24 matches found
EUVD-2007-6103
Malware in sbrugna...
EUVD-2006-1773
Malware in sbrugna...
CVE-2020-1943
Data sent with contentId to /control/stream is not sanitized, allowing XSS attacks in Apache OFBiz 16.11.01 to 16.11.07...
CVE-2017-20173
A vulnerability was found in AlexRed contentmap. It has been rated as critical. Affected by this issue is the function Load of the file contentmap.php. The manipulation of the argument contentid leads to sql injection. The name of the patch is dd265d23ff4abac97422835002c6a47f45ae2a66. It is...
Sql injection
A vulnerability was found in AlexRed contentmap. It has been rated as critical. Affected by this issue is the function Load of the file contentmap.php. The manipulation of the argument contentid leads to sql injection. The name of the patch is dd265d23ff4abac97422835002c6a47f45ae2a66. It is...
AlexRed contentmap SQL注入漏洞
contentmap is an application by AlexRed Personal Developer. AlexRed contentmap suffers from a SQL injection vulnerability that stems from the fact that incorrect manipulation of the parameter contentid can lead to sql injection...
PT-2023-10624 · Unknown · Alexred Contentmap
Name of the Vulnerable Software and Affected Versions: AlexRed contentmap affected versions not specified Description: A critical issue was found in AlexRed contentmap, affecting the Load function of the file contentmap.php. The manipulation of the contentid argument leads to sql injection...
Cross site scripting
The Google Tag Manager for WordPress GTM4WP plugin is vulnerable to Stored Cross-Site Scripting due to insufficient escaping via the gtm4wp-optionsscroller-contentid parameter found in the /public/frontend.php file which allowed attackers with administrative user access to inject arbitrary web...
WordPress plugin Google Tag Manager 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...
CVE-2020-1943
Data sent with contentId to /control/stream is not sanitized, allowing XSS attacks in Apache OFBiz 16.11.01 to 16.11.07...
CVE-2020-1943
Data sent with contentId to /control/stream is not sanitized, allowing XSS attacks in Apache OFBiz 16.11.01 to 16.11.07...
Charon Cart 3.0 - (ContentID) Blind SQL Injection Vulnerability
No description provided by source. ? ?????????????????????????In The Name Of Allah The Mercifull?????????????????????? ? Tybe: reviewupdate.asp ContentID Blind SQL Injection Vulnerability Vendor: www.charon.co.uk Software: charoncartv3 author: R3d-D3v!L Date: 17.dec.2009 T!ME: 4:46 am ? Home:...
Multi-Lingual Application Blind SQL Injection
? ?????????????????????????In The Name Of Allah The Mercifull?????????????????????? ? Tybe: multi Blind SQL Injection Vulnerability Vendor: www.charon.co.uk Software: Multi-lingual Application author: R3d-D3v!L Date: 17.dec.2009 T!ME: 4:20 am ? Home: WwW.xP10.ME ? contact: N/A ?...
Charon Cart 3 Blind SQL Injection
? ?????????????????????????In The Name Of Allah The Mercifull?????????????????????? ? Tybe: reviewupdate.asp ContentID Blind SQL Injection Vulnerability Vendor: www.charon.co.uk Software: charoncartv3 author: R3d-D3v!L Date: 17.dec.2009 T!ME: 4:46 am ? Home: WwW.xP10.ME ? contact: N/A ?...
Charon Cart 3.0 - ContentID Blind SQL Injection
Charon Cart 3.0 - ContentID Blind SQL Injection ? ?????????????????????????In The Name Of Allah The Mercifull?????????????????????? ? Tybe: reviewupdate.asp ContentID Blind SQL Injection Vulnerability Vendor: www.charon.co.uk Software: charoncartv3 author: R3d-D3v!L Date: 17.dec.2009 T!ME: 4:46 a...
Charon Cart 3.0 - 'ContentID' Blind SQL Injection
? ?????????????????????????In The Name Of Allah The Mercifull?????????????????????? ? Tybe: reviewupdate.asp ContentID Blind SQL Injection Vulnerability Vendor: www.charon.co.uk Software: charoncartv3 author: R3d-D3v!L Date: 17.dec.2009 T!ME: 4:46 am ? Home: WwW.xP10.ME ? contact: N/A ?...
Charon Cart v3 (ContentID) Blind SQL Injection Vulnerability
Exploit for unknown platform in category web applications ============================================================ Charon Cart v3 ContentID Blind SQL Injection Vulnerability ============================================================ ? ?????????????????????????In The Name Of Allah The...
Charon Cart v3 (ContentID) Blind SQL Injection Vulnerability
No description provided by source. ? ?????????????????????????In The Name Of Allah The Mercifull?????????????????????? ? Tybe: reviewupdate.asp ContentID Blind SQL Injection Vulnerability Vendor: www.charon.co.uk Software: charoncartv3 author: R3d-D3v!L Date: 17.dec.2009 T!ME: 4:46 am ? Home:...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in InnovaAge InnovaShop allow remote attackers to inject arbitrary web script or HTML via the 1 msg parameter to msg.jsp, and the 2 contentid parameter to tc/contents/home001.jsp...
CVE-2007-5480
Multiple cross-site scripting XSS vulnerabilities in InnovaAge InnovaShop allow remote attackers to inject arbitrary web script or HTML via the 1 msg parameter to msg.jsp, and the 2 contentid parameter to tc/contents/home001.jsp...