4 matches found
Sql injection
Multiple SQL injection vulnerabilities in iScripts AutoHoster, possibly 2.4, allow remote attackers to execute arbitrary SQL commands via the cmbdomain parameter to 1 checktransferstatus.php, 2 checktransferstatusbck.php, or 3 additionalsettings.php; or 4 invno parameter to payinvoiceothers.php...
CVE-2013-7189
Multiple SQL injection vulnerabilities in iScripts AutoHoster, possibly 2.4, allow remote attackers to execute arbitrary SQL commands via the cmbdomain parameter to 1 checktransferstatus.php, 2 checktransferstatusbck.php, or 3 additionalsettings.php; or 4 invno parameter to payinvoiceothers.php...
iScripts AutoHoster - 'checktransferstatus.php' SQL Injection
source: https://www.securityfocus.com/bid/64377/info iScripts AutoHoster is prone to multiple security vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker can exploit these vulnerabilities to compromise the application, access or modify data, or exploit laten...
iScripts AutoHoster - checktransferstatus.php SQL Injection
iScripts AutoHoster - checktransferstatus.php SQL Injection source: https://www.securityfocus.com/bid/64377/info iScripts AutoHoster is prone to multiple security vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker can exploit these vulnerabilities to...