15 matches found
EUVD-2005-1782
Malware in sbrugna...
Active News Manager LOGIN.ASP SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/13759/info Active News Manager is prone to an SQL injection vulnerability. This issue affects the 'login.asp' script. Successful exploitation could result in a compromise of the application, disclosure or modification of...
Active News Manager activeNews_comments.asp articleID Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/21167/info Active News Manger is prone to multiple input-validation vulnerabilities, including SQL-injection issues and a cross-site scripting issue, because it fails to sufficiently sanitize user-supplied data. Exploitin...
Active News Manager activeNews_categories.asp catID Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/21167/info Active News Manger is prone to multiple input-validation vulnerabilities, including SQL-injection issues and a cross-site scripting issue, because it fails to sufficiently sanitize user-supplied data. Exploitin...
Active News Manager CSRF Vulnerability (Add Admin)
Exploit for php platform in category web applications Active News Manager CSRF Vulnerability Add Admin ==================================================================== .:. Author : AtT4CKxT3rR0r1ST email protected .:. Script : http://www.gazatem.com/Products/activenewsmanager.asp === Exploit...
Active News Manager - 'catID' SQL Injection
source: https://www.securityfocus.com/bid/21167/info Active News Manger is prone to multiple input-validation vulnerabilities, including SQL-injection issues and a cross-site scripting issue, because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an...
Active News Manager - catID SQL Injection
Active News Manager - catID SQL Injection source: https://www.securityfocus.com/bid/21167/info Active News Manger is prone to multiple input-validation vulnerabilities, including SQL-injection issues and a cross-site scripting issue, because it fails to sufficiently sanitize user-supplied data...
Active News Manager [ injection sql (post&get)]
vendor site:http://www.dotnetindex.com/ product:Active News Manager bug:injection sql risk:medium injection sql get http://site.com/activenews/activeNewscategories.asp?catID='sql http://site.com/activeNewscomments.asp?articleID='sql injection sqlpost : in the search engine:...
anm-sql.txt
vendor site:http://www.dotnetindex.com/ product:Active News Manager bug:injection sql risk:medium injection sql get http://site.com/activenews/activeNewscategories.asp?catID='sql http://site.com/activeNewscomments.asp?articleID='sql injection sqlpost : in the search engine:...
CVE-2005-1780
SQL injection vulnerability in admin/login.asp in Active News Manager allows remote attackers to execute arbitrary SQL commands via the password...
CVE-2005-1780
SQL injection vulnerability in admin/login.asp in Active News Manager allows remote attackers to execute arbitrary SQL commands via the password...
CVE-2005-1780
CVE-2005-1780 is a SQL injection flaw in Active News Manager, specifically in admin/login.asp, where the password field can be manipulated to execute arbitrary SQL commands. The vulnerability allows remote attackers to compromise data confidentiality and integrity. Documents indicate affected sof...
PT-2005-2748 · Unknown · Activenews Manager
Name of the Vulnerable Software and Affected Versions: Active News Manager affected versions not specified Description: The issue allows remote attackers to execute arbitrary SQL commands via the password variable in the "admin/login.asp" API endpoint. This could potentially lead to unauthorized...
Active News Manager - login.asp SQL Injection
Active News Manager - login.asp SQL Injection source: https://www.securityfocus.com/bid/13759/info Active News Manager is prone to an SQL injection vulnerability. This issue affects the 'login.asp' script. Successful exploitation could result in a compromise of the application, disclosure or...
Active News Manager - 'login.asp' SQL Injection
source: https://www.securityfocus.com/bid/13759/info Active News Manager is prone to an SQL injection vulnerability. This issue affects the 'login.asp' script. Successful exploitation could result in a compromise of the application, disclosure or modification of data, or may permit an attacker to...