101 matches found
RunCMS 2.2.2 - 'register.php' SQL Injection
source: https://www.securityfocus.com/bid/46342/info RunCMS is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to compromise the application, access or modi...
Oracle E-Business Suite Financials 12 - 'jtfwcpnt.jsp' SQL Injection
source: https://www.securityfocus.com/bid/39510/info Oracle E-Business Suite Financials is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...
HuronCMS - index.php Multiple SQL Injections
HuronCMS - index.php Multiple SQL Injections source: https://www.securityfocus.com/bid/39685/info HuronCMS is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attack...
4x CMS - login.php Multiple SQL Injections
4x CMS - login.php Multiple SQL Injections source: https://www.securityfocus.com/bid/39840/info 4xcms is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to...
PHP Live! 'deptid' Parameter SQL Injection Vulnerability
PHP Live! is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective...
Payment Processor Script (PPScript) - 'shop.htm' SQL Injection
source: https://www.securityfocus.com/bid/42539/info PPScript is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify data...
Snitz Forums 2000 'register.asp' SQL Injection Vulnerability
Snitz Forums 2000 is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the...
Absolute Form Processor XE 1.5 - login.asp SQL Injection
Absolute Form Processor XE 1.5 - login.asp SQL Injection source: https://www.securityfocus.com/bid/34463/info Absolute Form Processor XE is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue...
Madrese-Portal - haber.asp SQL Injection
Madrese-Portal - haber.asp SQL Injection source: https://www.securityfocus.com/bid/33045/info Madrese-Portal is prone to an SQL-injection vulnerability because it fails to properly sanitize user-supplied input. Attackers may exploit this issue to compromise the application, access or modify data,...
PHP-Nuke Gallery 1.3 Module - artid SQL Injection
PHP-Nuke Gallery 1.3 Module - artid SQL Injection source: https://www.securityfocus.com/bid/27957/info The Gallery module for PHP-Nuke is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue cou...
XOOPS 'seminars' Module - 'id' SQL Injection
source: https://www.securityfocus.com/bid/27891/info The XOOPS 'seminars' module is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application,...
NetBizCity FaqMasterFlexPlus - faq.php SQL Injection
NetBizCity FaqMasterFlexPlus - faq.php SQL Injection source: https://www.securityfocus.com/bid/27052/info FaqMasterFlexPlus is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an...
ASP Product Catalog 1.0 - default.asp SQL Injection
ASP Product Catalog 1.0 - default.asp SQL Injection source: https://www.securityfocus.com/bid/25884/info ASP Product Catalog is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow a...
DMXReady Site Engine Manager 1.0 - index.asp SQL Injection
DMXReady Site Engine Manager 1.0 - index.asp SQL Injection source: https://www.securityfocus.com/bid/21064/info DMXReady Site Engine Manager is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this iss...
DMXReady Site Engine Manager 1.0 - 'index.asp' SQL Injection
source: https://www.securityfocus.com/bid/21064/info DMXReady Site Engine Manager is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application,...
ZilekPortal 1.0 - 'Haberdetay.asp' SQL Injection
source: https://www.securityfocus.com/bid/20062/info ZilekPortal is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to compromise the application, access or...
IwebNegar 1.1 - 'comments.php' SQL Injection
source: https://www.securityfocus.com/bid/19757/info IwebNegar is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to compromise the application, access or...
IPCheck Server Monitor 5.x - Directory Traversal
IPCheck Server Monitor 5.x - Directory Traversal source: https://www.securityfocus.com/bid/19473/info IPCheck Server Monitor is prone to a directory-traversal vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to retrieve arbitrary...
CoolForum 0.x - 'editpost.php' SQL Injection
source: https://www.securityfocus.com/bid/18268/info CoolForum is prone to an SQL-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to compromise the...
Mantis Bug Tracker 0.x1.0 - view_all_set.php Multiple Cross-Site Scripting Vulnerabilities
Mantis Bug Tracker 0.x1.0 - viewallset.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/16657/info Mantis is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and SQL-injection vulnerabilities. These issues are d...