Joomla! Component com_contushdvideoshare 1.3 - id SQL Injection

Joomla! Component comcontushdvideoshare 1.3 - id SQL Injection source: https://www.securityfocus.com/bid/51411/info The HD Video Share 'comcontushdvideoshare' component for Joomla! is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using...

Clipbucket 2.6 - channels.php?cat Cross-Site Scripting

Clipbucket 2.6 - channels.php?cat Cross-Site Scripting source: https://www.securityfocus.com/bid/51321/info ClipBucket is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting thes...

Clipbucket 2.6 - view_item.php?type Cross-Site Scripting

Clipbucket 2.6 - viewitem.php?type Cross-Site Scripting source: https://www.securityfocus.com/bid/51321/info ClipBucket is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting the...

Gregarius 0.6.1 - Multiple SQL Injections / Cross-Site Scripting

source: https://www.securityfocus.com/bid/51338/info Gregarius is prone to multiple SQL-injection and cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these vulnerabilities could allow an attacker to steal cookie-based authentication...

Marinet CMS - 'gallery.php?id' SQL Injection

source: https://www.securityfocus.com/bid/51336/info Marinet CMS is prone to multiple SQL-injection vulnerabilities because the application fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to compromise the...

Clipbucket 2.6 - 'channels.php?cat' Cross-Site Scripting

source: https://www.securityfocus.com/bid/51321/info ClipBucket is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these vulnerabilities could allow an attacker to steal...

Design/Logic Flaw

Apache Struts 2.3.1.2 and earlier, 2.3.19-2.3.23, provides interfaces that do not properly restrict access to collections such as the session and request collections, which might allow remote attackers to modify run-time data values via a crafted parameter to an application that implements an...

CVE-2011-5057

Apache Struts 2.3.1.2 and earlier, 2.3.19-2.3.23, provides interfaces that do not properly restrict access to collections such as the session and request collections, which might allow remote attackers to modify run-time data values via a crafted parameter to an application that implements an...

Code injection

Unspecified vulnerability in HP Managed Printing Administration before 2.6.4 allows remote attackers to obtain sensitive information, modify data, or cause a denial of service via unknown vectors...

Joomla! Component com_caproductprices - 'id' SQL Injection

source: https://www.securityfocus.com/bid/51141/info Joomla! 'comcaproductprices' component is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...

Social Network Community 2 - userID SQL Injection

Social Network Community 2 - userID SQL Injection source: https://www.securityfocus.com/bid/51107/info Social Network Community is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allo...

Flirt-Projekt 4.8 - 'rub' SQL Injection

source: https://www.securityfocus.com/bid/51106/info Flirt-Projekt is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify...

BrowserCRM 5.100.1 - contact_id SQL Injection

BrowserCRM 5.100.1 - contactid SQL Injection source: https://www.securityfocus.com/bid/51060/info Browser CRM is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these...

BrowserCRM 5.100.1 - clients.php Cross-Site Scripting

BrowserCRM 5.100.1 - clients.php Cross-Site Scripting source: https://www.securityfocus.com/bid/51060/info Browser CRM is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting thes...

BrowserCRM 5.100.1 - parent_id SQL Injection

BrowserCRM 5.100.1 - parentid SQL Injection source: https://www.securityfocus.com/bid/51060/info Browser CRM is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these...

BrowserCRM 5.100.1 - URI Cross-Site Scripting

source: https://www.securityfocus.com/bid/51060/info Browser CRM is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these vulnerabilities could allow an attacker to steal...

OrangeHRM 2.6.11 - libcontrollersCentralController.php URI Cross-Site Scripting

OrangeHRM 2.6.11 - libcontrollersCentralController.php URI Cross-Site Scripting source: https://www.securityfocus.com/bid/50857/info OrangeHRM is prone to an SQL-injection and multiple cross-site scripting vulnerabilities. Exploiting these vulnerabilities could allow an attacker to steal...

OrangeHRM 2.6.11 - libcontrollersCentralController.php?id SQL Injection

OrangeHRM 2.6.11 - libcontrollersCentralController.php?id SQL Injection source: https://www.securityfocus.com/bid/50857/info OrangeHRM is prone to an SQL-injection and multiple cross-site scripting vulnerabilities. Exploiting these vulnerabilities could allow an attacker to steal cookie-based...

OrangeHRM 2.6.11 - 'lib/controllers/CentralController.php' URI Cross-Site Scripting

source: https://www.securityfocus.com/bid/50857/info OrangeHRM is prone to an SQL-injection and multiple cross-site scripting vulnerabilities. Exploiting these vulnerabilities could allow an attacker to steal cookie-based authentication credentials, compromise the application, access or modify...

Zabbix 1.8.3, 1.8.4 SQLi Vulnerability

Zabbix is prone to an SQL injection SQLi vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Copyright C 2011 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective...