum 2.10 - Search Field Cross-Site Scripting
source: https://www.securityfocus.com/bid/52425/info Wikidforum is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these vulnerabilities could allow an attacker to steal...