10478 matches found
Bitweaver 1.x/2.0 search/index.php URL XSS
No description provided by source. source: http://www.securityfocus.com/bid/26801/info Bitweaver is prone to multiple input-validation vulnerabilities because the application fails to sufficiently sanitize user-supplied input including multiple cross-site scripting vulnerabilities, multiple...
Web Calendar Pro Dropbase.PHP SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/16789/info Web Calendar Pro is prone to an SQL-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation...
Joomla! 'com_mygallery' Component - 'cid' Parameter SQL Injection Vulnerability
No description provided by source. Bugtraq ID: 37121 Class: Input Validation Error Published: Feb 21 2008 12:00AM Updated: Nov 24 2009 10:15PM Credit: S@BUN Vulnerable: Joomla commygallery 0 The 'commygallery' component for Joomla! is prone to an SQL-injection vulnerability because it fails to...
Jetbox CMS 2.1 admin/cms/nav.php nav_id Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/31824/info Jetbox CMS is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to...
OnePlug CMS /products/details.asp Product_ID Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/16155/info OnePlug CMS is prone to multiple SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. Successful...
Fixit iDMS Pro Image Gallery filelist.asp Multiple Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/21282/info Fixit iDMS Pro is prone to multiple input-validation vulnerabilities, including SQL-injection issues and an HTML-injection issue, because the application fails to properly sanitize user-supplied input. Successf...
Lootan 'login.asp' SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/33439/info Lootan is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...
Scout Portal Toolkit 1.3.1 - SPT-UserLogin.php Multiple Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/15818/info Scout Portal Toolkit is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. A successful exploit could allow an attacker to compromise the...
BTGrup Admin WebController SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/15819/info BTGrup Admin WebController is prone to an SQL injection vulnerability. This is due to a lack of proper sanitization of user-supplied input before using it in an SQL query. Successful exploitation could result i...
Neuron News 1.0 Multiple SQL Injection and Cross-Site Scripting Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/26896/info Neuron News is prone to multiple input-validation vulnerabilities, including an SQL-injection issue and two cross-site scripting issues, because it fails to sufficiently sanitize user-supplied data. Exploiting...
Article Script 1.6.3 RSS.PHP SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/20929/info Article Script is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromis...
Joomla! and Mambo com_iomezun Component - 'id' Parameter SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/27748/info The Joomla! and Mambo 'comiomezun' component is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could...
MD News 1 Admin.PHP SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/17394/info MD News is prone to an SQL-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow a...
PHCDownload 1.1 - admin/index.php hash Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/28922/info PHCDownload is prone to an SQL-injection and a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script cod...
E-topbiz Link ADS 1 'out.php' SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/29923/info Link ADS 1 is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise th...
DCI-Taskeen 1.03 basket.php Multiple Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/16828/info DCI-Taskeen is prone to multiple SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful...
VCD-db 0.9x Search Module batch Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/15840/info VCD-db is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of these vulnerabilities coul...
DeluxeBB 1.0 forums.php fid Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/14851/info DeluxeBB is prone to multiple SQL injection vulnerabilities. These are due to a lack of proper sanitization of user-supplied input before being sent to SQL queries. Successful exploitation could result in a...
Evolve Shopping Cart products.ASP SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/21323/info Evolve Shopping Cart is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attack...
Cartweaver 2.16.11 Details.cfm ProdID Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/17941/info Cartweaver ColdFusion is prone to SQL-injection vulnerabilities. These issues are due to the application's failure to properly sanitize user-supplied input before using it in SQL queries. Successful exploits...