WMNews 0 wmview.php ArtCat Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/17076/info WMNews is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have...

portaLx SQL Injection Vulnerability

Exploit for php platform in category web applications =================================== portaLx SQL Injection Vulnerability =================================== ALLH AKBAR Exploit Title: portaLx SQL Injecti0n Vulnerability -::DESCRIPTION Date: 5 de mayo de 2010 -::DATE Author: JM511 EmaiL :...

WMNewsInclude.txt

Advisory: WMNews Remote File Include Vulnerability Release Date: 2006/07/26 Author: uNfz Critical Level: High Contact: [email protected] Vendor: Warta Mikael -------------------- -------------------- Searching / Dork: allinurl: .php?Artid= allinurl: .php?ArtCat= allinurl: wmprint.php allinurl:...

CVE-2006-1233

Multiple cross-site scripting XSS vulnerabilities in WMNews allow remote attackers to inject arbitrary web script or HTML via the 1 ArtCat parameter to wmview.php, 2 ctrrowcol parameter to footer.php, or 3 ArtID parameter to wmcomments.php...