EUVD-2010-4886

Malware in sbrugna...

allinta CMS 2.3.2 search.asp searchQuery Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/15935/info Allinta CMS is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary...

allinta CMS 2.3.2 faq.asp s Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/15935/info Allinta CMS is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary...

CVE-2010-4922

Multiple SQL injection vulnerabilities in Allinta CMS 22.07.2010 allow remote attackers to execute arbitrary SQL commands via the i parameter in an edit action to 1 contentAE.asp or 2 templatesAE.asp...

Sql injection

Multiple SQL injection vulnerabilities in Allinta CMS 22.07.2010 allow remote attackers to execute arbitrary SQL commands via the i parameter in an edit action to 1 contentAE.asp or 2 templatesAE.asp...

CVE-2010-4922

CVE-2010-4922 affects Allinta CMS (version 22.07.2010) with multiple SQL injection vulnerabilities in edit actions. Specifically, the i parameter in contentAE.asp and templatesAE.asp can be exploited to execute arbitrary SQL commands remotely. This results in potential data disclosure/modificatio...

CVE-2010-4922

Multiple SQL injection vulnerabilities in Allinta CMS 22.07.2010 allow remote attackers to execute arbitrary SQL commands via the i parameter in an edit action to 1 contentAE.asp or 2 templatesAE.asp...

Allinta CMS 22.07.2010 Cross Site Scripting / SQL Injection

========================================= Vulnerability ID: HTB22528 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinallintacms.html Product: Allinta CMS Vendor: Allinta http://www.allinta.com/ Vulnerable Version: Current at 22.07.2010 and Probably Prior Versions Vendor Notification:...

SQL injection vulnerability in allinta CMS

Vulnerability ID: HTB22530 Reference: http://www.htbridge.ch/advisory/sqlinjectionvulnerabilityinallintacms.html Product: Allinta CMS Vendor: Allinta http://www.allinta.com/ Vulnerable Version: Current at 22.07.2010 and Probably Prior Versions Vendor Notification: 26 July 2010 Vulnerability Type:...

SQL injection vulnerability in allinta CMS

Vulnerability ID: HTB22532 Reference: http://www.htbridge.ch/advisory/sqlinjectionvulnerabilityinallintacms1.html Product: Allinta CMS Vendor: Allinta http://www.allinta.com/ Vulnerable Version: Current at 22.07.2010 and Probably Prior Versions Vendor Notification: 26 July 2010 Vulnerability Type...

XSS vulnerability in allinta CMS

Vulnerability ID: HTB22531 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinallintacms2.html Product: Allinta CMS Vendor: Allinta Vulnerable Version: Current at 22.07.2010 and Probably Prior Versions Vendor Notification: 26 July 2010 Vulnerability Type: XSS Cross Site Scripting Status...

Allinta CMS 22.07.2010 - Multiple SQL Injections Cross-Site Scripting Vulnerabilities

Allinta CMS 22.07.2010 - Multiple SQL Injections Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/42320/info Allinta CMS is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize...

XSS vulnerability in allinta CMS

Vulnerability ID: HTB22528 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinallintacms.html Product: Allinta CMS Vendor: Allinta http://www.allinta.com/ Vulnerable Version: Current at 22.07.2010 and Probably Prior Versions Vendor Notification: 26 July 2010 Vulnerability Type: XSS Cros...

XSS vulnerability in allinta CMS

Vulnerability ID: HTB22529 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinallintacms1.html Product: Allinta CMS Vendor: Allinta http://www.allinta.com/ Vulnerable Version: Current at 22.07.2010 and Probably Prior Versions Vendor Notification: 26 July 2010 Vulnerability Type: XSS Cro...

Allinta CMS 22.07.2010 - Multiple SQL Injections / Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/42320/info Allinta CMS is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these vulnerabilities could allow an attacker to steal...

Multiple Cross-site Scripting (XSS) Vulnerabilities in allinta CMS

High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in allinta CMS which could be exploited to perform cross-site scripting attacks. 1 Cross-site scripting XSS vulnerabilities in allinta CMS 1.1 The vulnerability exists due to input sanitation error in the "langURL"...

allinta CMS 2.3.2 - faq.asp?s Cross-Site Scripting

allinta CMS 2.3.2 - faq.asp?s Cross-Site Scripting source: https://www.securityfocus.com/bid/15935/info Allinta CMS is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to...

allinta CMS 2.3.2 - 'search.asp?searchQuery' Cross-Site Scripting

source: https://www.securityfocus.com/bid/15935/info Allinta CMS is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the browser ...

allinta CMS 2.3.2 - search.asp?searchQuery Cross-Site Scripting

allinta CMS 2.3.2 - search.asp?searchQuery Cross-Site Scripting source: https://www.securityfocus.com/bid/15935/info Allinta CMS is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage...

allinta CMS 2.3.2 - 'faq.asp?s' Cross-Site Scripting

source: https://www.securityfocus.com/bid/15935/info Allinta CMS is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the browser ...