EUVD-2006-6405

Malware in sbrugna...

EUVD-2005-3822

Malware in sbrugna...

AgileBill 1.4.92 Product_Cat SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/15572/info AgileBill is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly santize user-supplied input before using it in an SQL query. Successful exploitation could...

CVE-2006-6422

Agileco AgileBill 1.4.x and AgileVoice 1.4.x do not properly handle certain proxy requests, which allows remote attackers to disable the application by entering invalid license data on a form, possibly involving modules/core/license.inc.php. NOTE: The provenance of this information is unknown; th...

CVE-2006-6422

Agileco AgileBill 1.4.x and AgileVoice 1.4.x do not properly handle certain proxy requests, which allows remote attackers to disable the application by entering invalid license data on a form, possibly involving modules/core/license.inc.php. NOTE: The provenance of this information is unknown; th...

CVE-2006-6422

The CVE concerns Agileco AgileBill 1.4.x and AgileVoice 1.4.x failing to properly handle certain proxy requests. This allows remote attackers to disable the application by submitting invalid license data via a form, potentially involving modules/core/license.inc.php. Affected components appear to...

[SA18720] AgileBill ADOdb server.php Insecure Test Script Security Issue

TITLE: AgileBill ADOdb server.php Insecure Test Script Security Issue SECUNIA ADVISORY ID: SA18720 VERIFY ADVISORY: http://secunia.com/advisories/18720/ CRITICAL: Moderately critical IMPACT: Security Bypass, System access WHERE: From remote SOFTWARE: AgileBill 1.x http://secunia.com/product/6224/...

CVE-2005-3827

SQL injection vulnerability in productcat in AgileBill 1.4.92 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter...

CVE-2005-3827

CVE-2005-3827 describes an SQL injection in AgileBill 1.4.92 and earlier, via the id parameter in the product_cat function/endpoint. The vulnerability allows remote attackers to execute arbitrary SQL commands, with CVSS v2 base metrics: AV:N/AC:L/Au:N/C:P/I:P/A:P and a base score of 7.5 (HIGH). A...

CVE-2005-3827

SQL injection vulnerability in productcat in AgileBill 1.4.92 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter...

AgileBill 1.4.92 - Product_Cat SQL Injection

AgileBill 1.4.92 - ProductCat SQL Injection source: https://www.securityfocus.com/bid/15572/info AgileBill is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly santize user-supplied input before using it in an SQL query. Successful exploitation...

AgileBill 1.4.x "id" sql injection.

AgileBill 1.4.x "id" sql injection. Vuln. dicovered by : r0t Date: 25 nov. 2005 Orginal advisory:http://pridels.blogspot.com/2005/11/agilebill-14x-id-sql-injection.html Vendor:http://agileco.com/ affected vesion: 1.4.92 and possible prior versions. Product Description: AgileBill features a powerf...

AgileBill 1.4.92 - Product_Cat SQL Injection

source: https://www.securityfocus.com/bid/15572/info AgileBill is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly santize user-supplied input before using it in an SQL query. Successful exploitation could result in a compromise of the...